SUSE has released security update for mozillafirefox to fix the vulnerabilities.
SUSE Linux Enterprise Software Development Kit 12-SP3
SUSE Linux Enterprise Server 12-SP3
SUSE Linux Enterprise Desktop 12-SP3
This vulnerability could be exploited to gain complete access to sensitive information. Malicious users could also use this vulnerability to change all the contents or configuration on the system. Additionally this vulnerability can also be used to cause a complete denial of service and could render the resource completely unavailable.
Upgrade to the latest packages which contain a patch. To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product.
To install packages using the command line interface, use the command “yum update”.
Refer to SUSE security advisory SUSE-SU-2018:3749-1 to address this issue and obtain further details.
Following are links for downloading patches to fix the vulnerabilities: