FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 52.0_1,1
linux-seamonkey < 2.49
seamonkey < 2.49
46.0,1 <= firefox-esr < 52.0,1
firefox-esr < 45.8.0_1,1
46.0,2 <= linux-firefox < 52.0,2
linux-firefox < 45.8.0_1,2
46.0 <= libxul < 52.0
libxul < 45.8.0_1
46.0 <= linux-thunderbird < 52.0
linux-thunderbird < 45.8.0
46.0 <= thunderbird < 52.0
thunderbird < 45.8.0

Details

VuXML ID 96eca031-1313-4daf-9be2-9d6e1c4f1eb5
Discovery 2017-03-07
Entry 2017-03-07

Mozilla Foundation reports:

CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP

CVE-2017-5401: Memory Corruption when handling ErrorResult

CVE-2017-5402: Use-after-free working with events in FontFace objects

CVE-2017-5403: Use-after-free using addRange to add range to an incorrect root object

CVE-2017-5404: Use-after-free working with ranges in selections

CVE-2017-5406: Segmentation fault in Skia with canvas operations

CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters

CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping

CVE-2017-5411: Use-after-free in Buffer Storage in libGLES

CVE-2017-5409: File deletion via callback parameter in Mozilla Windows Updater and Maintenance Service

CVE-2017-5408: Cross-origin reading of video captions in violation of CORS

CVE-2017-5412: Buffer overflow read in SVG filters

CVE-2017-5413: Segmentation fault during bidirectional operations

CVE-2017-5414: File picker can choose incorrect default directory

CVE-2017-5415: Addressbar spoofing through blob URL

CVE-2017-5416: Null dereference crash in HttpChannel

CVE-2017-5417: Addressbar spoofing by draging and dropping URLs

CVE-2017-5425: Overly permissive Gecko Media Plugin sandbox regular expression access

CVE-2017-5426: Gecko Media Plugin sandbox is not started if seccomp-bpf filter is running

CVE-2017-5427: Non-existent chrome.manifest file loaded during startup

CVE-2017-5418: Out of bounds read when parsing HTTP digest authorization responses

CVE-2017-5419: Repeated authentication prompts lead to DOS attack

CVE-2017-5420: Javascript: URLs can obfuscate addressbar location

CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports

CVE-2017-5421: Print preview spoofing

CVE-2017-5422: DOS attack by using view-source: protocol repeatedly in one hyperlink

CVE-2017-5399: Memory safety bugs fixed in Firefox 52

CVE-2017-5398: Memory safety bugs fixed in Firefox 52 and Firefox ESR 45.8

References

CVE Name CVE-2017-5398
CVE Name CVE-2017-5399
CVE Name CVE-2017-5400
CVE Name CVE-2017-5401
CVE Name CVE-2017-5402
CVE Name CVE-2017-5403
CVE Name CVE-2017-5404
CVE Name CVE-2017-5405
CVE Name CVE-2017-5406
CVE Name CVE-2017-5407
CVE Name CVE-2017-5408
CVE Name CVE-2017-5409
CVE Name CVE-2017-5410
CVE Name CVE-2017-5411
CVE Name CVE-2017-5412
CVE Name CVE-2017-5413
CVE Name CVE-2017-5414
CVE Name CVE-2017-5415
CVE Name CVE-2017-5416
CVE Name CVE-2017-5417
CVE Name CVE-2017-5418
CVE Name CVE-2017-5419
CVE Name CVE-2017-5420
CVE Name CVE-2017-5421
CVE Name CVE-2017-5422
CVE Name CVE-2017-5425
CVE Name CVE-2017-5426
CVE Name CVE-2017-5427
URL https://www.mozilla.org/security/advisories/mfsa2017-05/
URL https://www.mozilla.org/security/advisories/mfsa2017-06/