FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 55.0,1
linux-seamonkey < 2.52
seamonkey < 2.52
firefox-esr < 52.3.0,1
linux-firefox < 52.3.0,2
libxul < 52.3.0
linux-thunderbird < 52.3.0
thunderbird < 52.3.0

Details

VuXML ID 555b244e-6b20-4546-851f-d8eb7d6c1ffa
Discovery 2017-08-08
Entry 2017-08-08

Mozilla Foundation reports:

CVE-2017-7798: XUL injection in the style editor in devtools

CVE-2017-7800: Use-after-free in WebSockets during disconnection

CVE-2017-7801: Use-after-free with marquee during window resizing

CVE-2017-7784: Use-after-free with image observers

CVE-2017-7802: Use-after-free resizing image elements

CVE-2017-7785: Buffer overflow manipulating ARIA attributes in DOM

CVE-2017-7786: Buffer overflow while painting non-displayable SVG

CVE-2017-7806: Use-after-free in layer manager with SVG

CVE-2017-7753: Out-of-bounds read with cached style data and pseudo-elements

CVE-2017-7787: Same-origin policy bypass with iframes through page reloads

CVE-2017-7807: Domain hijacking through AppCache fallback

CVE-2017-7792: Buffer overflow viewing certificates with an extremely long OID

CVE-2017-7804: Memory protection bypass through WindowsDllDetourPatcher

CVE-2017-7791: Spoofing following page navigation with data: protocol and modal alerts

CVE-2017-7808: CSP information leak with frame-ancestors containing paths

CVE-2017-7782: WindowsDllDetourPatcher allocates memory without DEP protections

CVE-2017-7781: Elliptic curve point addition error when using mixed Jacobian-affine coordinates

CVE-2017-7794: Linux file truncation via sandbox broker

CVE-2017-7803: CSP containing 'sandbox' improperly applied

CVE-2017-7799: Self-XSS XUL injection in about:webrtc

CVE-2017-7783: DOS attack through long username in URL

CVE-2017-7788: Sandboxed about:srcdoc iframes do not inherit CSP directives

CVE-2017-7789: Failure to enable HSTS when two STS headers are sent for a connection

CVE-2017-7790: Windows crash reporter reads extra memory for some non-null-terminated registry values

CVE-2017-7796: Windows updater can delete any file named update.log

CVE-2017-7797: Response header name interning leaks across origins

CVE-2017-7780: Memory safety bugs fixed in Firefox 55

CVE-2017-7779: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3

References

CVE Name CVE-2017-7753
CVE Name CVE-2017-7779
CVE Name CVE-2017-7780
CVE Name CVE-2017-7781
CVE Name CVE-2017-7782
CVE Name CVE-2017-7783
CVE Name CVE-2017-7784
CVE Name CVE-2017-7785
CVE Name CVE-2017-7786
CVE Name CVE-2017-7787
CVE Name CVE-2017-7788
CVE Name CVE-2017-7789
CVE Name CVE-2017-7790
CVE Name CVE-2017-7791
CVE Name CVE-2017-7792
CVE Name CVE-2017-7794
CVE Name CVE-2017-7796
CVE Name CVE-2017-7797
CVE Name CVE-2017-7798
CVE Name CVE-2017-7799
CVE Name CVE-2017-7800
CVE Name CVE-2017-7801
CVE Name CVE-2017-7802
CVE Name CVE-2017-7803
CVE Name CVE-2017-7804
CVE Name CVE-2017-7806
CVE Name CVE-2017-7807
CVE Name CVE-2017-7808
URL https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/