FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
11.0,1 < firefox < 14.0.1,1
firefox < 10.0.6,1
linux-firefox < 10.0.6,1
linux-seamonkey < 2.11
linux-thunderbird < 10.0.6
seamonkey < 2.11
11.0 < thunderbird < 14.0
thunderbird < 10.0.6
1.9.2.* < libxul < 10.0.6

Details

VuXML ID dbf338d0-dce5-11e1-b655-14dae9ebcf89
Discovery 2012-07-17
Entry 2012-08-02

The Mozilla Project reports:

MFSA 2012-42 Miscellaneous memory safety hazards (rv:14.0/ rv:10.0.6)

MFSA 2012-43 Incorrect URL displayed in addressbar through drag and drop

MFSA 2012-44 Gecko memory corruption

MFSA 2012-45 Spoofing issue with location

MFSA 2012-46 XSS through data: URLs

MFSA 2012-47 Improper filtering of javascript in HTML feed-view

MFSA 2012-48 use-after-free in nsGlobalWindow::PageHidden

MFSA 2012-49 Same-compartment Security Wrappers can be bypassed

MFSA 2012-50 Out of bounds read in QCMS

MFSA 2012-51 X-Frame-Options header ignored when duplicated

MFSA 2012-52 JSDependentString::undepend string conversion results in memory corruption

MFSA 2012-53 Content Security Policy 1.0 implementation errors cause data leakage

MFSA 2012-54 Clickjacking of certificate warning page

MFSA 2012-55 feed: URLs with an innerURI inherit security context of page

MFSA 2012-56 Code execution through javascript: URLs

[source]

References

CVE Name CVE-2012-1949
CVE Name CVE-2012-1950
CVE Name CVE-2012-1951
CVE Name CVE-2012-1952
CVE Name CVE-2012-1953
CVE Name CVE-2012-1954
CVE Name CVE-2012-1955
CVE Name CVE-2012-1957
CVE Name CVE-2012-1958
CVE Name CVE-2012-1959
CVE Name CVE-2012-1960
CVE Name CVE-2012-1961
CVE Name CVE-2012-1962
CVE Name CVE-2012-1963
CVE Name CVE-2012-1964
CVE Name CVE-2012-1965
CVE Name CVE-2012-1966
CVE Name CVE-2012-1967
URL http://www.mozilla.org/security/announce/2012/mfsa2012-42.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-43.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-44.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-45.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-46.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-47.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-48.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-49.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-50.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-51.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-52.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-53.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-54.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-55.html
URL http://www.mozilla.org/security/announce/2012/mfsa2012-56.html
URL http://www.mozilla.org/security/known-vulnerabilities/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.