[FREEBSD:4A21CE2C-BB13-11DF-8E32-000F20797EDE] mozilla -- multiple vulnerabilities
Severity
High
Affected Packages
6
CVEs
15
The Mozilla Project reports:
MFSA 2010-49 Miscellaneous memory safety hazards (rv:1.9.2.9/ 1.9.1.12)
MFSA 2010-50 Frameset integer overflow vulnerability
MFSA 2010-51 Dangling pointer vulnerability using DOM plugin array
MFSA 2010-52 Windows XP DLL loading vulnerability
MFSA 2010-53 Heap buffer overflow in nsTextFrameUtils::TransformText
MFSA 2010-54 Dangling pointer vulnerability in nsTreeSelection
MFSA 2010-55 XUL tree removal crash and remote code execution
MFSA 2010-56 Dangling pointer vulnerability in nsTreeContentView
MFSA 2010-57 Crash and remote code execution in normalizeDocument
MFSA 2010-58 Crash on Mac using fuzzed font in data: URL
MFSA 2010-59 SJOW creates scope chains ending in outer object
MFSA 2010-60 XSS using SJOW scripted function
MFSA 2010-61 UTF-7 XSS by overriding document charset using object type attribute
MFSA 2010-62 Copy-and-paste or drag-and-drop into designMode document allows XSS
MFSA 2010-63 Information leak via XMLHttpRequest statusText
| Package | Affected Version |
|---|---|
 pkg:freebsd/thunderbird
|
< 3.0.7 |
|
pkg:freebsd/seamonkey
|
> 2.0.*, < 2.0.7 |
|
pkg:freebsd/linux-firefox-devel
|
< 3.5.12 |
|
pkg:freebsd/linux-firefox
|
< 3.6.9,1 |
|
pkg:freebsd/libxul
|
> 1.9.2.*, < 1.9.2.9 |
|
pkg:freebsd/firefox
|
> 3.6.*,1, < 3.6.9,1 |
- ID
- FREEBSD:4A21CE2C-BB13-11DF-8E32-000F20797EDE
- Severity
- high
- Severity from
- CVE-2010-2765
- URL
- http://vuxml.freebsd.org/freebsd/4a21ce2c-bb13-11df-8e32-000f20797ede.html
- Published
-
2010-09-07T00:00:00
(14 years ago) - Modified
-
2010-09-08T00:00:00
(14 years ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
ELSA-2010-0681
FEDORA-2010-14362
GLSA-201301-01
USN-975-1| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:freebsd/thunderbird |
thunderbird
|
< 3.0.7 | ||||
| Affected | pkg:freebsd/seamonkey |
seamonkey
|
> 2.0.* < 2.0.7 | ||||
| Affected | pkg:freebsd/linux-firefox-devel |
linux-firefox-devel
|
< 3.5.12 | ||||
| Affected | pkg:freebsd/linux-firefox |
linux-firefox
|
< 3.6.9,1 | ||||
| Affected | pkg:freebsd/libxul |
libxul
|
> 1.9.2.* < 1.9.2.9 | ||||
| Affected | pkg:freebsd/firefox |
firefox
|
> 3.6.*,1 < 3.6.9,1 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |