FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
11.0,1 < firefox < 17.0.2,1
firefox < 10.0.12,1
linux-firefox < 17.0.2,1
linux-seamonkey < 2.15
linux-thunderbird < 17.0.2
seamonkey < 2.15
11.0 < thunderbird < 17.0.2
thunderbird < 10.0.12
1.9.2.* < libxul < 10.0.12
ca_root_nss < 3.14.1

Details

VuXML ID a4ed6632-5aa9-11e2-8fcb-c8600054b392
Discovery 2013-01-08
Entry 2013-01-09

The Mozilla Project reports:

MFSA 2013-01 Miscellaneous memory safety hazards (rv:18.0/ rv:10.0.12 / rv:17.0.2)

MFSA 2013-02 Use-after-free and buffer overflow issues found using Address Sanitizer

MFSA 2013-03 Buffer Overflow in Canvas

MFSA 2013-04 URL spoofing in addressbar during page loads

MFSA 2013-05 Use-after-free when displaying table with many columns and column groups

MFSA 2013-06 Touch events are shared across iframes

MFSA 2013-07 Crash due to handling of SSL on threads

MFSA 2013-08 AutoWrapperChanger fails to keep objects alive during garbage collection

MFSA 2013-09 Compartment mismatch with quickstubs returned values

MFSA 2013-10 Event manipulation in plugin handler to bypass same-origin policy

MFSA 2013-11 Address space layout leaked in XBL objects

MFSA 2013-12 Buffer overflow in Javascript string concatenation

MFSA 2013-13 Memory corruption in XBL with XML bindings containing SVG

MFSA 2013-14 Chrome Object Wrapper (COW) bypass through changing prototype

MFSA 2013-15 Privilege escalation through plugin objects

MFSA 2013-16 Use-after-free in serializeToStream

MFSA 2013-17 Use-after-free in ListenerManager

MFSA 2013-18 Use-after-free in Vibrate

MFSA 2013-19 Use-after-free in Javascript Proxy objects

MFSA 2013-20 Mis-issued TURKTRUST certificates

References

CVE Name CVE-2012-5829
CVE Name CVE-2013-0743
CVE Name CVE-2013-0744
CVE Name CVE-2013-0745
CVE Name CVE-2013-0746
CVE Name CVE-2013-0747
CVE Name CVE-2013-0748
CVE Name CVE-2013-0749
CVE Name CVE-2013-0750
CVE Name CVE-2013-0751
CVE Name CVE-2013-0752
CVE Name CVE-2013-0753
CVE Name CVE-2013-0754
CVE Name CVE-2013-0755
CVE Name CVE-2013-0756
CVE Name CVE-2013-0757
CVE Name CVE-2013-0758
CVE Name CVE-2013-0759
CVE Name CVE-2013-0760
CVE Name CVE-2013-0761
CVE Name CVE-2013-0762
CVE Name CVE-2013-0763
CVE Name CVE-2013-0764
CVE Name CVE-2013-0766
CVE Name CVE-2013-0767
CVE Name CVE-2013-0768
CVE Name CVE-2013-0769
CVE Name CVE-2013-0770
CVE Name CVE-2013-0771
URL http://www.mozilla.org/security/announce/2013/mfsa2013-01.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-02.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-03.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-04.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-05.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-06.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-07.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-08.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-09.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-10.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-11.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-12.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-13.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-14.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-15.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-16.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-17.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-18.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-19.html
URL http://www.mozilla.org/security/announce/2013/mfsa2013-20.html
URL http://www.mozilla.org/security/known-vulnerabilities/