Red Hat Security Advisory: firefox security, bug fix, and enhancement update
🔗 CVE IDs covered (12)
📋 Description
CVE-2008-5913 — mozilla: in-session phishing attack CVE-2009-5017 — Firefox: overlong UTF-8 seqence detection problem CVE-2010-0182 — mozilla: XMLDocument:: load() doesn't check nsIContentPolicy (MFSA 2010-24) CVE-2010-1121 — firefox: arbitrary code execution via memory corruption CVE-2010-1125 — firefox: keystrokes sent to hidden frame rather than visible frame due to javascript flaw CVE-2010-1196 — nsGenericDOMDataNode:: SetTextInternal CVE-2010-1197 — Content-Disposition: attachment ignored if Content-Type: multipart also present CVE-2010-1198 — Mozilla Freed object reuse across plugin instances CVE-2010-1199 — Mozilla Integer Overflow in XSLT Node Sorting CVE-2010-1200 — Mozilla Crashes with evidence of memory corruption CVE-2010-1202 — Mozilla Crashes with evidence of memory corruption CVE-2010-1203 — Mozilla Crashes with evidence of memory corruption
🔗 References (18)
- selfhttps://access.redhat.com/errata/RHSA-2010:0500
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttp://mozilla.com/en-US/firefox/3.6.4/releasenotes/
- externalhttp://mozilla.com/en-US/firefox/3.6/releasenotes/
- externalhttp://mozilla.org/security/known-vulnerabilities/firefox35.html
- externalhttp://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.4
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=480938
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=577029
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=577584
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=586580
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=590804
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=590810
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=590816
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=590828
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=590830
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=590833
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=590850
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0500.json