FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 35.0,1
firefox-esr < 31.4.0,1
linux-firefox < 35.0,1
linux-seamonkey < 2.32
linux-thunderbird < 31.4.0
seamonkey < 2.32
thunderbird < 31.4.0
libxul < 31.4.0

Details

VuXML ID bd62c640-9bb9-11e4-a5ad-000c297fb80f
Discovery 2015-01-13
Entry 2015-01-14

The Mozilla Project reports:

MFSA-2015-01 Miscellaneous memory safety hazards (rv:35.0 / rv:31.4)

MFSA-2015-02 Uninitialized memory use during bitmap rendering

MFSA-2015-03 sendBeacon requests lack an Origin header

MFSA-2015-04 Cookie injection through Proxy Authenticate responses

MFSA-2015-05 Read of uninitialized memory in Web Audio

MFSA-2015-06 Read-after-free in WebRTC

MFSA-2015-07 Gecko Media Plugin sandbox escape

MFSA-2015-08 Delegated OCSP responder certificates failure with id-pkix-ocsp-nocheck extension

MFSA-2015-09 XrayWrapper bypass through DOM objects

[source]

References

CVE Name CVE-2014-8634
CVE Name CVE-2014-8635
CVE Name CVE-2014-8636
CVE Name CVE-2014-8637
CVE Name CVE-2014-8638
CVE Name CVE-2014-8639
CVE Name CVE-2014-8640
CVE Name CVE-2014-8641
CVE Name CVE-2014-8642
CVE Name CVE-2014-8643
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-01/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-02/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-03/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-04/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-05/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-06/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-07/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-08/
URL https://www.mozilla.org/en-US/security/advisories/mfsa2015-09/
URL https://www.mozilla.org/security/advisories/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.