[FREEBSD:E3F0374A-7AD6-11E2-84CD-D43D7E0C7C02] mozilla -- multiple vulnerabilities

Severity High

Affected Packages 7

CVEs 8

The Mozilla Project reports:

  MFSA 2013-21 Miscellaneous memory safety hazards (rv:19.0 /
    rv:17.0.3)
  MFSA 2013-22 Out-of-bounds read in image rendering
  MFSA 2013-23 Wrapped WebIDL objects can be wrapped again
  MFSA 2013-24 Web content bypass of COW and SOW security wrappers
  MFSA 2013-25 Privacy leak in JavaScript Workers
  MFSA 2013-26 Use-after-free in nsImageLoadingContent
  MFSA 2013-27 Phishing on HTTPS connection through malicious proxy
  MFSA 2013-28 Use-after-free, out of bounds read, and buffer
    overflow issues found using Address Sanitizer

Package	Affected Version
pkg:freebsd/thunderbird	> 11.0, < 17.0.3
pkg:freebsd/seamonkey	< 2.16
pkg:freebsd/linux-thunderbird	< 17.0.3
pkg:freebsd/linux-seamonkey	< 2.16
pkg:freebsd/linux-firefox	< 17.0.3,1
pkg:freebsd/libxul	> 1.9.2.*, < 10.0.12
pkg:freebsd/firefox	> 18.0,1, < 19.0,1

ID

FREEBSD:E3F0374A-7AD6-11E2-84CD-D43D7E0C7C02

Severity

high

Severity from

CVE-2013-0765

URL

http://vuxml.freebsd.org/freebsd/e3f0374a-7ad6-11e2-84cd-d43d7e0c7c02.html

Published

2013-02-19T00:00:00
(11 years ago)

Modified

2013-02-19T00:00:00
(11 years ago)

Rights

FreeBSD VuXML Security Team

Other Advisories

Source	# ID	Name	URL
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-20.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-21.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-22.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-23.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-24.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-25.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-26.html
FreeBSD VuXML			http://www.mozilla.org/security/announce/2013/mfsa2013-27.html
FreeBSD VuXML			http://www.mozilla.org/security/known-vulnerabilities/

Type	Package URL	Name / Product	Version
Affected	pkg:freebsd/thunderbird	thunderbird	> 11.0 < 17.0.3
Affected	pkg:freebsd/seamonkey	seamonkey	< 2.16
Affected	pkg:freebsd/linux-thunderbird	linux-thunderbird	< 17.0.3
Affected	pkg:freebsd/linux-seamonkey	linux-seamonkey	< 2.16
Affected	pkg:freebsd/linux-firefox	linux-firefox	< 17.0.3,1
Affected	pkg:freebsd/libxul	libxul	> 1.9.2.* < 10.0.12
Affected	pkg:freebsd/firefox	firefox	> 18.0,1 < 19.0,1

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date