FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 45.0,1
linux-firefox < 45.0,1
linux-seamonkey < 2.42
seamonkey < 2.42
firefox-esr < 38.7.0,1
libxul < 38.7.0
linux-thunderbird < 38.7.0
thunderbird < 38.7.0

Details

VuXML ID 2225c5b4-1e5a-44fc-9920-b3201c384a15
Discovery 2016-03-08
Entry 2016-03-08
Modified 2016-03-08

Mozilla Foundation reports:

MFSA 2016-16 Miscellaneous memory safety hazards (rv:45.0 / rv:38.7)

MFSA 2016-17 Local file overwriting and potential privilege escalation through CSP reports

MFSA 2016-18 CSP reports fail to strip location information for embedded iframe pages

MFSA 2016-19 Linux video memory DOS with Intel drivers

MFSA 2016-20 Memory leak in libstagefright when deleting an array during MP4 processing

MFSA 2016-21 Displayed page address can be overridden

MFSA 2016-22 Service Worker Manager out-of-bounds read in Service Worker Manager

MFSA 2016-23 Use-after-free in HTML5 string parser

MFSA 2016-24 Use-after-free in SetBody

MFSA 2016-25 Use-after-free when using multiple WebRTC data channels

MFSA 2016-26 Memory corruption when modifying a file being read by FileReader

MFSA 2016-27 Use-after-free during XML transformations

MFSA 2016-28 Addressbar spoofing though history navigation and Location protocol property

MFSA 2016-29 Same-origin policy violation using perfomance.getEntries and history navigation with session restore

MFSA 2016-31 Memory corruption with malicious NPAPI plugin

MFSA 2016-32 WebRTC and LibVPX vulnerabilities found through code inspection

MFSA 2016-33 Use-after-free in GetStaticInstance in WebRTC

MFSA 2016-34 Out-of-bounds read in HTML parser following a failed allocation

References

CVE Name CVE-2016-1952
CVE Name CVE-2016-1953
CVE Name CVE-2016-1954
CVE Name CVE-2016-1955
CVE Name CVE-2016-1956
CVE Name CVE-2016-1957
CVE Name CVE-2016-1958
CVE Name CVE-2016-1959
CVE Name CVE-2016-1960
CVE Name CVE-2016-1961
CVE Name CVE-2016-1962
CVE Name CVE-2016-1963
CVE Name CVE-2016-1964
CVE Name CVE-2016-1965
CVE Name CVE-2016-1966
CVE Name CVE-2016-1967
CVE Name CVE-2016-1970
CVE Name CVE-2016-1971
CVE Name CVE-2016-1972
CVE Name CVE-2016-1973
CVE Name CVE-2016-1974
CVE Name CVE-2016-1975
CVE Name CVE-2016-1976
URL https://www.mozilla.org/security/advisories/mfsa2016-16/
URL https://www.mozilla.org/security/advisories/mfsa2016-17/
URL https://www.mozilla.org/security/advisories/mfsa2016-18/
URL https://www.mozilla.org/security/advisories/mfsa2016-19/
URL https://www.mozilla.org/security/advisories/mfsa2016-20/
URL https://www.mozilla.org/security/advisories/mfsa2016-21/
URL https://www.mozilla.org/security/advisories/mfsa2016-22/
URL https://www.mozilla.org/security/advisories/mfsa2016-23/
URL https://www.mozilla.org/security/advisories/mfsa2016-24/
URL https://www.mozilla.org/security/advisories/mfsa2016-25/
URL https://www.mozilla.org/security/advisories/mfsa2016-26/
URL https://www.mozilla.org/security/advisories/mfsa2016-27/
URL https://www.mozilla.org/security/advisories/mfsa2016-28/
URL https://www.mozilla.org/security/advisories/mfsa2016-29/
URL https://www.mozilla.org/security/advisories/mfsa2016-31/
URL https://www.mozilla.org/security/advisories/mfsa2016-32/
URL https://www.mozilla.org/security/advisories/mfsa2016-33/
URL https://www.mozilla.org/security/advisories/mfsa2016-34/