FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Mozilla -- multiple vulnerabilities

Affected packages
4.0,1 < firefox < 7.0,1
3.6.*,1 < firefox < 3.6.23,1
1.9.2.* < libxul < 1.9.2.23
linux-firefox < 7.0,1
linux-seamonkey < 2.4
linux-thunderbird < 7.0
seamonkey < 2.4
4.0 < thunderbird < 7.0
thunderbird < 3.1.15

Details

VuXML ID 1fade8a3-e9e8-11e0-9580-4061862b8c22
Discovery 2011-09-27
Entry 2011-09-28

The Mozilla Project reports:

MFSA 2011-36 Miscellaneous memory safety hazards (rv:7.0 / rv:1.9.2.23)

MFSA 2011-37 Integer underflow when using JavaScript RegExp

MFSA 2011-38 XSS via plugins and shadowed window.location object

MFSA 2011-39 Defense against multiple Location headers due to CRLF Injection

MFSA 2011-40 Code installation through holding down Enter

MFSA 2011-41 Potentially exploitable WebGL crashes

MFSA 2011-42 Potentially exploitable crash in the YARR regular expression library

MFSA 2011-43 loadSubScript unwraps XPCNativeWrapper scope parameter

MFSA 2011-44 Use after free reading OGG headers

MFSA 2011-45 Inferring Keystrokes from motion data

References

CVE Name CVE-2011-2372
CVE Name CVE-2011-2995
CVE Name CVE-2011-2996
CVE Name CVE-2011-2997
CVE Name CVE-2011-2999
CVE Name CVE-2011-3000
CVE Name CVE-2011-3001
CVE Name CVE-2011-3002
CVE Name CVE-2011-3003
CVE Name CVE-2011-3004
CVE Name CVE-2011-3005
CVE Name CVE-2011-3232
URL http://www.mozilla.org/security/announce/2011/mfsa2011-36.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-37.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-38.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-39.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-40.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-41.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-42.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-43.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-44.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-45.html