SUSE-SA:2011:028 -- SUSE MozillaFirefox,MozillaThunderbird remote code executionID: oval:org.secpod.oval:def:400005 | Date: (C)2012-01-31 (M)2021-12-11 |
Class: PATCH | Family: unix |
Mozilla Firefox and Thunderbird were updated to fix several security issues: * CVE-2011-2365 Miscellaneous memory safety hazards * CVE-2011-2373 Use-after-free vulnerability when viewing XUL document with script disabled * CVE-2011-2377 Memory corruption due to multipart/x-mixed-replace images * CVE-2011-2371 Integer overflow and arbitrary code execution in Array.reduceRight * CVE-2011-2363 Multiple dangling pointer vulnerabilities * CVE-2011-2362 Cookie isolation error * CVE-2011-2366 Stealing of cross-domain images using WebGL textures * CVE-2011-2368 Multiple WebGL crashes * CVE-2011-2369 XSS encoding hazard with inline SVG * CVE-2011-2370 Non-whitelisted site can trigger xpinstall
Product: |
MozillaFirefox |
MozillaThunderbird |