FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 37.0,1
firefox-esr < 31.6.0,1
linux-firefox < 37.0,1
linux-seamonkey < 2.34
linux-thunderbird < 31.6.0
seamonkey < 2.34
thunderbird < 31.6.0
libxul < 31.6.0

Details

VuXML ID d0c97697-df2c-4b8b-bff2-cec24dc35af8
Discovery 2015-03-31
Entry 2015-03-31

The Mozilla Project reports:

MFSA-2015-30 Miscellaneous memory safety hazards (rv:37.0 / rv:31.6)

MFSA-2015-31 Use-after-free when using the Fluendo MP3 GStreamer plugin

MFSA-2015-32 Add-on lightweight theme installation approval bypassed through MITM attack

MFSA-2015-33 resource:// documents can load privileged pages

MFSA-2015-34 Out of bounds read in QCMS library

MFSA-2015-35 Cursor clickjacking with flash and images

MFSA-2015-36 Incorrect memory management for simple-type arrays in WebRTC

MFSA-2015-37 CORS requests should not follow 30x redirections after preflight

MFSA-2015-38 Memory corruption crashes in Off Main Thread Compositing

MFSA-2015-39 Use-after-free due to type confusion flaws

MFSA-2015-40 Same-origin bypass through anchor navigation

MFSA-2015-41 PRNG weakness allows for DNS poisoning on Android

MFSA-2015-42 Windows can retain access to privileged content on navigation to unprivileged pages

[source]

References

CVE Name CVE-2012-2808
CVE Name CVE-2015-0800
CVE Name CVE-2015-0801
CVE Name CVE-2015-0802
CVE Name CVE-2015-0803
CVE Name CVE-2015-0804
CVE Name CVE-2015-0805
CVE Name CVE-2015-0806
CVE Name CVE-2015-0807
CVE Name CVE-2015-0808
CVE Name CVE-2015-0810
CVE Name CVE-2015-0811
CVE Name CVE-2015-0812
CVE Name CVE-2015-0813
CVE Name CVE-2015-0814
CVE Name CVE-2015-0815
CVE Name CVE-2015-0816
URL https://www.mozilla.org/security/advisories/
URL https://www.mozilla.org/security/advisories/mfsa2015-30/
URL https://www.mozilla.org/security/advisories/mfsa2015-31/
URL https://www.mozilla.org/security/advisories/mfsa2015-32/
URL https://www.mozilla.org/security/advisories/mfsa2015-33/
URL https://www.mozilla.org/security/advisories/mfsa2015-34/
URL https://www.mozilla.org/security/advisories/mfsa2015-35/
URL https://www.mozilla.org/security/advisories/mfsa2015-36/
URL https://www.mozilla.org/security/advisories/mfsa2015-37/
URL https://www.mozilla.org/security/advisories/mfsa2015-38/
URL https://www.mozilla.org/security/advisories/mfsa2015-39/
URL https://www.mozilla.org/security/advisories/mfsa2015-40/
URL https://www.mozilla.org/security/advisories/mfsa2015-41/
URL https://www.mozilla.org/security/advisories/mfsa2015-42/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.