FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mozilla -- multiple vulnerabilities

Affected packages
firefox < 31.0,1
firefox-esr < 24.7.0,1
linux-firefox < 31.0,1
linux-thunderbird < 24.7.0
thunderbird < 24.7.0
nss < 3.16.1_2

Details

VuXML ID 978b0f76-122d-11e4-afe3-bc5ff4fb5e7b
Discovery 2014-07-22
Entry 2014-07-23

The Mozilla Project reports:

MFSA 2014-66 IFRAME sandbox same-origin access through redirect

MFSA 2014-65 Certificate parsing broken by non-standard character encoding

MFSA 2014-64 Crash in Skia library when scaling high quality images

MFSA 2014-63 Use-after-free while when manipulating certificates in the trusted cache

MFSA 2014-62 Exploitable WebGL crash with Cesium JavaScript library

MFSA 2014-61 Use-after-free with FireOnStateChange event

MFSA 2014-60 Toolbar dialog customization event spoofing

MFSA 2014-59 Use-after-free in DirectWrite font handling

MFSA 2014-58 Use-after-free in Web Audio due to incorrect control message ordering

MFSA 2014-57 Buffer overflow during Web Audio buffering for playback

MFSA 2014-56 Miscellaneous memory safety hazards (rv:31.0 / rv:24.7)

References

CVE Name CVE-2014-1544
CVE Name CVE-2014-1547
CVE Name CVE-2014-1548
CVE Name CVE-2014-1549
CVE Name CVE-2014-1550
CVE Name CVE-2014-1551
CVE Name CVE-2014-1552
CVE Name CVE-2014-1555
CVE Name CVE-2014-1556
CVE Name CVE-2014-1557
CVE Name CVE-2014-1558
CVE Name CVE-2014-1559
CVE Name CVE-2014-1560
CVE Name CVE-2014-1561
URL https://www.mozilla.org/security/announce/
URL https://www.mozilla.org/security/announce/2014/mfsa2014-56.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-57.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-58.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-59.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-60.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-61.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-62.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-63.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-64.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-65.html
URL https://www.mozilla.org/security/announce/2014/mfsa2014-66.html