搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

Firefox 128.1.0esr and 128.2.0esr security vulnerabilities

  • 2 个回答
  • 0 人有此问题
  • 12 次查看
  • 最后回复者为 James

more options

Tenable is reporting 128.1 and 128.2 as affected by vulnerabilities covered in CVEs' in their plugin 205009 ( https://www.tenable.com/plugins/nessus/205009 ). The rule they are applying is: Mozilla Firefox < 129 That implies that 128.1 and 128.2 are also < then 129 -> therefor vulnerable. Can you please answer 2 questions:

  • are Firefox 128.1 and 128.2 part of the same branch of product as 129? Or are they necessarily ESR?
  • are Firefox 128.1 and 128.2 affected by CVEs' covered in their TENABLE plugin 205009?
Tenable is reporting 128.1 and 128.2 as affected by vulnerabilities covered in CVEs' in their plugin 205009 ( https://www.tenable.com/plugins/nessus/205009 ). The rule they are applying is: Mozilla Firefox < 129 That implies that 128.1 and 128.2 are also < then 129 -> therefor vulnerable. Can you please answer 2 questions: * are Firefox 128.1 and 128.2 part of the same branch of product as 129? Or are they necessarily ESR? * are Firefox 128.1 and 128.2 affected by CVEs' covered in their TENABLE plugin 205009?

所有回复 (2)

more options

由cor-el于修改

有帮助吗?

more options

23kikes2 said

Tenable is reporting 128.1 and 128.2 as affected by vulnerabilities covered in CVEs' in their plugin 205009 ( https://www.tenable.com/plugins/nessus/205009 ). The rule they are applying is: Mozilla Firefox < 129 That implies that 128.1 and 128.2 are also < then 129 -> therefor vulnerable. Can you please answer 2 questions:
  • are Firefox 128.1 and 128.2 part of the same branch of product as 129? Or are they necessarily ESR?

There is no mention of Firefox 128.1.0 esr and 128.2.0 esr on that page though.

Fx 129.0 and Fx 128.1.0esr was released August 6, 2024 while the current Fx 128.2.0esr was released September 3, 2024 so it has security fixes that the older 129.0 and 128.1.0esr does not have. The Fx 128.2.0esr and Fx 130.0.1 are the current Releases. https://www.mozilla.org/firefox/releases/

ESR is short for Extended Support Releases as it only gets security and stability fixes and no new features so as to have longer term stability that Enterprise users need. Firefox 128 ESR is based on the Firefox 128.0 Release but gets longer term security/stability updates, say up to 128.15.0esr.

有帮助吗?

我要提问

您需要登录才能回复。如果您还没账号,可以提出新问题