FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 29.0,1
firefox-esr < 24.5.0,1
linux-firefox < 29.0,1
linux-seamonkey < 2.26
linux-thunderbird < 24.5.0
seamonkey < 2.26
thunderbird < 24.5.0

Details

VuXML ID 985d4d6c-cfbd-11e3-a003-b4b52fce4ce8
Discovery 2014-04-29
Entry 2014-04-29

The Mozilla Project reports:

MFSA 2014-34 Miscellaneous memory safety hazards (rv:29.0 / rv:24.5)

MFSA 2014-35 Privilege escalation through Mozilla Maintenance Service Installer

MFSA 2014-36 Web Audio memory corruption issues

MFSA 2014-37 Out of bounds read while decoding JPG images

MFSA 2014-38 Buffer overflow when using non-XBL object as XBL

MFSA 2014-39 Use-after-free in the Text Track Manager for HTML video

MFSA 2014-41 Out-of-bounds write in Cairo

MFSA 2014-42 Privilege escalation through Web Notification API

MFSA 2014-43 Cross-site scripting (XSS) using history navigations

MFSA 2014-44 Use-after-free in imgLoader while resizing images

MFSA 2014-45 Incorrect IDNA domain name matching for wildcard certificates

MFSA 2014-46 Use-after-free in nsHostResolve

MFSA 2014-47 Debugger can bypass XrayWrappers with JavaScript

[source]

References

CVE Name CVE-2014-1492
CVE Name CVE-2014-1518
CVE Name CVE-2014-1519
CVE Name CVE-2014-1520
CVE Name CVE-2014-1522
CVE Name CVE-2014-1523
CVE Name CVE-2014-1524
CVE Name CVE-2014-1525
CVE Name CVE-2014-1526
CVE Name CVE-2014-1527
CVE Name CVE-2014-1528
CVE Name CVE-2014-1529
CVE Name CVE-2014-1530
CVE Name CVE-2014-1531
CVE Name CVE-2014-1532
URL http://www.mozilla.org/security/known-vulnerabilities/
URL https://www.mozilla.org/security/announce/2014/mfsa2014-34.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-35.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-36.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-37.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-38.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-39.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-41.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-42.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-43.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-44.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-45.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-46.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-47.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.