FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
3.6.*,1 < firefox < 3.6.14,1
3.5.*,1 < firefox < 3.5.17,1
1.9.2.* < libxul < 1.9.2.14
linux-firefox < 3.6.14,1
linux-firefox-devel < 3.5.17
2.0.* < linux-seamonkey < 2.0.12
3.1 <= linux-thunderbird < 3.1.8
2.0.* < seamonkey < 2.0.12
thunderbird < 3.1.8

Details

VuXML ID 45f102cd-4456-11e0-9580-4061862b8c22
Discovery 2011-03-01
Entry 2011-03-01

The Mozilla Project reports:

MFSA 2011-01 Miscellaneous memory safety hazards (rv:1.9.2.14/ 1.9.1.17)

MFSA 2011-02 Recursive eval call causes confirm dialogs to evaluate to true

MFSA 2011-03 Use-after-free error in JSON.stringify

MFSA 2011-04 Buffer overflow in JavaScript upvarMap

MFSA 2011-05 Buffer overflow in JavaScript atom map

MFSA 2011-06 Use-after-free error using Web Workers

MFSA 2011-07 Memory corruption during text run construction (Windows)

MFSA 2011-08 ParanoidFragmentSink allows javascript: URLs in chrome documents

MFSA 2011-09 Crash caused by corrupted JPEG image

MFSA 2011-10 CSRF risk with plugins and 307 redirects

[source]

References

CVE Name CVE-2010-1585
CVE Name CVE-2011-0051
CVE Name CVE-2011-0053
CVE Name CVE-2011-0054
CVE Name CVE-2011-0055
CVE Name CVE-2011-0056
CVE Name CVE-2011-0057
CVE Name CVE-2011-0058
CVE Name CVE-2011-0059
CVE Name CVE-2011-0061
CVE Name CVE-2011-0062
URL https://www.mozilla.org/security/announce/2011/mfsa2011-01.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-02.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-03.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-04.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-05.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-06.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-07.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-08.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-09.html
URL https://www.mozilla.org/security/announce/2011/mfsa2011-10.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.