FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
3.5.*,1 < firefox < 3.5.6,1
3.*,1 < firefox < 3.0.16,1
linux-firefox < 3.0.16,1
linux-seamonkey < 2.0.1
seamonkey < 2.0.1
3.0 <= thunderbird < 3.0.1

Details

VuXML ID 01c57d20-ea26-11de-bd39-00248c9b4be7
Discovery 2009-12-16
Entry 2009-12-16
Modified 2010-01-21

Mozilla Project reports:

MFSA 2009-71 GeckoActiveXObject exception messages can be used to enumerate installed COM objects

MFSA 2009-70 Privilege escalation via chrome window.opener

MFSA 2009-69 Location bar spoofing vulnerabilities

MFSA 2009-68 NTLM reflection vulnerability

MFSA 2009-67 Integer overflow, crash in libtheora video library

MFSA 2009-66 Memory safety fixes in liboggplay media library

MFSA 2009-65 Crashes with evidence of memory corruption (rv:1.9.1.6/ 1.9.0.16)

References

CVE Name CVE-2009-3388
CVE Name CVE-2009-3389
CVE Name CVE-2009-3979
CVE Name CVE-2009-3980
CVE Name CVE-2009-3981
CVE Name CVE-2009-3982
CVE Name CVE-2009-3983
CVE Name CVE-2009-3984
CVE Name CVE-2009-3985
CVE Name CVE-2009-3986
URL http://www.mozilla.org/security/announce/2009/mfsa2009-65.html
URL http://www.mozilla.org/security/announce/2009/mfsa2009-66.html
URL http://www.mozilla.org/security/announce/2009/mfsa2009-67.html
URL http://www.mozilla.org/security/announce/2009/mfsa2009-68.html
URL http://www.mozilla.org/security/announce/2009/mfsa2009-69.html
URL http://www.mozilla.org/security/announce/2009/mfsa2009-70.html
URL http://www.mozilla.org/security/announce/2009/mfsa2009-71.html