Численні уразливості в Mozilla Firefox, Thunderbird, Seamonkey

20:02 30.01.2016

Виявлені численні уразливості безпеки в Mozilla Firefox, Thunderbird, Seamonkey.

Уразливі продукти: Mozilla Firefox ESR 38.5, Firefox 43, Thunderbird 38.5, SeaMonkey 2.39.

Пошкодження пам’яті, DoS, переповнення буфера, підробка адресного рядка, обхід обмежень.

  • MFSA 2016-01 Miscellaneous memory safety hazards (rv:44.0 / rv:38.6) (деталі)
  • MFSA 2016-02 Out of Memory crash when parsing GIF format images (деталі)
  • MFSA 2016-03 Buffer overflow in WebGL after out of memory allocation (деталі)
  • MFSA 2016-04 Firefox allows for control characters to be set in cookie names (деталі)
  • MFSA 2016-05 Addressbar spoofing through stored data url shortcuts on Firefox for Android (деталі)
  • MFSA 2016-06 Missing delay following user click events in protocol handler dialog (деталі)
  • MFSA 2016-07 Errors in mp_div and mp_exptmod cryptographic functions in NSS (деталі)
  • MFSA 2016-08 Delay following click events in file download dialog too short on OS X (деталі)
  • MFSA 2016-09 Addressbar spoofing attacks (деталі)
  • MFSA 2016-10 Unsafe memory manipulation found through code inspection (деталі)
  • MFSA 2016-11 Application Reputation service disabled in Firefox 43 (деталі)
  • MFSA 2016-12 Lightweight themes on Firefox for Android do not verify a secure connection (деталі)
  • MFSA 2016-15 Use-after-free in NSS during SSL connections in low memory (деталі)

Leave a Reply

You must be logged in to post a comment.