Security updates released for Chrome, Firefox 82.0.3, Firefox ESR 78.4.1, and Thunderbird 78.4.2
Hello everyone,
Along with this month's Patch Tuesday updates, Google and Mozilla released updates for Chrome and Firefox respectively. Chrome stable channel has been updated to 86.0.4240.193 for Windows, Mac & Linux.
The updates by Google and Mozilla fix highly critical security vulnerabilities, the details of which are as follows:
| CVE ID | Vulnerability | Severity |
| CVE-2020-16016 | [Chrome] Inappropriate implementation in base | High |
| CVE-2020-26950 | [Firefox, Firefox ESR, Thunderbird] Write side effects in MCallGetProperty opcode not accounted for | Critical |
The updates can be installed using Vulnerability Manager Plus by initiating a sync between the Central Patch Repository and the Vulnerability Manager Plus server. Once synced, search for the following Patch IDs or Bulletin IDs and deploy them to your target systems
| Patch ID | Bulletin ID | Patch Description |
| 316905 | TU-017 | Google Chrome (86.0.4240.193) |
| 316906 | TU-017 | Google Chrome (x64) (86.0.4240.193) |
| 316907 | TU-027 | Mozilla Firefox (82.0.3) |
| 316908 | TU-027 | Mozilla Firefox (x64) (82.0.3) |
| 316918 | TU-054 | Mozilla Firefox ESR (78.4.1) |
| 316919 | TU-054 | Mozilla Firefox ESR (x64) (78.4.1) |
| 316920 | TU-028 | Mozilla Thunderbird (78.4.2) |
| 316921 | TU-028 | Mozilla Thunderbird (x64) (78.4.2) |
Cheers,
The ManageEngine Team