FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
4.0,1 < firefox < 8.0,1
3.6.*,1 < firefox < 3.6.24,1
1.9.2.* < libxul < 1.9.2.24
linux-firefox < 8.0,1
linux-thunderbird < 8.0
4.0 < thunderbird < 8.0
thunderbird < 3.1.16

Details

VuXML ID 6c8ad3e8-0a30-11e1-9580-4061862b8c22
Discovery 2011-11-08
Entry 2011-11-08

The Mozilla Project reports:

MFSA 2011-46 loadSubScript unwraps XPCNativeWrapper scope parameter (1.9.2 branch)

MFSA 2011-47 Potential XSS against sites using Shift-JIS

MFSA 2011-48 Miscellaneous memory safety hazards (rv:8.0)

MFSA 2011-49 Memory corruption while profiling using Firebug

MFSA 2011-50 Cross-origin data theft using canvas and Windows D2D

MFSA 2011-51 Cross-origin image theft on Mac with integrated Intel GPU

MFSA 2011-52 Code execution via NoWaiverWrapper

References

CVE Name CVE-2011-3647
CVE Name CVE-2011-3648
CVE Name CVE-2011-3649
CVE Name CVE-2011-3650
CVE Name CVE-2011-3651
CVE Name CVE-2011-3652
CVE Name CVE-2011-3653
CVE Name CVE-2011-3654
CVE Name CVE-2011-3655
URL http://www.mozilla.org/security/announce/2011/mfsa2011-46.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-47.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-48.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-49.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-50.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-51.html
URL http://www.mozilla.org/security/announce/2011/mfsa2011-52.html