[FREEBSD:978B0F76-122D-11E4-AFE3-BC5FF4FB5E7B] mozilla -- multiple vulnerabilities
Severity
High
Affected Packages
6
CVEs
14
The Mozilla Project reports:
MFSA 2014-66 IFRAME sandbox same-origin access through
redirect
MFSA 2014-65 Certificate parsing broken by non-standard
character encoding
MFSA 2014-64 Crash in Skia library when scaling high
quality images
MFSA 2014-63 Use-after-free while when manipulating
certificates in the trusted cache
MFSA 2014-62 Exploitable WebGL crash with Cesium
JavaScript library
MFSA 2014-61 Use-after-free with FireOnStateChange
event
MFSA 2014-60 Toolbar dialog customization event
spoofing
MFSA 2014-59 Use-after-free in DirectWrite font
handling
MFSA 2014-58 Use-after-free in Web Audio due to
incorrect control message ordering
MFSA 2014-57 Buffer overflow during Web Audio
buffering for playback
MFSA 2014-56 Miscellaneous memory safety hazards
(rv:31.0 / rv:24.7)
Package | Affected Version |
---|---|
pkg:freebsd/thunderbird | < 24.7.0 |
pkg:freebsd/nss | < 3.16.1_2 |
pkg:freebsd/linux-thunderbird | < 24.7.0 |
pkg:freebsd/linux-firefox | < 31.0,1 |
pkg:freebsd/firefox-esr | < 24.7.0,1 |
pkg:freebsd/firefox | < 31.0,1 |
- ID
- FREEBSD:978B0F76-122D-11E4-AFE3-BC5FF4FB5E7B
- Severity
- high
- Severity from
- CVE-2014-1544
- URL
- http://vuxml.freebsd.org/freebsd/978b0f76-122d-11e4-afe3-bc5ff4fb5e7b.html
- Published
-
2014-07-22T00:00:00
(10 years ago) - Modified
-
2014-07-23T00:00:00
(10 years ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
Source | # ID | Name | URL |
---|---|---|---|
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-56.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-57.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-58.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-59.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-60.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-61.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-62.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-63.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-64.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-65.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/2014/mfsa2014-66.html | ||
FreeBSD VuXML | https://www.mozilla.org/security/announce/ |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:freebsd/thunderbird | thunderbird | < 24.7.0 | ||||
Affected | pkg:freebsd/nss | nss | < 3.16.1_2 | ||||
Affected | pkg:freebsd/linux-thunderbird | linux-thunderbird | < 24.7.0 | ||||
Affected | pkg:freebsd/linux-firefox | linux-firefox | < 31.0,1 | ||||
Affected | pkg:freebsd/firefox-esr | firefox-esr | < 24.7.0,1 | ||||
Affected | pkg:freebsd/firefox | firefox | < 31.0,1 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |