openSUSE-SU-2013:0175-1 -- Suse MozillaID: oval:org.secpod.oval:def:400476 | Date: (C)2013-02-06 (M)2021-12-09 |
Class: PATCH | Family: unix |
update to Firefox/Thunderbird 17.0 and Seamonkey 2.14 * MFSA 2012-91/CVE-2012-5842/CVE-2012-5843 Miscellaneous memory safety hazards * MFSA 2012-92/CVE-2012-4202 Buffer overflow while rendering GIF images * MFSA 2012-93/CVE-2012-4201 evalInSanbox location context incorrectly applied * MFSA 2012-94/CVE-2012-5836 Crash when combining SVG text on path with CSS * MFSA 2012-95/CVE-2012-4203 Javascript: URLs run in privileged context on New Tab page * MFSA 2012-96/CVE-2012-4204 Memory corruption in str_unescape * MFSA 2012-97/CVE-2012-4205 XMLHttpRequest inherits incorrect principal within sandbox * MFSA 2012-99/CVE-2012-4208 XrayWrappers exposes chrome-only properties when not in chrome compartment * MFSA 2012-100/CVE-2012-5841 Improper security filtering for cross-origin wrappers * MFSA 2012-101/CVE-2012-4207 Improper character decoding in HZ-GB-2312 charset * MFSA 2012-102/CVE-2012-5837 Script entered into Developer Toolbar runs with chrome privileges * MFSA 2012-103/CVE-2012-4209 Frames can shadow top.location * MFSA 2012-104/CVE-2012-4210 CSS and HTML injection through Style Inspector * MFSA 2012-105/CVE-2012-4214/CVE-2012-4215/CVE-2012-4216/ CVE-2012-5829/CVE-2012-5839/CVE-2012-5840/CVE-2012-4212/