[FREEBSD:D9B43004-F5FD-4807-B1D7-DBF66455B244] mozilla -- multiple vulnerabilities
Severity
High
Affected Packages
8
CVEs
16
The Mozilla Project reports:
MFSA-2015-46 Miscellaneous memory safety hazards (rv:38.0
/ rv:31.7)
MFSA-2015-47 Buffer overflow parsing H.264 video with
Linux Gstreamer
MFSA-2015-48 Buffer overflow with SVG content and CSS
MFSA-2015-49 Referrer policy ignored when links opened by
middle-click and context menu
MFSA-2015-50 Out-of-bounds read and write in asm.js validation
MFSA-2015-51 Use-after-free during text processing with
vertical text enabled
MFSA-2015-52 Sensitive URL encoded information written to
Android logcat
MFSA-2015-53 Use-after-free due to Media Decoder Thread creation
during shutdown
MFSA-2015-54 Buffer overflow when parsing compressed XML
MFSA-2015-55 Buffer overflow and out-of-bounds read while
parsing MP4 video metadata
MFSA-2015-56 Untrusted site hosting trusted page can
intercept webchannel responses
MFSA-2015-57 Privilege escalation through IPC channel messages
MFSA-2015-58 Mozilla Windows updater can be run outside
of application directory
MFSA 2015-93 Integer overflows in libstagefright while processing
MP4 video metadata
| Package | Affected Version |
|---|---|
 pkg:freebsd/thunderbird
|
< 31.7.0 |
|
pkg:freebsd/seamonkey
|
< 2.35 |
|
pkg:freebsd/linux-thunderbird
|
< 31.7.0 |
|
pkg:freebsd/linux-seamonkey
|
< 2.35 |
|
pkg:freebsd/linux-firefox
|
< 38.0,1 |
|
pkg:freebsd/libxul
|
< 31.7.0 |
|
pkg:freebsd/firefox-esr
|
< 31.7.0,1 |
|
pkg:freebsd/firefox
|
< 38.0,1 |
- ID
- FREEBSD:D9B43004-F5FD-4807-B1D7-DBF66455B244
- Severity
- high
- Severity from
- CVE-2011-3079
- URL
- http://vuxml.freebsd.org/freebsd/d9b43004-f5fd-4807-b1d7-dbf66455b244.html
- Published
-
2015-05-12T00:00:00
(9 years ago) - Modified
-
2015-05-12T00:00:00
(9 years ago) - Rights
- FreeBSD VuXML Security Team
- Other Advisories
-
-
ALAS-2020-1364
-
DSA-3225-1
-
DSA-3260-1
-
DSA-3264-1
-
ELSA-2015-0988
-
ELSA-2015-1012
-
ELSA-2020-1011
-
FREEBSD:99029172-8253-407D-9D8B-2CFEAB9ABF81
-
GLSA-201504-01
-
GLSA-201512-07
-
GLSA-201605-06
-
RHSA-2015:0988
-
RHSA-2015:1012
-
RHSA-2020:1011
-
SUSE-SU-2015:0921-1
-
SUSE-SU-2015:0942-1
-
SUSE-SU-2015:0960-1
-
SUSE-SU-2015:0978-1
-
USN-2602-1
-
USN-2603-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:freebsd/thunderbird |
thunderbird
|
< 31.7.0 | ||||
| Affected | pkg:freebsd/seamonkey |
seamonkey
|
< 2.35 | ||||
| Affected | pkg:freebsd/linux-thunderbird |
linux-thunderbird
|
< 31.7.0 | ||||
| Affected | pkg:freebsd/linux-seamonkey |
linux-seamonkey
|
< 2.35 | ||||
| Affected | pkg:freebsd/linux-firefox |
linux-firefox
|
< 38.0,1 | ||||
| Affected | pkg:freebsd/libxul |
libxul
|
< 31.7.0 | ||||
| Affected | pkg:freebsd/firefox-esr |
firefox-esr
|
< 31.7.0,1 | ||||
| Affected | pkg:freebsd/firefox |
firefox
|
< 38.0,1 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |