FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
3.5.*,1 < firefox < 3.5.8,1
3.*,1 < firefox < 3.0.18,1
linux-firefox < 3.0.18,1
linux-firefox-devel < 3.5.8
2.0.* < seamonkey < 2.0.3
3.0 <= thunderbird < 3.0.2

Details

VuXML ID f82c85d8-1c6e-11df-abb2-000f20797ede
Discovery 2010-02-17
Entry 2010-02-18
Modified 2010-02-28

Mozilla Project reports:

MFSA 2010-05 XSS hazard using SVG document and binary Content-Type

MFSA 2010-04 XSS due to window.dialogArguments being readable cross-domain

MFSA 2010-03 Use-after-free crash in HTML parser

MFSA 2010-02 Web Worker Array Handling Heap Corruption Vulnerability

MFSA 2010-01 Crashes with evidence of memory corruption (rv:1.9.1.8/ 1.9.0.18)

[source]

References

CVE Name CVE-2009-1571
CVE Name CVE-2009-3988
CVE Name CVE-2010-0159
CVE Name CVE-2010-0160
CVE Name CVE-2010-0162
URL http://www.mozilla.org/security/announce/2010/mfsa2010-01.html
URL http://www.mozilla.org/security/announce/2010/mfsa2010-02.html
URL http://www.mozilla.org/security/announce/2010/mfsa2010-03.html
URL http://www.mozilla.org/security/announce/2010/mfsa2010-04.html
URL http://www.mozilla.org/security/announce/2010/mfsa2010-05.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.