FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 49.0,1
linux-seamonkey < 2.46
seamonkey < 2.46
firefox-esr < 45.4.0,1
linux-firefox < 45.4.0,2
libxul < 45.4.0
linux-thunderbird < 45.4.0
thunderbird < 45.4.0

Details

VuXML ID 2c57c47e-8bb3-4694-83c8-9fc3abad3964
Discovery 2016-09-13
Entry 2016-09-20
Modified 2016-10-21

Mozilla Foundation reports:

CVE-2016-2827 - Out-of-bounds read in mozilla::net::IsValidReferrerPolicy [low]

CVE-2016-5256 - Memory safety bugs fixed in Firefox 49 [critical]

CVE-2016-5257 - Memory safety bugs fixed in Firefox 49 and Firefox ESR 45.4 [critical]

CVE-2016-5270 - Heap-buffer-overflow in nsCaseTransformTextRunFactory::TransformString [high]

CVE-2016-5271 - Out-of-bounds read in PropertyProvider::GetSpacingInternal [low]

CVE-2016-5272 - Bad cast in nsImageGeometryMixin [high]

CVE-2016-5273 - crash in mozilla::a11y::HyperTextAccessible::GetChildOffset [high]

CVE-2016-5274 - use-after-free in nsFrameManager::CaptureFrameState [high]

CVE-2016-5275 - global-buffer-overflow in mozilla::gfx::FilterSupport::ComputeSourceNeededRegions [critical]

CVE-2016-5276 - Heap-use-after-free in mozilla::a11y::DocAccessible::ProcessInvalidationList [high]

CVE-2016-5277 - Heap-use-after-free in nsRefreshDriver::Tick [high]

CVE-2016-5278 - Heap-buffer-overflow in nsBMPEncoder::AddImageFrame [critical]

CVE-2016-5279 - Full local path of files is available to web pages after drag and drop [moderate]

CVE-2016-5280 - Use-after-free in mozilla::nsTextNodeDirectionalityMap::RemoveElementFromMap [high]

CVE-2016-5281 - use-after-free in DOMSVGLength [high]

CVE-2016-5282 - Don't allow content to request favicons from non-whitelisted schemes [moderate]

CVE-2016-5283 - <iframe src> fragment timing attack can reveal cross-origin data [high]

CVE-2016-5284 - Add-on update site certificate pin expiration [high]

References

CVE Name CVE-2016-2827
CVE Name CVE-2016-5256
CVE Name CVE-2016-5257
CVE Name CVE-2016-5270
CVE Name CVE-2016-5271
CVE Name CVE-2016-5272
CVE Name CVE-2016-5273
CVE Name CVE-2016-5274
CVE Name CVE-2016-5275
CVE Name CVE-2016-5276
CVE Name CVE-2016-5277
CVE Name CVE-2016-5278
CVE Name CVE-2016-5279
CVE Name CVE-2016-5280
CVE Name CVE-2016-5281
CVE Name CVE-2016-5282
CVE Name CVE-2016-5283
CVE Name CVE-2016-5284
URL https://www.mozilla.org/security/advisories/mfsa2016-85/
URL https://www.mozilla.org/security/advisories/mfsa2016-86/
URL https://www.mozilla.org/security/advisories/mfsa2016-88/