FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 39.0,1
linux-firefox < 39.0,1
seamonkey < 2.35
linux-seamonkey < 2.35
firefox-esr < 31.8.0,1
38.0,1 <= firefox-esr < 38.1.0,1
libxul < 31.8.0
38.0 <= libxul < 38.1.0
thunderbird < 31.8.0
38.0 <= thunderbird < 38.1.0
linux-thunderbird < 31.8.0
38.0 <= linux-thunderbird < 38.1.0

Details

VuXML ID 44d9daee-940c-4179-86bb-6e3ffd617869
Discovery 2015-07-02
Entry 2015-07-16
Modified 2015-09-22

The Mozilla Project reports:

MFSA 2015-59 Miscellaneous memory safety hazards (rv:39.0 / rv:31.8 / rv:38.1)

MFSA 2015-60 Local files or privileged URLs in pages can be opened into new tabs

MFSA 2015-61 Type confusion in Indexed Database Manager

MFSA 2015-62 Out-of-bound read while computing an oscillator rendering range in Web Audio

MFSA 2015-63 Use-after-free in Content Policy due to microtask execution error

MFSA 2015-64 ECDSA signature validation fails to handle some signatures correctly

MFSA 2015-65 Use-after-free in workers while using XMLHttpRequest

MFSA 2015-66 Vulnerabilities found through code inspection

MFSA 2015-67 Key pinning is ignored when overridable errors are encountered

MFSA 2015-68 OS X crash reports may contain entered key press information

MFSA 2015-69 Privilege escalation through internal workers

MFSA 2015-70 NSS accepts export-length DHE keys with regular DHE cipher suites

MFSA 2015-71 NSS incorrectly permits skipping of ServerKeyExchange

References

CVE Name CVE-2015-2721
CVE Name CVE-2015-2722
CVE Name CVE-2015-2724
CVE Name CVE-2015-2725
CVE Name CVE-2015-2726
CVE Name CVE-2015-2727
CVE Name CVE-2015-2728
CVE Name CVE-2015-2729
CVE Name CVE-2015-2730
CVE Name CVE-2015-2731
CVE Name CVE-2015-2733
CVE Name CVE-2015-2734
CVE Name CVE-2015-2735
CVE Name CVE-2015-2736
CVE Name CVE-2015-2737
CVE Name CVE-2015-2738
CVE Name CVE-2015-2739
CVE Name CVE-2015-2740
CVE Name CVE-2015-2741
CVE Name CVE-2015-2742
CVE Name CVE-2015-2743
CVE Name CVE-2015-4000
URL https://www.mozilla.org/security/advisories/mfsa2015-59/
URL https://www.mozilla.org/security/advisories/mfsa2015-60/
URL https://www.mozilla.org/security/advisories/mfsa2015-61/
URL https://www.mozilla.org/security/advisories/mfsa2015-62/
URL https://www.mozilla.org/security/advisories/mfsa2015-63/
URL https://www.mozilla.org/security/advisories/mfsa2015-64/
URL https://www.mozilla.org/security/advisories/mfsa2015-65/
URL https://www.mozilla.org/security/advisories/mfsa2015-66/
URL https://www.mozilla.org/security/advisories/mfsa2015-67/
URL https://www.mozilla.org/security/advisories/mfsa2015-68/
URL https://www.mozilla.org/security/advisories/mfsa2015-69/
URL https://www.mozilla.org/security/advisories/mfsa2015-70/
URL https://www.mozilla.org/security/advisories/mfsa2015-71/