FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 43.0,1
linux-firefox < 43.0,1
seamonkey < 2.40
linux-seamonkey < 2.40
firefox-esr < 38.5.0,1
libxul < 38.5.0
thunderbird < 38.5.0
linux-thunderbird < 38.5.0

Details

VuXML ID 2c2d1c39-1396-459a-91f5-ca03ee7c64c6
Discovery 2015-12-15
Entry 2015-12-15

The Mozilla Project reports:

MFSA 2015-134 Miscellaneous memory safety hazards (rv:43.0 / rv:38.5)

MFSA 2015-135 Crash with JavaScript variable assignment with unboxed objects

MFSA 2015-136 Same-origin policy violation using perfomance.getEntries and history navigation

MFSA 2015-137 Firefox allows for control characters to be set in cookies

MFSA 2015-138 Use-after-free in WebRTC when datachannel is used after being destroyed

MFSA 2015-139 Integer overflow allocating extremely large textures

MFSA 2015-140 Cross-origin information leak through web workers error events

MFSA 2015-141 Hash in data URI is incorrectly parsed

MFSA 2015-142 DOS due to malformed frames in HTTP/2

MFSA 2015-143 Linux file chooser crashes on malformed images due to flaws in Jasper library

MFSA 2015-144 Buffer overflows found through code inspection

MFSA 2015-145 Underflow through code inspection

MFSA 2015-146 Integer overflow in MP4 playback in 64-bit versions

MFSA 2015-147 Integer underflow and buffer overflow processing MP4 metadata in libstagefright

MFSA 2015-148 Privilege escalation vulnerabilities in WebExtension APIs

MFSA 2015-149 Cross-site reading attack through data and view-source URIs

References

CVE Name CVE-2015-7201
CVE Name CVE-2015-7202
CVE Name CVE-2015-7203
CVE Name CVE-2015-7204
CVE Name CVE-2015-7205
CVE Name CVE-2015-7207
CVE Name CVE-2015-7208
CVE Name CVE-2015-7210
CVE Name CVE-2015-7211
CVE Name CVE-2015-7212
CVE Name CVE-2015-7213
CVE Name CVE-2015-7214
CVE Name CVE-2015-7215
CVE Name CVE-2015-7216
CVE Name CVE-2015-7217
CVE Name CVE-2015-7218
CVE Name CVE-2015-7219
CVE Name CVE-2015-7220
CVE Name CVE-2015-7221
CVE Name CVE-2015-7222
CVE Name CVE-2015-7223
URL https://www.mozilla.org/security/advisories/mfsa2015-134/
URL https://www.mozilla.org/security/advisories/mfsa2015-135/
URL https://www.mozilla.org/security/advisories/mfsa2015-136/
URL https://www.mozilla.org/security/advisories/mfsa2015-137/
URL https://www.mozilla.org/security/advisories/mfsa2015-138/
URL https://www.mozilla.org/security/advisories/mfsa2015-139/
URL https://www.mozilla.org/security/advisories/mfsa2015-140/
URL https://www.mozilla.org/security/advisories/mfsa2015-141/
URL https://www.mozilla.org/security/advisories/mfsa2015-142/
URL https://www.mozilla.org/security/advisories/mfsa2015-143/
URL https://www.mozilla.org/security/advisories/mfsa2015-144/
URL https://www.mozilla.org/security/advisories/mfsa2015-145/
URL https://www.mozilla.org/security/advisories/mfsa2015-146/
URL https://www.mozilla.org/security/advisories/mfsa2015-147/
URL https://www.mozilla.org/security/advisories/mfsa2015-148/
URL https://www.mozilla.org/security/advisories/mfsa2015-149/