Red Hat Security Advisory: firefox security update
🔗 CVE IDs covered (11)
📋 Description
CVE-2010-3766 — Mozilla use-after-free error with nsDOMAttribute MutationObserver (MFSA 2010-80) CVE-2010-3767 — Mozilla integer overflow vulnerability in NewIdArray (MFSA 2010-81) CVE-2010-3768 — Mozilla add support for OTS font sanitizer (MFSA 2010-78) CVE-2010-3770 — Mozilla XSS hazard in multiple character encodings (MFSA 2010-84) CVE-2010-3771 — Mozilla Chrome privilege escalation with window.open and element (MFSA 2010-76) CVE-2010-3772 — Mozilla crash and remote code execution using HTML tags inside a XUL tree (MFSA 2010-77) CVE-2010-3773 — Mozilla incomplete fix for CVE-2010-0179 (MFSA 2010-82) CVE-2010-3774 — Mozilla location bar SSL spoofing using network error page (MFSA 2010-83) CVE-2010-3775 — data: URL meta refresh (MFSA 2010-79) CVE-2010-3776 — Mozilla miscellaneous memory safety hazards (MFSA 2010-74) CVE-2010-3777 — Mozilla miscellaneous memory safety hazards (MFSA 2010-74)
🔗 References (16)
- selfhttps://access.redhat.com/errata/RHSA-2010:0966
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttp://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.13
- externalhttp://code.google.com/p/ots/
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660408
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660415
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660417
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660419
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660420
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660422
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660429
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660431
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660435
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660438
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=660439
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2010/rhsa-2010_0966.json