FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
3.5.*,1 < firefox < 3.5.20,1
3.6.*,1 < firefox < 3.6.18,1
4.0.*,1 < firefox < 5.0,1
linux-firefox < 3.6.18,1
thunderbird < 3.1.11
linux-thunderbird < 3.1.11

Details

VuXML ID dfe40cff-9c3f-11e0-9bec-6c626dd55a41
Discovery 2011-06-21
Entry 2011-06-21
Modified 2011-06-23

The Mozilla Project reports:

MFSA 2011-19 Miscellaneous memory safety hazards (rv:3.0/1.9.2.18)

MFSA 2011-20 Use-after-free vulnerability when viewing XUL document with script disabled

MFSA 2011-21 Memory corruption due to multipart/x-mixed-replace images

MFSA 2011-22 Integer overflow and arbitrary code execution in Array.reduceRight()

MFSA 2011-23 Multiple dangling pointer vulnerabilities

MFSA 2011-24 Cookie isolation error

MFSA 2011-25 Stealing of cross-domain images using WebGL textures

MFSA 2011-26 Multiple WebGL crashes

MFSA 2011-27 XSS encoding hazard with inline SVG

MFSA 2011-28 Non-whitelisted site can trigger xpinstall

[source]

References

URL http://www.mozilla.org/security/announce/2011/mfsa2011-19.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-20.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-21.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-22.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-23.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-24.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-25.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-26.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-27.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-28.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.