[FREEBSD:0A9E2B72-4CB7-11E1-9146-14DAE9EBCF89] mozilla -- multiple vulnerabilities

Severity High

Affected Packages 6

CVEs 9

The Mozilla Project reports:

  MFSA 2012-01 Miscellaneous memory safety hazards (rv:10.0/
    rv:1.9.2.26)
  MFSA 2012-02 Overly permissive IPv6 literal syntax
  MFSA 2012-03 iframe element exposed across domains via name
    attribute
  MFSA 2012-04 Child nodes from nsDOMAttribute still accessible
    after removal of nodes
  MFSA 2012-05 Frame scripts calling into untrusted objects bypass
    security checks
  MFSA 2012-06 Uninitialized memory appended when encoding icon
    images may cause information disclosure
  MFSA 2012-07 Potential Memory Corruption When Decoding Ogg Vorbis
    files
  MFSA 2012-08 Crash with malformed embedded XSLT stylesheets
  MFSA 2012-09 Firefox Recovery Key.html is saved with unsafe
    permission

Package	Affected Version
pkg:freebsd/thunderbird	> 4.0, < 10.0
pkg:freebsd/seamonkey	< 2.7
pkg:freebsd/linux-thunderbird	< 10.0
pkg:freebsd/linux-seamonkey	< 2.7
pkg:freebsd/linux-firefox	< 10.0,1
pkg:freebsd/firefox	> 4.0,1, < 10.0,1

ID

FREEBSD:0A9E2B72-4CB7-11E1-9146-14DAE9EBCF89

Severity

high

Severity from

CVE-2012-0443

URL

http://vuxml.freebsd.org/freebsd/0a9e2b72-4cb7-11e1-9146-14dae9ebcf89.html

Published

2012-01-31T00:00:00
(12 years ago)

Modified

2012-02-01T00:00:00
(12 years ago)

Rights

FreeBSD VuXML Security Team

Other Advisories

Source	# ID	Name	URL
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-01.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-02.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-03.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-04.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-05.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-06.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-07.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-08.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2012/mfsa2012-09.html

Type	Package URL	Name / Product	Version
Affected	pkg:freebsd/thunderbird	thunderbird	> 4.0 < 10.0
Affected	pkg:freebsd/seamonkey	seamonkey	< 2.7
Affected	pkg:freebsd/linux-thunderbird	linux-thunderbird	< 10.0
Affected	pkg:freebsd/linux-seamonkey	linux-seamonkey	< 2.7
Affected	pkg:freebsd/linux-firefox	linux-firefox	< 10.0,1
Affected	pkg:freebsd/firefox	firefox	> 4.0,1 < 10.0,1

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date