Red Hat Security Advisory: firefox security update
🔗 CVE IDs covered (12)
📋 Description
CVE-2010-2760 — Mozilla Dangling pointer vulnerability in nsTreeSelection (MFSA 2010-54) CVE-2010-2762 — Mozilla SJOW creates scope chains ending in outer object (MFSA 2010-59) CVE-2010-2764 — Mozilla Information leak via XMLHttpRequest statusText (MFSA 2010-63) CVE-2010-2765 — Mozilla Frameset integer overflow vulnerability (MFSA 2010-50) CVE-2010-2766 — Mozilla Crash and remote code execution in normalizeDocument (MFSA 2010-57) CVE-2010-2767 — Mozilla Dangling pointer vulnerability using DOM plugin array (MFSA 2010-51) CVE-2010-2768 — Mozilla UTF-7 XSS by overriding document charset using type attribute (MFSA 2010-61) CVE-2010-2769 — Mozilla Copy-and-paste or drag-and-drop into designMode document allows XSS (MFSA 2010-62) CVE-2010-3166 — nsTextFrameUtils:: TransformText (MFSA 2010-53) CVE-2010-3167 — Mozilla Dangling pointer vulnerability in nsTreeContentView (MFSA 2010-56) CVE-2010-3168 — Mozilla XUL tree removal crash and remote code execution (MFSA 2010-55) CVE-2010-3169 — Mozilla Miscellaneous memory safety hazards
🔗 References (16)
- selfhttps://access.redhat.com/errata/RHSA-2010:0681
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttp://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.9
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630055
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630056
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630059
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630061
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630062
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630064
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630067
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630069
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630071
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630074
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630075
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=630078
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0681.json