Information on source package firefox

Available versions

ReleaseVersion
sid63.0.1-1

Open unimportant issues

BugsidDescription
CVE-2005-4685vulnerableFirefox and Mozilla can associate a cookie with multiple domains when ...
CVE-2005-2395vulnerableMozilla Firefox 1.0.4 and 1.0.5 does not choose the challenge with the ...
CVE-2004-1639vulnerableMozilla Firefox before 0.10, Mozilla 5.0, and Gecko 20040913 allows ...

Resolved issues

BugDescription
CVE-2018-6126
CVE-2018-5188Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ...
CVE-2018-5187Memory safety bugs present in Firefox 60 and Firefox ESR 60. Some of ...
CVE-2018-5186Memory safety bugs present in Firefox 60. Some of these bugs showed ...
CVE-2018-5182If a text string that happens to be a filename in the operating ...
CVE-2018-5181If a URL using the "file:" protocol is dragged and dropped onto an ...
CVE-2018-5180A use-after-free vulnerability can occur during WebGL operations. ...
CVE-2018-5177A vulnerability exists in XSLT during number formatting where a ...
CVE-2018-5176The JSON Viewer displays clickable hyperlinks for strings that are ...
CVE-2018-5175A mechanism to bypass Content Security Policy (CSP) protections on ...
CVE-2018-5174In the Windows 10 April 2018 Update, Windows Defender SmartScreen ...
CVE-2018-5173The filename appearing in the "Downloads" panel improperly renders ...
CVE-2018-5172The Live Bookmarks page and the PDF viewer can run injected script ...
CVE-2018-5169If manipulated hyperlinked text with "chrome:" URL contained in it is ...
CVE-2018-5168Sites can bypass security checks on permissions to install lightweight ...
CVE-2018-5167The web console and JavaScript debugger do not sanitize all output ...
CVE-2018-5166WebExtensions can use request redirection and a "filterReponseData" ...
CVE-2018-5165In 32-bit versions of Firefox, the Adobe Flash plugin setting for ...
CVE-2018-5164Content Security Policy (CSP) is not applied correctly to all parts of ...
CVE-2018-5163If a malicious attacker has used another vulnerability to gain full ...
CVE-2018-5160WebRTC can use a "WrappedI420Buffer" pixel buffer but the owning image ...
CVE-2018-5159An integer overflow can occur in the Skia library due to 32-bit ...
CVE-2018-5158The PDF viewer does not sufficiently sanitize PostScript calculator ...
CVE-2018-5157Same-origin protections for the PDF viewer can be bypassed, allowing a ...
CVE-2018-5156A vulnerability can occur when capturing a media stream when the media ...
CVE-2018-5155A use-after-free vulnerability can occur while adjusting layout during ...
CVE-2018-5154A use-after-free vulnerability can occur while enumerating attributes ...
CVE-2018-5153If websocket data is sent with mixed text and binary in a single ...
CVE-2018-5152WebExtensions with the appropriate permissions can attach content ...
CVE-2018-5151Memory safety bugs were reported in Firefox 59. Some of these bugs ...
CVE-2018-5150Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and ...
CVE-2018-5148A use-after-free vulnerability can occur in the compositor during ...
CVE-2018-5147The libtremor library has the same flaw as CVE-2018-5146. This library ...
CVE-2018-5146An out of bounds memory write while processing Vorbis audio data was ...
CVE-2018-5143URLs using "javascript:" have the protocol removed when pasted into ...
CVE-2018-5142If Media Capture and Streams API permission is requested from ...
CVE-2018-5141A vulnerability in the notifications Push API where notifications can ...
CVE-2018-5140Image for moz-icons can be accessed through the "moz-icon:" protocol ...
CVE-2018-5138A spoofing vulnerability can occur when a malicious site with an ...
CVE-2018-5137A legacy extension's non-contentaccessible, defined resources can be ...
CVE-2018-5136A shared worker created from a "data:" URL in one tab can be shared by ...
CVE-2018-5135WebExtensions can bypass normal restrictions in some circumstances and ...
CVE-2018-5134WebExtensions may use "view-source:" URLs to view local "file:" URL ...
CVE-2018-5133If the "app.support.baseURL" preference is changed by a malicious ...
CVE-2018-5132The Find API for WebExtensions can search some privileged pages, such ...
CVE-2018-5131Under certain circumstances the "fetch()" API can return transient ...
CVE-2018-5130When packets with a mismatched RTP payload type are sent in WebRTC ...
CVE-2018-5129A lack of parameter validation on IPC messages results in a potential ...
CVE-2018-5128A use-after-free vulnerability can occur when manipulating elements, ...
CVE-2018-5127A buffer overflow can occur when manipulating the SVG ...
CVE-2018-5126Memory safety bugs were reported in Firefox 58. Some of these bugs ...
CVE-2018-5125Memory safety bugs were reported in Firefox 58 and Firefox ESR 52.6. ...
CVE-2018-5124
CVE-2018-5122A potential integer overflow in the "DoCrypt" function of WebCrypto ...
CVE-2018-5121Low descenders on some Tibetan characters in several fonts on OS X are ...
CVE-2018-5119The reader view will display cross-origin content when CORS headers ...
CVE-2018-5118The screenshot images displayed in the Activity Stream page displayed ...
CVE-2018-5117If right-to-left text is used in the addressbar with left-to-right ...
CVE-2018-5116WebExtensions with the "ActiveTab" permission are able to access ...
CVE-2018-5115If an HTTP authentication prompt is triggered by a background network ...
CVE-2018-5114If an existing cookie is changed to be "HttpOnly" while a document is ...
CVE-2018-5113The "browser.identity.launchWebAuthFlow" function of WebExtensions is ...
CVE-2018-5112Development Tools panels of an extension are required to load URLs for ...
CVE-2018-5111When the text of a specially formatted URL is dragged to the ...
CVE-2018-5110If cursor visibility is toggled by script using from 'none' to an ...
CVE-2018-5109An audio capture session can started under an incorrect origin from ...
CVE-2018-5108A Blob URL can violate origin attribute segregation, allowing it to be ...
CVE-2018-5107The printing process can bypass local access protections to read files ...
CVE-2018-5106Style editor traffic in the Developer Tools can be routed through a ...
CVE-2018-5105WebExtensions can bypass user prompts to first save and then open an ...
CVE-2018-5104A use-after-free vulnerability can occur during font face manipulation ...
CVE-2018-5103A use-after-free vulnerability can occur during mouse event handling ...
CVE-2018-5102A use-after-free vulnerability can occur when manipulating HTML media ...
CVE-2018-5101A use-after-free vulnerability can occur when manipulating floating ...
CVE-2018-5100A use-after-free vulnerability can occur when arguments passed to the ...
CVE-2018-5099A use-after-free vulnerability can occur when the widget listener is ...
CVE-2018-5098A use-after-free vulnerability can occur when form input elements, ...
CVE-2018-5097A use-after-free vulnerability can occur during XSL transformations ...
CVE-2018-5095An integer overflow vulnerability in the Skia library when allocating ...
CVE-2018-5094A heap buffer overflow vulnerability may occur in WebAssembly when ...
CVE-2018-5093A heap buffer overflow vulnerability may occur in WebAssembly during ...
CVE-2018-5092A use-after-free vulnerability can occur when the thread for a Web ...
CVE-2018-5091A use-after-free vulnerability can occur during WebRTC connections ...
CVE-2018-5090Memory safety bugs were reported in Firefox 57. Some of these bugs ...
CVE-2018-5089Memory safety bugs were reported in Firefox 57 and Firefox ESR 52.5. ...
CVE-2018-12403
CVE-2018-12402
CVE-2018-12401
CVE-2018-12400
CVE-2018-12399
CVE-2018-12398
CVE-2018-12397
CVE-2018-12396
CVE-2018-12395
CVE-2018-12393
CVE-2018-12392
CVE-2018-12391
CVE-2018-12390
CVE-2018-12388
CVE-2018-12387A vulnerability where the JavaScript JIT compiler inlines ...
CVE-2018-12386A vulnerability in register allocation in JavaScript can lead to type ...
CVE-2018-12385A potentially exploitable crash in TransportSecurityInfo used for SSL ...
CVE-2018-12383If a user saved passwords before Firefox 58 and then later set a ...
CVE-2018-12382The displayed addressbar URL can be spoofed on Firefox for Android ...
CVE-2018-12381Manually dragging and dropping an Outlook email message into the ...
CVE-2018-12379When the Mozilla Updater opens a MAR format file which contains a very ...
CVE-2018-12378A use-after-free vulnerability can occur when an IndexedDB index is ...
CVE-2018-12377A use-after-free vulnerability can occur when refresh driver timers ...
CVE-2018-12376Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of ...
CVE-2018-12375Memory safety bugs present in Firefox 61. Some of these bugs showed ...
CVE-2018-12371
CVE-2018-12370In Reader View SameSite cookie protections are not checked on exiting. ...
CVE-2018-12369WebExtensions bundled with embedded experiments were not correctly ...
CVE-2018-12368Windows 10 does not warn users before opening executable files with ...
CVE-2018-12367In the previous mitigations for Spectre, the resolution or precision ...
CVE-2018-12366An invalid grid size during QCMS (color profile) transformations can ...
CVE-2018-12365A compromised IPC child process can escape the content sandbox and ...
CVE-2018-12364NPAPI plugins, such as Adobe Flash, can send non-simple cross-origin ...
CVE-2018-12363A use-after-free vulnerability can occur when script uses mutation ...
CVE-2018-12362An integer overflow can occur during graphics operations done by the ...
CVE-2018-12361An integer overflow can occur in the SwizzleData code while ...
CVE-2018-12360A use-after-free vulnerability can occur when deleting an input ...
CVE-2018-12359A buffer overflow can occur when rendering canvas content while ...
CVE-2018-12358Service workers can use redirection to avoid the tainting of ...
CVE-2017-7845A buffer overflow occurs when drawing and validating elements using ...
CVE-2017-7844A combination of an external SVG image referenced on a page and the ...
CVE-2017-7843When Private Browsing mode is used, it is possible for a web worker to ...
CVE-2017-7842If a document's Referrer Policy attribute is set to "no-referrer" ...
CVE-2017-7840JavaScript can be injected into an exported bookmarks file by placing ...
CVE-2017-7839Control characters prepended before "javascript:" URLs pasted in the ...
CVE-2017-7838Punycode format text will be displayed for entire qualified ...
CVE-2017-7837SVG loaded through "<img>" tags can use "<meta>" tags within the SVG ...
CVE-2017-7836The "pingsender" executable used by the Firefox Health Report ...
CVE-2017-7835Mixed content blocking of insecure (HTTP) sub-resources in a secure ...
CVE-2017-7834A "data:" URL loaded in a new tab did not inherit the Content Security ...
CVE-2017-7833Some Arabic and Indic vowel marker characters can be combined with ...
CVE-2017-7832The combined, single character, version of the letter 'i' with any of ...
CVE-2017-7831A vulnerability where the security wrapper does not deny access to ...
CVE-2017-7830The Resource Timing API incorrectly revealed navigations in ...
CVE-2017-7828A use-after-free vulnerability can occur when flushing and resizing ...
CVE-2017-7827Memory safety bugs were reported in Firefox 56. Some of these bugs ...
CVE-2017-7826Memory safety bugs were reported in Firefox 56 and Firefox ESR 52.4. ...
CVE-2017-7825Several fonts on OS X display some Tibetan and Arabic characters as ...
CVE-2017-7824A buffer overflow occurs when drawing and validating elements with the ...
CVE-2017-7823The content security policy (CSP) "sandbox" directive did not create a ...
CVE-2017-7822The AES-GCM implementation in WebCrypto API accepts 0-length IV when ...
CVE-2017-7821A vulnerability where WebExtensions can download and attempt to open a ...
CVE-2017-7820The "instanceof" operator can bypass the Xray wrapper mechanism. When ...
CVE-2017-7819A use-after-free vulnerability can occur in design mode when image ...
CVE-2017-7818A use-after-free vulnerability can occur when manipulating arrays of ...
CVE-2017-7817A spoofing vulnerability can occur when a page switches to fullscreen ...
CVE-2017-7816WebExtensions could use popups and panels in the extension UI to load ...
CVE-2017-7815On pages containing an iframe, the "data:" protocol can be used to ...
CVE-2017-7814File downloads encoded with "blob:" and "data:" URL elements bypassed ...
CVE-2017-7813Inside the JavaScript parser, a cast of an integer to a narrower type ...
CVE-2017-7812If web content on a page is dragged onto portions of the browser UI, ...
CVE-2017-7811Memory safety bugs were reported in Firefox 55. Some of these bugs ...
CVE-2017-7810Memory safety bugs were reported in Firefox 55 and Firefox ESR 52.3. ...
CVE-2017-7809A use-after-free vulnerability can occur when an editor DOM node is ...
CVE-2017-7808A content security policy (CSP) "frame-ancestors" directive containing ...
CVE-2017-7807A mechanism that uses AppCache to hijack a URL in a domain using ...
CVE-2017-7806A use-after-free vulnerability can occur when the layer manager is ...
CVE-2017-7805During TLS 1.2 exchanges, handshake hashes are generated which point ...
CVE-2017-7804The destructor function for the "WindowsDllDetourPatcher" class can be ...
CVE-2017-7803When a page's content security policy (CSP) header contains a ...
CVE-2017-7802A use-after-free vulnerability can occur when manipulating the DOM ...
CVE-2017-7801A use-after-free vulnerability can occur while re-computing layout for ...
CVE-2017-7800A use-after-free vulnerability can occur in WebSockets when the object ...
CVE-2017-7799JavaScript in the "about:webrtc" page is not sanitized properly being ...
CVE-2017-7798The Developer Tools feature suffers from a XUL injection vulnerability ...
CVE-2017-7797Response header name interning does not have same-origin protections ...
CVE-2017-7796On Windows systems, the logger run by the Windows updater deletes the ...
CVE-2017-7794On Linux systems, if the content process is compromised, the sandbox ...
CVE-2017-7793A use-after-free vulnerability can occur in the Fetch API when the ...
CVE-2017-7792A buffer overflow will occur when viewing a certificate in the ...
CVE-2017-7791On pages containing an iframe, the "data:" protocol can be used to ...
CVE-2017-7790On Windows systems, if non-null-terminated strings are copied into the ...
CVE-2017-7789If a server sends two Strict-Transport-Security (STS) headers for a ...
CVE-2017-7788When an "iframe" has a "sandbox" attribute and its content is ...
CVE-2017-7787Same-origin policy protections can be bypassed on pages with embedded ...
CVE-2017-7786A buffer overflow can occur when the image renderer attempts to paint ...
CVE-2017-7785A buffer overflow can occur when manipulating Accessible Rich Internet ...
CVE-2017-7784A use-after-free vulnerability can occur when reading an image ...
CVE-2017-7783If a long user name is used in a username/password combination in a ...
CVE-2017-7782An error in the "WindowsDllDetourPatcher" where a RWX ...
CVE-2017-7781An error occurs in the elliptic curve point addition algorithm that ...
CVE-2017-7780Memory safety bugs were reported in Firefox 54. Some of these bugs ...
CVE-2017-7779Memory safety bugs were reported in Firefox 54, Firefox ESR 52.2, and ...
CVE-2017-7778A number of security vulnerabilities in the Graphite 2 library ...
CVE-2017-7777
CVE-2017-7776
CVE-2017-7775
CVE-2017-7774
CVE-2017-7773
CVE-2017-7772
CVE-2017-7771
CVE-2017-7770A mechanism where when a new tab is loaded through JavaScript events, ...
CVE-2017-7768The Mozilla Maintenance Service can be invoked by an unprivileged user ...
CVE-2017-7767The Mozilla Maintenance Service can be invoked by an unprivileged user ...
CVE-2017-7766An attack using manipulation of "updater.ini" contents, used by the ...
CVE-2017-7765The "Mark of the Web" was not correctly saved on Windows when files ...
CVE-2017-7764Characters from the "Canadian Syllabics" unicode block can be mixed ...
CVE-2017-7763Default fonts on OS X display some Tibetan characters as whitespace. ...
CVE-2017-7762When entered directly, Reader Mode did not strip the username and ...
CVE-2017-7761The Mozilla Maintenance Service "helper.exe" application creates a ...
CVE-2017-7760The Mozilla Windows updater modifies some files to be updated by ...
CVE-2017-7759Android intent URLs given to Firefox for Android can be used to ...
CVE-2017-7758An out-of-bounds read vulnerability with the Opus encoder when the ...
CVE-2017-7757A use-after-free vulnerability in IndexedDB when one of its objects is ...
CVE-2017-7756A use-after-free and use-after-scope vulnerability when logging errors ...
CVE-2017-7755The Firefox installer on Windows can be made to load malicious DLL ...
CVE-2017-7754An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" ...
CVE-2017-7753An out-of-bounds read occurs when applying style rules to ...
CVE-2017-7752A use-after-free vulnerability during specific user interactions with ...
CVE-2017-7751A use-after-free vulnerability with content viewer listeners that ...
CVE-2017-7750A use-after-free vulnerability during video control operations when a ...
CVE-2017-7749A use-after-free vulnerability when using an incorrect URL during the ...
CVE-2017-5472A use-after-free vulnerability with the frameloader during tree ...
CVE-2017-5471Memory safety bugs were reported in Firefox 53. Some of these bugs ...
CVE-2017-5470Memory safety bugs were reported in Firefox 53 and Firefox ESR 52.1. ...
CVE-2017-5469Fixed potential buffer overflows in generated Firefox code due to ...
CVE-2017-5468An issue with incorrect ownership model of "privateBrowsing" ...
CVE-2017-5467A potential memory corruption and crash when using Skia content when ...
CVE-2017-5466If a page is loaded from an original site through a hyperlink and ...
CVE-2017-5465An out-of-bounds read while processing SVG content in "ConvolvePixel". ...
CVE-2017-5464During DOM manipulations of the accessibility tree through script, the ...
CVE-2017-5463Android intents can be used to launch Firefox for Android in reader ...
CVE-2017-5462A flaw in DRBG number generation within the Network Security Services ...
CVE-2017-5461Mozilla Network Security Services (NSS) before 3.21.4, 3.22.x through ...
CVE-2017-5460A use-after-free vulnerability in frame selection triggered by a ...
CVE-2017-5459A buffer overflow in WebGL triggerable by web content, resulting in a ...
CVE-2017-5458When a "javascript:" URL is drag and dropped by a user into the ...
CVE-2017-5456A mechanism to bypass file system access protections in the sandbox ...
CVE-2017-5455The internal feed reader APIs that crossed the sandbox barrier allowed ...
CVE-2017-5454A mechanism to bypass file system access protections in the sandbox to ...
CVE-2017-5453A mechanism to inject static HTML into the RSS reader preview page due ...
CVE-2017-5452Malicious sites can display a spoofed addressbar on a page when the ...
CVE-2017-5451A mechanism to spoof the addressbar through the user interaction on ...
CVE-2017-5450A mechanism to spoof the Firefox for Android addressbar using a ...
CVE-2017-5449A possibly exploitable crash triggered during layout and manipulation ...
CVE-2017-5448An out-of-bounds write in "ClearKeyDecryptor" while decrypting some ...
CVE-2017-5447An out-of-bounds read during the processing of glyph widths during ...
CVE-2017-5446An out-of-bounds read when an HTTP/2 connection to a servers sends ...
CVE-2017-5445A vulnerability while parsing "application/http-index-format" format ...
CVE-2017-5444A buffer overflow vulnerability while parsing ...
CVE-2017-5443An out-of-bounds write vulnerability while decoding improperly formed ...
CVE-2017-5442A use-after-free vulnerability during changes in style when ...
CVE-2017-5441A use-after-free vulnerability when holding a selection during scroll ...
CVE-2017-5440A use-after-free vulnerability during XSLT processing due to a failure ...
CVE-2017-5439A use-after-free vulnerability during XSLT processing due to poor ...
CVE-2017-5438A use-after-free vulnerability during XSLT processing due to the ...
CVE-2017-5436An out-of-bounds write in the Graphite 2 library triggered with a ...
CVE-2017-5435A use-after-free vulnerability occurs during transaction processing in ...
CVE-2017-5434A use-after-free vulnerability occurs when redirecting focus handling ...
CVE-2017-5433A use-after-free vulnerability in SMIL animation functions occurs when ...
CVE-2017-5432A use-after-free vulnerability occurs during certain text input ...
CVE-2017-5430Memory safety bugs were reported in Firefox 52, Firefox ESR 52, and ...
CVE-2017-5429Memory safety bugs were reported in Firefox 52, Firefox ESR 45.8, ...
CVE-2017-5428An integer overflow in "createImageBitmap()" was reported through the ...
CVE-2017-5427A non-existent chrome.manifest file will attempt to be loaded during ...
CVE-2017-5426On Linux, if the secure computing mode BPF (seccomp-bpf) filter is ...
CVE-2017-5425The Gecko Media Plugin sandbox allows access to local files that match ...
CVE-2017-5422If a malicious site uses the "view-source:" protocol in a series ...
CVE-2017-5421A malicious site could spoof the contents of the print preview window ...
CVE-2017-5420A "javascript:" url loaded by a malicious page can obfuscate its ...
CVE-2017-5419If a malicious site repeatedly triggers a modal authentication prompt, ...
CVE-2017-5418An out of bounds read error occurs when parsing some HTTP digest ...
CVE-2017-5417When dragging content from the primary browser pane to the addressbar ...
CVE-2017-5416In certain circumstances a networking event listener can be ...
CVE-2017-5415An attack can use a blob URL and script to spoof an arbitrary ...
CVE-2017-5414The file picker dialog can choose and display the wrong local default ...
CVE-2017-5413A segmentation fault can occur during some bidirectional layout ...
CVE-2017-5412A buffer overflow read during SVG filter color value operations, ...
CVE-2017-5411A use-after-free can occur during buffer storage operations within the ...
CVE-2017-5410Memory corruption resulting in a potentially exploitable crash during ...
CVE-2017-5409The Mozilla Windows updater can be called by a non-privileged user to ...
CVE-2017-5408Video files loaded video captions cross-origin without checking for ...
CVE-2017-5407Using SVG filters that don't use the fixed point math implementation ...
CVE-2017-5406A segmentation fault can occur in the Skia graphics library during ...
CVE-2017-5405Certain response codes in FTP connections can result in the use of ...
CVE-2017-5404A use-after-free error can occur when manipulating ranges in ...
CVE-2017-5403When adding a range to an object in the DOM, it is possible to use ...
CVE-2017-5402A use-after-free can occur when events are fired for a "FontFace" ...
CVE-2017-5401A crash triggerable by web content in which an "ErrorResult" ...
CVE-2017-5400JIT-spray targeting asm.js combined with a heap spray allows for a ...
CVE-2017-5399Memory safety bugs were reported in Firefox 51. Some of these bugs ...
CVE-2017-5398Memory safety bugs were reported in Thunderbird 45.7. Some of these ...
CVE-2017-5397The cache directory on the local file system is set to be world ...
CVE-2017-5396A use-after-free vulnerability in the Media Decoder when working with ...
CVE-2017-5395Malicious sites can display a spoofed location bar on a subsequently ...
CVE-2017-5394A location bar spoofing attack where the location bar of loaded page ...
CVE-2017-5393The "mozAddonManager" allows for the installation of extensions from ...
CVE-2017-5392Weak proxy objects have weak references on multiple threads when they ...
CVE-2017-5391Special "about:" pages used by web content, such as RSS feeds, can ...
CVE-2017-5390The JSON viewer in the Developer Tools uses insecure methods to create ...
CVE-2017-5389WebExtensions could use the "mozAddonManager" API by modifying the CSP ...
CVE-2017-5388A STUN server in conjunction with a large number of ...
CVE-2017-5387The existence of a specifically requested local file can be found due ...
CVE-2017-5386WebExtension scripts can use the "data:" protocol to affect pages ...
CVE-2017-5385Data sent with in multipart channels, such as the ...
CVE-2017-5384Proxy Auto-Config (PAC) files can specify a JavaScript function called ...
CVE-2017-5383URLs containing certain unicode glyphs for alternative hyphens and ...
CVE-2017-5382Feed preview for RSS feeds can be used to capture errors and ...
CVE-2017-5381The "export" function in the Certificate Viewer can force local ...
CVE-2017-5380A potential use-after-free found through fuzzing during DOM ...
CVE-2017-5379Use-after-free vulnerability in Web Animations when interacting with ...
CVE-2017-5378Hashed codes of JavaScript objects are shared between pages. This ...
CVE-2017-5377A memory corruption vulnerability in Skia that can occur when using ...
CVE-2017-5376Use-after-free while manipulating XSL in XSLT documents. This ...
CVE-2017-5375JIT code allocation can allow for a bypass of ASLR and DEP protections ...
CVE-2017-5374Memory safety bugs were reported in Firefox 50.1. Some of these bugs ...
CVE-2017-5373Memory safety bugs were reported in Firefox 50.1 and Firefox ESR 45.6. ...
CVE-2017-16541Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to ...
CVE-2016-9905A potentially exploitable crash in "EnumerateSubDocuments" while ...
CVE-2016-9904An attacker could use a JavaScript Map/Set timing attack to determine ...
CVE-2016-9903Mozilla's add-ons SDK had a world-accessible resource with an HTML ...
CVE-2016-9902The Pocket toolbar button, once activated, listens for events fired ...
CVE-2016-9901HTML tags received from the Pocket server will be processed without ...
CVE-2016-9900External resources that should be blocked when loaded by SVG images ...
CVE-2016-9899Use-after-free while manipulating DOM events and removing audio ...
CVE-2016-9898Use-after-free resulting in potentially exploitable crash when ...
CVE-2016-9897Memory corruption resulting in a potentially exploitable crash during ...
CVE-2016-9896Use-after-free while manipulating the "navigator" object within WebVR. ...
CVE-2016-9895Event handlers on "marquee" elements were executed despite a strict ...
CVE-2016-9894A buffer overflow in SkiaGl caused when a GrGLBuffer is truncated ...
CVE-2016-9893Memory safety bugs were reported in Thunderbird 45.5. Some of these ...
CVE-2016-9080Memory safety bugs were reported in Firefox 50.0.2. Some of these bugs ...
CVE-2016-9079A use-after-free vulnerability in SVG Animation has been discovered. ...
CVE-2016-9078Redirection from an HTTP connection to a "data:" URL assigns the ...
CVE-2016-9077Canvas allows the use of the "feDisplacementMap" filter on images ...
CVE-2016-9076An issue where a "<select>" dropdown menu can be used to cover ...
CVE-2016-9075An issue where WebExtensions can use the mozAddonManager API to ...
CVE-2016-9073WebExtensions can bypass security checks to load privileged URLs and ...
CVE-2016-9072When a new Firefox profile is created on 64-bit Windows installations, ...
CVE-2016-9071Content Security Policy combined with HTTP to HTTPS redirection can be ...
CVE-2016-9070A maliciously crafted page loaded to the sidebar through a bookmark ...
CVE-2016-9069A use-after-free in nsINode::ReplaceOrInsertBefore during DOM ...
CVE-2016-9068A use-after-free during web animations when working with timelines ...
CVE-2016-9067Two use-after-free errors during DOM operations resulting in ...
CVE-2016-9066A buffer overflow resulting in a potentially exploitable crash due to ...
CVE-2016-9065The location bar in Firefox for Android can be spoofed by forcing a ...
CVE-2016-9064Add-on updates failed to verify that the add-on ID inside the signed ...
CVE-2016-9063An integer overflow during the parsing of XML using the Expat library. ...
CVE-2016-9062Private browsing mode leaves metadata information, such as URLs, for ...
CVE-2016-9061A previously installed malicious Android application which defines a ...
CVE-2016-5299A previously installed malicious Android application with same ...
CVE-2016-5298A mechanism where disruption of the loading of a new web page can ...
CVE-2016-5297An error in argument length checking in JavaScript, leading to ...
CVE-2016-5296A heap-buffer-overflow in Cairo when processing SVG content caused by ...
CVE-2016-5295This vulnerability allows an attacker to use the Mozilla Maintenance ...
CVE-2016-5294The Mozilla Updater can be made to choose an arbitrary target working ...
CVE-2016-5293When the Mozilla Updater is run, if the Updater's log file in the ...
CVE-2016-5292During URL parsing, a maliciously crafted URL can cause a potentially ...
CVE-2016-5291A same-origin policy bypass with local shortcut files to load ...
CVE-2016-5290Memory safety bugs were reported in Firefox 49 and Firefox ESR 45.4. ...
CVE-2016-5289Memory safety bugs were reported in Firefox 49. Some of these bugs ...
CVE-2016-5288Web content could access information in the HTTP cache if e10s is ...
CVE-2016-5287A potentially exploitable use-after-free crash during actor ...
CVE-2016-5284Mozilla Firefox before 49.0, Firefox ESR 45.x before 45.4, and ...
CVE-2016-5283Mozilla Firefox before 49.0 allows remote attackers to bypass the Same ...
CVE-2016-5282Mozilla Firefox before 49.0 does not properly restrict the scheme in ...
CVE-2016-5281Use-after-free vulnerability in the DOMSVGLength class in Mozilla ...
CVE-2016-5280Use-after-free vulnerability in the ...
CVE-2016-5279Mozilla Firefox before 49.0 allows user-assisted remote attackers to ...
CVE-2016-5278Heap-based buffer overflow in the nsBMPEncoder::AddImageFrame function ...
CVE-2016-5277Use-after-free vulnerability in the nsRefreshDriver::Tick function in ...
CVE-2016-5276Use-after-free vulnerability in the ...
CVE-2016-5275Buffer overflow in the ...
CVE-2016-5274Use-after-free vulnerability in the nsFrameManager::CaptureFrameState ...
CVE-2016-5273The mozilla::a11y::HyperTextAccessible::GetChildOffset function in the ...
CVE-2016-5272The nsImageGeometryMixin class in Mozilla Firefox before 49.0, Firefox ...
CVE-2016-5271The PropertyProvider::GetSpacingInternal function in Mozilla Firefox ...
CVE-2016-5270Heap-based buffer overflow in the ...
CVE-2016-5268Mozilla Firefox before 48.0 does not properly set the LINKABLE and ...
CVE-2016-5267Mozilla Firefox before 48.0 on Android allows remote attackers to ...
CVE-2016-5266Mozilla Firefox before 48.0 does not properly restrict drag-and-drop ...
CVE-2016-5265Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 allow ...
CVE-2016-5264Use-after-free vulnerability in the ...
CVE-2016-5263The nsDisplayList::HitTest function in Mozilla Firefox before 48.0 and ...
CVE-2016-5262Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 process ...
CVE-2016-5261Integer overflow in the WebSocketChannel class in the WebSockets ...
CVE-2016-5260Mozilla Firefox before 48.0 mishandles changes from 'INPUT ...
CVE-2016-5259Use-after-free vulnerability in the CanonicalizeXPCOMParticipant ...
CVE-2016-5258Use-after-free vulnerability in the WebRTC socket thread in Mozilla ...
CVE-2016-5257Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-5256Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-5255Use-after-free vulnerability in the js::PreliminaryObjectArray::sweep ...
CVE-2016-5254Use-after-free vulnerability in the nsXULPopupManager::KeyDown ...
CVE-2016-5253The Updater in Mozilla Firefox before 48.0 on Windows allows local ...
CVE-2016-5252Stack-based buffer underflow in the mozilla::gfx::BasePoint4d function ...
CVE-2016-5251Mozilla Firefox before 48.0 allows remote attackers to spoof the ...
CVE-2016-5250Mozilla Firefox before 48.0, Firefox ESR < 45.4 and Thunderbird < 45.4 ...
CVE-2016-2839Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 on Linux ...
CVE-2016-2838Heap-based buffer overflow in the nsBidi::BracketData::AddOpening ...
CVE-2016-2837Heap-based buffer overflow in the ClearKey Content Decryption Module ...
CVE-2016-2836Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2835Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2834Mozilla Network Security Services (NSS) before 3.23, as used in ...
CVE-2016-2833Mozilla Firefox before 47.0 ignores Content Security Policy (CSP) ...
CVE-2016-2832Mozilla Firefox before 47.0 allows remote attackers to discover the ...
CVE-2016-2831Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 do not ...
CVE-2016-2830Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 preserve ...
CVE-2016-2829Mozilla Firefox before 47.0 allows remote attackers to spoof ...
CVE-2016-2828Use-after-free vulnerability in Mozilla Firefox before 47.0 and ...
CVE-2016-2827The mozilla::net::IsValidReferrerPolicy function in Mozilla Firefox ...
CVE-2016-2826The maintenance service in Mozilla Firefox before 47.0 and Firefox ESR ...
CVE-2016-2825Mozilla Firefox before 47.0 allows remote attackers to bypass the Same ...
CVE-2016-2824The TSymbolTableLevel class in ANGLE, as used in Mozilla Firefox ...
CVE-2016-2822Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow ...
CVE-2016-2821Use-after-free vulnerability in the mozilla::dom::Element class in ...
CVE-2016-2820The Firefox Health Reports (aka FHR or about:healthreport) feature in ...
CVE-2016-2819Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ...
CVE-2016-2818Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2817The WebExtension sandbox feature in ...
CVE-2016-2816Mozilla Firefox before 46.0 allows remote attackers to bypass the ...
CVE-2016-2815Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2814Heap-based buffer overflow in the ...
CVE-2016-2813Mozilla Firefox before 46.0 on Android does not properly restrict ...
CVE-2016-2812Race condition in the get implementation in the ServiceWorkerManager ...
CVE-2016-2811Use-after-free vulnerability in the ServiceWorkerInfo class in the ...
CVE-2016-2810Mozilla Firefox before 46.0 on Android before 5.0 allows attackers to ...
CVE-2016-2809The Mozilla Maintenance Service updater in Mozilla Firefox before 46.0 ...
CVE-2016-2808The watch implementation in the JavaScript engine in Mozilla Firefox ...
CVE-2016-2807Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2806Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2805Unspecified vulnerability in the browser engine in Mozilla Firefox ESR ...
CVE-2016-2804Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2802The graphite2::TtfUtil::CmapSubtable4NextCodepoint function in ...
CVE-2016-2801The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp ...
CVE-2016-2800The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ...
CVE-2016-2799Heap-based buffer overflow in the graphite2::Slot::setAttr function in ...
CVE-2016-2798The graphite2::GlyphCache::Loader::Loader function in Graphite 2 ...
CVE-2016-2797The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 ...
CVE-2016-2796Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code ...
CVE-2016-2795The graphite2::FileFace::get_table_fn function in Graphite 2 before ...
CVE-2016-2794The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in ...
CVE-2016-2793CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox ...
CVE-2016-2792The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ...
CVE-2016-2791The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, ...
CVE-2016-2790The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before ...
CVE-2016-1979Use-after-free vulnerability in the ...
CVE-2016-1977The Machine::Code::decoder::analysis::set_ref function in Graphite 2 ...
CVE-2016-1974The nsScannerString::AppendUnicodeTo function in Mozilla Firefox ...
CVE-2016-1973Race condition in the GetStaticInstance function in the WebRTC ...
CVE-2016-1969The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla ...
CVE-2016-1968Integer underflow in Brotli, as used in Mozilla Firefox before 45.0, ...
CVE-2016-1967Mozilla Firefox before 45.0 does not properly restrict the ...
CVE-2016-1966The nsNPObjWrapper::GetNewOrUsed function in ...
CVE-2016-1965Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 mishandle ...
CVE-2016-1964Use-after-free vulnerability in the AtomicBaseIncDec function in ...
CVE-2016-1963The FileReader class in Mozilla Firefox before 45.0 allows local users ...
CVE-2016-1962Use-after-free vulnerability in the ...
CVE-2016-1961Use-after-free vulnerability in the nsHTMLDocument::SetBody function ...
CVE-2016-1960Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string ...
CVE-2016-1959The ServiceWorkerManager class in Mozilla Firefox before 45.0 allows ...
CVE-2016-1958browser/base/content/browser.js in Mozilla Firefox before 45.0 and ...
CVE-2016-1957Memory leak in libstagefright in Mozilla Firefox before 45.0 and ...
CVE-2016-1956Mozilla Firefox before 45.0 on Linux, when an Intel video driver is ...
CVE-2016-1955Mozilla Firefox before 45.0 allows remote attackers to bypass the Same ...
CVE-2016-1954The nsCSPContext::SendReports function in ...
CVE-2016-1953Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-1952Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-1951Multiple integer overflows in io/prprf.c in Mozilla Netscape Portable ...
CVE-2016-1950Heap-based buffer overflow in Mozilla Network Security Services (NSS) ...
CVE-2016-1949Mozilla Firefox before 44.0.2 does not properly restrict the ...
CVE-2016-0718Expat allows context-dependent attackers to cause a denial of service ...
CVE-2007-0801The nsExternalAppHandler::SetUpTempFile function in Mozilla Firefox ...
CVE-2006-6585The Extensions manager in Mozilla Firefox 2.0 does not properly ...
CVE-2006-6504Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and ...
CVE-2006-6503Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird ...
CVE-2006-6502Use-after-free vulnerability in the LiveConnect bridge code for ...
CVE-2006-6501Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ...
CVE-2006-6500Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, ...
CVE-2006-6499The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ...
CVE-2006-6498Multiple unspecified vulnerabilities in the JavaScript engine for ...
CVE-2006-6497Multiple unspecified vulnerabilities in the layout engine for Mozilla ...
CVE-2006-5748Multiple unspecified vulnerabilities in the JavaScript engine in ...
CVE-2006-5747Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, ...
CVE-2006-5633Firefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers ...
CVE-2006-5464Multiple unspecified vulnerabilities in the layout engine in Mozilla ...
CVE-2006-5463Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, ...
CVE-2006-5462Mozilla Network Security Service (NSS) library before 3.11.3, as used ...
CVE-2006-5160** DISPUTED ** ...
CVE-2006-4571Multiple unspecified vulnerabilities in Firefox before 1.5.0.7, ...
CVE-2006-4569The popup blocker in Mozilla Firefox before 1.5.0.7 opens the "blocked ...
CVE-2006-4568Mozilla Firefox before 1.5.0.7 and SeaMonkey before 1.0.5 allows ...
CVE-2006-4567Mozilla Firefox before 1.5.0.7 and Thunderbird before 1.5.0.7 makes it ...
CVE-2006-4566Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and ...
CVE-2006-4565Heap-based buffer overflow in Mozilla Firefox before 1.5.0.7, ...
CVE-2006-4561Mozilla Firefox 1.5.0.6 allows remote attackers to execute arbitrary ...
CVE-2006-4340Mozilla Network Security Service (NSS) library before 3.11.3, as used ...
CVE-2006-4310Mozilla Firefox 1.5.0.6 allows remote attackers to cause a denial of ...
CVE-2006-4253Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier ...
CVE-2006-3812Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3811Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, ...
CVE-2006-3810Cross-site scripting (XSS) vulnerability in Mozilla Firefox 1.5 before ...
CVE-2006-3809Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3808Mozilla Firefox before 1.5.0.5 and SeaMonkey before 1.0.3 allows ...
CVE-2006-3807Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3806Multiple integer overflows in the Javascript engine in Mozilla Firefox ...
CVE-2006-3805The Javascript engine in Mozilla Firefox before 1.5.0.5, Thunderbird ...
CVE-2006-3803Race condition in the JavaScript garbage collection in Mozilla Firefox ...
CVE-2006-3802Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-3801Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 does not ...
CVE-2006-3731Mozilla Firefox 1.5.0.4 and earlier allows remote user-assisted ...
CVE-2006-3677Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows ...
CVE-2006-3113Mozilla Firefox 1.5 before 1.5.0.5, Thunderbird before 1.5.0.5, and ...
CVE-2006-2788Double free vulnerability in the getRawDER function for nsIX509Cert in ...
CVE-2006-2787EvalInSandbox in Mozilla Firefox and Thunderbird before 1.5.0.4 allows ...
CVE-2006-2786HTTP response smuggling vulnerability in Mozilla Firefox and ...
CVE-2006-2785Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...
CVE-2006-2784The PLUGINSPAGE functionality in Mozilla Firefox before 1.5.0.4 allows ...
CVE-2006-2783Mozilla Firefox and Thunderbird before 1.5.0.4 strip the Unicode ...
CVE-2006-2782Firefox 1.5.0.2 does not fix all test cases associated with ...
CVE-2006-2780Integer overflow in Mozilla Firefox and Thunderbird before 1.5.0.4 ...
CVE-2006-2779Mozilla Firefox and Thunderbird before 1.5.0.4 allow remote attackers ...
CVE-2006-2778The crypto.signText function in Mozilla Firefox and Thunderbird before ...
CVE-2006-2777Unspecified vulnerability in Mozilla Firefox before 1.5.0.4 and ...
CVE-2006-2776Certain privileged UI code in Mozilla Firefox and Thunderbird before ...
CVE-2006-2775Mozilla Firefox and Thunderbird before 1.5.0.4 associates XUL ...
CVE-2006-2723Unspecified versions of Mozilla Firefox allow remote attackers to ...
CVE-2006-2332Mozilla Firefox 1.5.0.3 allows remote attackers to cause a denial of ...
CVE-2006-1993Mozilla Firefox 1.5.0.2, when designMode is enabled, allows remote ...
CVE-2006-1942Mozilla Firefox 1.5.0.2 and possibly other versions before 1.5.0.4, ...
CVE-2006-1790A regression fix in Mozilla Firefox 1.0.7 allows remote attackers to ...
CVE-2006-1742The JavaScript engine in Mozilla Firefox and Thunderbird 1.x before ...
CVE-2006-1741Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite ...
CVE-2006-1740Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite ...
CVE-2006-1739The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1738Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1737Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5 and ...
CVE-2006-1736Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite ...
CVE-2006-1735Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1734Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1733Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1732Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1731Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, ...
CVE-2006-1730Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 ...
CVE-2006-1729Mozilla Firefox 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla ...
CVE-2006-1728Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1727Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x ...
CVE-2006-1726Unspecified vulnerability in Firefox and Thunderbird 1.5 before ...
CVE-2006-1725Mozilla Firefox 1.5 before 1.5.0.2 and SeaMonkey before 1.0.1 causes ...
CVE-2006-1724Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1723Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1531Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1530Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1529Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, ...
CVE-2006-1045The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block ...
CVE-2006-0884The WYSIWYG rendering engine ("rich mail" editor) in Mozilla ...
CVE-2006-0749nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before ...
CVE-2006-0748Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before ...
CVE-2006-0299The E4X implementation in Mozilla Firefox before 1.5.0.1, Thunderbird ...
CVE-2006-0298The XML parser in Mozilla Firefox before 1.5.0.1 and SeaMonkey before ...
CVE-2006-0297Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if ...
CVE-2006-0296The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, ...
CVE-2006-0295Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, ...
CVE-2006-0294Mozilla Firefox before 1.5.0.1, Thunderbird 1.5 if running Javascript ...
CVE-2006-0293The function allocation code (js_NewFunction in jsfun.c) in Firefox ...
CVE-2006-0292The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before ...
CVE-2005-4809Mozilla Firefox 1.0.1 and possibly other versions, including Mozilla ...
CVE-2005-4720Mozilla Firefox 1.0.7 and earlier on Linux allows remote attackers to ...
CVE-2005-4134Mozilla Firefox 1.5, Netscape 8.0.4 and 7.2, and K-Meleon before ...
CVE-2005-3896Mozilla allows remote attackers to cause a denial of service (CPU ...
CVE-2005-2414Race condition in the xpcom library, as used by web browsers such as ...
CVE-2005-2353run-mozilla.sh in Thunderbird, with debugging enabled, allows local ...
CVE-2004-2657** DISPUTED ** ...

Search for package or bug name: Reporting problems