FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 40.0,1
linux-firefox < 40.0,1
2.36 <= seamonkey < 2.37
seamonkey < 2.35
2.36 <= linux-seamonkey < 2.37
linux-seamonkey < 2.35
firefox-esr < 38.2.0,1
libxul < 38.2.0
thunderbird < 38.2.0
linux-thunderbird < 38.2.0

Details

VuXML ID c66a5632-708a-4727-8236-d65b2d5b2739
Discovery 2015-08-11
Entry 2015-08-11
Modified 2015-08-22

The Mozilla Project reports:

MFSA 2015-79 Miscellaneous memory safety hazards (rv:40.0 / rv:38.2)

MFSA 2015-80 Out-of-bounds read with malformed MP3 file

MFSA 2015-81 Use-after-free in MediaStream playback

MFSA 2015-82 Redefinition of non-configurable JavaScript object properties

MFSA 2015-83 Overflow issues in libstagefright

MFSA 2015-84 Arbitrary file overwriting through Mozilla Maintenance Service with hard links

MFSA 2015-85 Out-of-bounds write with Updater and malicious MAR file

MFSA 2015-86 Feed protocol with POST bypasses mixed content protections

MFSA 2015-87 Crash when using shared memory in JavaScript

MFSA 2015-88 Heap overflow in gdk-pixbuf when scaling bitmap images

MFSA 2015-90 Vulnerabilities found through code inspection

MFSA 2015-91 Mozilla Content Security Policy allows for asterisk wildcards in violation of CSP specification

MFSA 2015-92 Use-after-free in XMLHttpRequest with shared workers

[source]

References

CVE Name CVE-2015-4473
CVE Name CVE-2015-4474
CVE Name CVE-2015-4475
CVE Name CVE-2015-4477
CVE Name CVE-2015-4478
CVE Name CVE-2015-4479
CVE Name CVE-2015-4480
CVE Name CVE-2015-4481
CVE Name CVE-2015-4482
CVE Name CVE-2015-4483
CVE Name CVE-2015-4484
CVE Name CVE-2015-4487
CVE Name CVE-2015-4488
CVE Name CVE-2015-4489
CVE Name CVE-2015-4490
CVE Name CVE-2015-4491
CVE Name CVE-2015-4492
CVE Name CVE-2015-4493
URL https://www.mozilla.org/security/advisories/mfsa2015-79/
URL https://www.mozilla.org/security/advisories/mfsa2015-80/
URL https://www.mozilla.org/security/advisories/mfsa2015-81/
URL https://www.mozilla.org/security/advisories/mfsa2015-82/
URL https://www.mozilla.org/security/advisories/mfsa2015-83/
URL https://www.mozilla.org/security/advisories/mfsa2015-84/
URL https://www.mozilla.org/security/advisories/mfsa2015-85/
URL https://www.mozilla.org/security/advisories/mfsa2015-86/
URL https://www.mozilla.org/security/advisories/mfsa2015-87/
URL https://www.mozilla.org/security/advisories/mfsa2015-88/
URL https://www.mozilla.org/security/advisories/mfsa2015-90/
URL https://www.mozilla.org/security/advisories/mfsa2015-91/
URL https://www.mozilla.org/security/advisories/mfsa2015-92/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.