1. Home
  2. Security Advisories
  3. FreeBSD
  4. FREEBSD:C87AA2D2-C3C4-11DE-AB08-000F20797EDE

[FREEBSD:C87AA2D2-C3C4-11DE-AB08-000F20797EDE] mozilla -- multiple vulnerabilities

Severity High
Affected Packages 3
CVEs 16
Info Packages References Vulnerabilities

Mozilla Foundation reports:

  MFSA 2009-64  Crashes with evidence of memory
     corruption (rv:1.9.1.4/ 1.9.0.15)
  MFSA 2009-63  Upgrade media libraries to fix memory
     safety bugs
  MFSA 2009-62  Download filename spoofing with RTL
     override
  MFSA 2009-61  Cross-origin data theft through
     document.getSelection()
  MFSA 2009-59  Heap buffer overflow in string to
     number conversion
  MFSA 2009-57  Chrome privilege escalation in
     XPCVariant::VariantDataToJS()
  MFSA 2009-56  Heap buffer overflow in GIF color map
     parser
  MFSA 2009-55  Crash in proxy auto-configuration
     regexp parsing
  MFSA 2009-54  Crash with recursive web-worker calls
  MFSA 2009-53  Local downloaded file tampering
  MFSA 2009-52  Form history vulnerable to stealing
Package Affected Version
pkg:freebsd/seamonkey < 2.0
pkg:freebsd/linux-firefox < 3.0.15
pkg:freebsd/firefox > 3.5.*,1, < 3.5.4,1
ID
FREEBSD:C87AA2D2-C3C4-11DE-AB08-000F20797EDE
Severity
high
Severity from
CVE-2009-3380
URL
http://vuxml.freebsd.org/freebsd/c87aa2d2-c3c4-11de-ab08-000f20797ede.html
Published
2009-10-27T00:00:00
(15 years ago)
Modified
2009-10-28T00:00:00
(15 years ago)
Rights
FreeBSD VuXML Security Team
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:freebsd/seamonkey seamonkey < 2.0
Affected pkg:freebsd/linux-firefox linux-firefox < 3.0.15
Affected pkg:freebsd/firefox firefox > 3.5.*,1 < 3.5.4,1
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date