Information on source package iceweasel

Available versions

ReleaseVersion
wheezy (security)38.8.0esr-1~deb7u1

Open unimportant issues

BugwheezyDescription
CVE-2013-6167vulnerableMozilla Firefox through 27 sends HTTP Cookie headers without first ...
CVE-2011-4688vulnerableMozilla Firefox 8.0.1 and earlier does not prevent capture of data ...
CVE-2011-0082vulnerableThe X.509 certificate validation functionality in Mozilla Firefox ...
CVE-2009-3014vulnerableMozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre; ...
CVE-2009-3010vulnerableMozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre; ...
CVE-2009-0821vulnerableMozilla Firefox 2.0.0.20 and earlier allows remote attackers to cause ...
CVE-2009-0071vulnerableMozilla Firefox 3.0.5 and earlier 3.0.x versions, when designMode is ...
CVE-2008-5715vulnerableMozilla Firefox 3.0.5 on Windows Vista allows remote attackers to ...
CVE-2008-4324vulnerableThe user interface event dispatcher in Mozilla Firefox 3.0.3 on ...
CVE-2008-3444vulnerableThe content layout component in Mozilla Firefox 3.0 and 3.0.1 allows ...
CVE-2008-2014vulnerableMozilla Firefox 3.0 beta 5 allows remote attackers to cause a denial ...
CVE-2007-6715vulnerableMozilla Firefox allows remote attackers to cause a denial of service ...
CVE-2007-5896vulnerableMozilla Firefox 2.0.0.9 allows remote attackers to cause a denial of ...
CVE-2007-5415vulnerableCross-site scripting (XSS) vulnerability in Mozilla Firefox 2.0, when ...
CVE-2007-4357vulnerableMozilla Firefox 2.0.0.6 and earlier allows remote attackers to spoof ...
CVE-2007-2671vulnerableMozilla Firefox 2.0.0.3 allows remote attackers to cause a denial of ...
CVE-2007-2162vulnerable(1) Mozilla Firefox 2.0.0.3 and (2) GNU IceWeasel 2.0.0.3 allow remote ...
CVE-2007-1970vulnerableMozilla Firefox does not warn the user about HTTP elements on an HTTPS ...
CVE-2007-1736vulnerableMozilla Firefox 2.0.0.3 does not check URLs embedded in (1) object or ...
CVE-2007-1256vulnerableMozilla Firefox 2.0.0.2 allows remote attackers to spoof the address ...
CVE-2007-1084vulnerableMozilla Firefox 2.0.0.1 and earlier does not prompt users before ...
CVE-2006-6954vulnerableFlock beta 1 0.7 allows remote attackers to cause a denial of service ...
CVE-2006-5633vulnerableFirefox 1.5.0.7 and 2.0, and Seamonkey 1.1b, allows remote attackers ...
CVE-2006-2723vulnerableUnspecified versions of Mozilla Firefox allow remote attackers to ...
CVE-2005-4685vulnerableFirefox and Mozilla can associate a cookie with multiple domains when ...
CVE-2005-2395vulnerableMozilla Firefox 1.0.4 and 1.0.5 does not choose the challenge with the ...
CVE-2004-1639vulnerableMozilla Firefox before 0.10, Mozilla 5.0, and Gecko 20040913 allows ...

Resolved issues

BugDescription
CVE-2016-2820The Firefox Health Reports (aka FHR or about:healthreport) feature in ...
CVE-2016-2817The WebExtension sandbox feature in ...
CVE-2016-2816Mozilla Firefox before 46.0 allows remote attackers to bypass the ...
CVE-2016-2814Heap-based buffer overflow in the ...
CVE-2016-2813Mozilla Firefox before 46.0 on Android does not properly restrict ...
CVE-2016-2812Race condition in the get implementation in the ServiceWorkerManager ...
CVE-2016-2811Use-after-free vulnerability in the ServiceWorkerInfo class in the ...
CVE-2016-2810Mozilla Firefox before 46.0 on Android before 5.0 allows attackers to ...
CVE-2016-2809The Mozilla Maintenance Service updater in Mozilla Firefox before 46.0 ...
CVE-2016-2808The watch implementation in the JavaScript engine in Mozilla Firefox ...
CVE-2016-2807Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2806Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2805Unspecified vulnerability in the browser engine in Mozilla Firefox ESR ...
CVE-2016-2804Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-2802The graphite2::TtfUtil::CmapSubtable4NextCodepoint function in ...
CVE-2016-2801The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp ...
CVE-2016-2800The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ...
CVE-2016-2799Heap-based buffer overflow in the graphite2::Slot::setAttr function in ...
CVE-2016-2798The graphite2::GlyphCache::Loader::Loader function in Graphite 2 ...
CVE-2016-2797The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 ...
CVE-2016-2796Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code ...
CVE-2016-2795The graphite2::FileFace::get_table_fn function in Graphite 2 before ...
CVE-2016-2794The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in ...
CVE-2016-2793CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox ...
CVE-2016-2792The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ...
CVE-2016-2791The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, ...
CVE-2016-2790The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before ...
CVE-2016-1979Use-after-free vulnerability in the ...
CVE-2016-1978Use-after-free vulnerability in the ssl3_HandleECDHServerKeyExchange ...
CVE-2016-1977The Machine::Code::decoder::analysis::set_ref function in Graphite 2 ...
CVE-2016-1976Use-after-free vulnerability in the DesktopDisplayDevice class in the ...
CVE-2016-1975Multiple race conditions in dom/media/systemservices/CamerasChild.cpp ...
CVE-2016-1974The nsScannerString::AppendUnicodeTo function in Mozilla Firefox ...
CVE-2016-1973Race condition in the GetStaticInstance function in the WebRTC ...
CVE-2016-1972Race condition in libvpx in Mozilla Firefox before 45.0 on Windows ...
CVE-2016-1971The I420VideoFrame::CreateFrame function in the WebRTC implementation ...
CVE-2016-1970Integer underflow in the srtp_unprotect function in the WebRTC ...
CVE-2016-1969The setAttr function in Graphite 2 before 1.3.6, as used in Mozilla ...
CVE-2016-1968Integer underflow in Brotli, as used in Mozilla Firefox before 45.0, ...
CVE-2016-1967Mozilla Firefox before 45.0 does not properly restrict the ...
CVE-2016-1966The nsNPObjWrapper::GetNewOrUsed function in ...
CVE-2016-1965Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 mishandle ...
CVE-2016-1964Use-after-free vulnerability in the AtomicBaseIncDec function in ...
CVE-2016-1963The FileReader class in Mozilla Firefox before 45.0 allows local users ...
CVE-2016-1962Use-after-free vulnerability in the ...
CVE-2016-1961Use-after-free vulnerability in the nsHTMLDocument::SetBody function ...
CVE-2016-1960Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string ...
CVE-2016-1959The ServiceWorkerManager class in Mozilla Firefox before 45.0 allows ...
CVE-2016-1958browser/base/content/browser.js in Mozilla Firefox before 45.0 and ...
CVE-2016-1957Memory leak in libstagefright in Mozilla Firefox before 45.0 and ...
CVE-2016-1956Mozilla Firefox before 45.0 on Linux, when an Intel video driver is ...
CVE-2016-1955Mozilla Firefox before 45.0 allows remote attackers to bypass the Same ...
CVE-2016-1954The nsCSPContext::SendReports function in ...
CVE-2016-1953Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-1952Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-1950Heap-based buffer overflow in Mozilla Network Security Services (NSS) ...
CVE-2016-1949Mozilla Firefox before 44.0.2 does not properly restrict the ...
CVE-2016-1948Mozilla Firefox before 44.0 on Android does not ensure that HTTPS is ...
CVE-2016-1947Mozilla Firefox 43.x mishandles attempts to connect to the Application ...
CVE-2016-1946The MoofParser::Metadata function in binding/MoofParser.cpp in ...
CVE-2016-1945The nsZipArchive function in Mozilla Firefox before 44.0 might allow ...
CVE-2016-1944The Buffer11::NativeBuffer11::map function in ANGLE, as used in ...
CVE-2016-1943Mozilla Firefox before 44.0 on Android allows remote attackers to ...
CVE-2016-1942Mozilla Firefox before 44.0 allows user-assisted remote attackers to ...
CVE-2016-1941The file-download dialog in Mozilla Firefox before 44.0 on OS X ...
CVE-2016-1940Mozilla Firefox before 44.0 on Android allows remote attackers to ...
CVE-2016-1939Mozilla Firefox before 44.0 stores cookies with names containing ...
CVE-2016-1938The s_mp_div function in lib/freebl/mpi/mpi.c in Mozilla Network ...
CVE-2016-1937The protocol-handler dialog in Mozilla Firefox before 44.0 allows ...
CVE-2016-1935Buffer overflow in the BufferSubData function in Mozilla Firefox ...
CVE-2016-1933Integer overflow in the image-deinterlacing functionality in Mozilla ...
CVE-2016-1931Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-1930Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2016-1526The TtfUtil:LocaLookup function in TtfUtil.cpp in Libgraphite in ...
CVE-2016-1523The SillMap::readFace function in FeatureMap.cpp in Libgraphite in ...
CVE-2015-7575Mozilla Network Security Services (NSS) before 3.20.2, as used in ...
CVE-2015-7327Mozilla Firefox before 41.0 does not properly restrict the ...
CVE-2015-7223The WebExtension APIs in Mozilla Firefox before 43.0 allow remote ...
CVE-2015-7222Integer underflow in the Metadata::setData function in MetaData.cpp in ...
CVE-2015-7221Buffer overflow in the nsDeque::GrowCapacity function in ...
CVE-2015-7220Buffer overflow in the XDRBuffer::grow function in js/src/vm/Xdr.cpp ...
CVE-2015-7219The HTTP/2 implementation in Mozilla Firefox before 43.0 allows remote ...
CVE-2015-7218The HTTP/2 implementation in Mozilla Firefox before 43.0 allows remote ...
CVE-2015-7217The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...
CVE-2015-7216The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...
CVE-2015-7215The importScripts function in the Web Workers API implementation in ...
CVE-2015-7214Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow ...
CVE-2015-7213Integer overflow in the MPEG4Extractor::readMetaData function in ...
CVE-2015-7212Integer overflow in the ...
CVE-2015-7211Mozilla Firefox before 43.0 mishandles the # (number sign) character ...
CVE-2015-7210Use-after-free vulnerability in Mozilla Firefox before 43.0 and ...
CVE-2015-7208Mozilla Firefox before 43.0 stores cookies containing vertical tab ...
CVE-2015-7207Mozilla Firefox before 43.0 does not properly restrict the ...
CVE-2015-7205Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in ...
CVE-2015-7204Mozilla Firefox before 43.0 does not properly store the properties of ...
CVE-2015-7203Buffer overflow in the DirectWriteFontInfo::LoadFontFamilyData ...
CVE-2015-7202Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-7201Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-7200The CryptoKey interface implementation in Mozilla Firefox before 42.0 ...
CVE-2015-7199The (1) AddWeightedPathSegLists and (2) ...
CVE-2015-7198Buffer overflow in the rx::TextureStorage11 class in ANGLE, as used in ...
CVE-2015-7197Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 ...
CVE-2015-7196Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4, when a ...
CVE-2015-7195The URL parsing implementation in Mozilla Firefox before 42.0 ...
CVE-2015-7194Buffer underflow in libjar in Mozilla Firefox before 42.0 and Firefox ...
CVE-2015-7193Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 ...
CVE-2015-7192The accessibility-tools feature in Mozilla Firefox before 42.0 on OS X ...
CVE-2015-7191Mozilla Firefox before 42.0 on Android improperly restricts URL ...
CVE-2015-7190The Search feature in Mozilla Firefox before 42.0 on Android through ...
CVE-2015-7189Race condition in the JPEGEncoder function in Mozilla Firefox before ...
CVE-2015-7188Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow ...
CVE-2015-7187The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a "script: ...
CVE-2015-7186Mozilla Firefox before 42.0 on Android allows user-assisted remote ...
CVE-2015-7185Mozilla Firefox before 42.0 on Android does not ensure that the ...
CVE-2015-7184The fetch API implementation in Mozilla Firefox before 41.0.2 does not ...
CVE-2015-7183Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape ...
CVE-2015-7182Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network ...
CVE-2015-7181The sec_asn1d_parse_leaf function in Mozilla Network Security Services ...
CVE-2015-7180The ReadbackResultWriterD3D11::Run function in Mozilla Firefox before ...
CVE-2015-7179The VertexBufferInterface::reserveVertexSpace function in libGLES in ...
CVE-2015-7178The ProgramBinary::linkAttributes function in libGLES in ANGLE, as ...
CVE-2015-7177The InitTextures function in Mozilla Firefox before 41.0 and Firefox ...
CVE-2015-7176The AnimationThread function in Mozilla Firefox before 41.0 and ...
CVE-2015-7175The XULContentSinkImpl::AddText function in Mozilla Firefox before ...
CVE-2015-7174The nsAttrAndChildArray::GrowBy function in Mozilla Firefox before ...
CVE-2015-4522The nsUnicodeToUTF8::GetMaxLength function in Mozilla Firefox before ...
CVE-2015-4521The ConvertDialogOptions function in Mozilla Firefox before 41.0 and ...
CVE-2015-4520Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allow ...
CVE-2015-4519Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 allow ...
CVE-2015-4518The Reader View implementation in Mozilla Firefox before 42.0 has an ...
CVE-2015-4517NetworkUtils.cpp in Mozilla Firefox before 41.0 and Firefox ESR 38.x ...
CVE-2015-4516Mozilla Firefox before 41.0 allows remote attackers to bypass certain ...
CVE-2015-4515Mozilla Firefox before 42.0, when NTLM v1 is enabled for HTTP ...
CVE-2015-4514Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-4513Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-4512gfx/2d/DataSurfaceHelpers.cpp in Mozilla Firefox before 41.0 on Linux ...
CVE-2015-4511Heap-based buffer overflow in the nestegg_track_codec_data function in ...
CVE-2015-4510Race condition in the WorkerPrivate::NotifyFeatures function in ...
CVE-2015-4509Use-after-free vulnerability in the HTMLVideoElement interface in ...
CVE-2015-4508Mozilla Firefox before 41.0, when reader mode is enabled, allows ...
CVE-2015-4507The SavedStacks class in the JavaScript implementation in Mozilla ...
CVE-2015-4506Buffer overflow in the vp9_init_context_buffers function in libvpx, as ...
CVE-2015-4505updater.exe in Mozilla Firefox before 41.0 and Firefox ESR 38.x before ...
CVE-2015-4504The lut_inverse_interp16 function in the QCMS library in Mozilla ...
CVE-2015-4503The TCP Socket API implementation in Mozilla Firefox before 41.0 ...
CVE-2015-4502js/src/proxy/Proxy.cpp in Mozilla Firefox before 41.0 mishandles ...
CVE-2015-4501Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-4500Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-4498The add-on installation feature in Mozilla Firefox before 40.0.3 and ...
CVE-2015-4497Use-after-free vulnerability in the CanvasRenderingContext2D ...
CVE-2015-4496Multiple integer overflows in libstagefright in Mozilla Firefox before ...
CVE-2015-4495The PDF reader in Mozilla Firefox before 39.0.3, Firefox ESR 38.x ...
CVE-2015-4493Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor ...
CVE-2015-4492Use-after-free vulnerability in the XMLHttpRequest::Open ...
CVE-2015-4490The nsCSPHostSrc::permits function in dom/security/nsCSPUtils.cpp in ...
CVE-2015-4489The nsTArray_Impl class in Mozilla Firefox before 40.0, Firefox ESR ...
CVE-2015-4488Use-after-free vulnerability in the StyleAnimationValue class in ...
CVE-2015-4487The nsTSubstring::ReplacePrep function in Mozilla Firefox before 40.0, ...
CVE-2015-4484The js::jit::AssemblerX86Shared::lock_addl function in the JavaScript ...
CVE-2015-4483Mozilla Firefox before 40.0 allows man-in-the-middle attackers to ...
CVE-2015-4482mar_read.c in the Updater in Mozilla Firefox before 40.0 and Firefox ...
CVE-2015-4481Race condition in the Mozilla Maintenance Service in Mozilla Firefox ...
CVE-2015-4480Integer overflow in the stagefright::SampleTable::isValid function in ...
CVE-2015-4479Multiple integer overflows in libstagefright in Mozilla Firefox before ...
CVE-2015-4478Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 do not ...
CVE-2015-4477Use-after-free vulnerability in the MediaStream playback feature in ...
CVE-2015-4476Mozilla Firefox before 41.0 on Android allows user-assisted remote ...
CVE-2015-4475The mozilla::AudioSink function in Mozilla Firefox before 40.0 and ...
CVE-2015-4474Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-4473Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-4000The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is ...
CVE-2015-2743PDF.js in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 ...
CVE-2015-2742Mozilla Firefox before 39.0 on OS X includes native key press ...
CVE-2015-2741Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and ...
CVE-2015-2740Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function ...
CVE-2015-2739The ArrayBufferBuilder::append function in Mozilla Firefox before ...
CVE-2015-2738The YCbCrImageDataDeserializer::ToDataSourceSurface function in the ...
CVE-2015-2737The rx::d3d11::SetBufferData function in the Direct3D 11 ...
CVE-2015-2736The nsZipArchive::BuildFileList function in Mozilla Firefox before ...
CVE-2015-2735nsZipArchive.cpp in Mozilla Firefox before 39.0, Firefox ESR 31.x ...
CVE-2015-2734The CairoTextureClientD3D9::BorrowDrawTarget function in the Direct3D ...
CVE-2015-2733Use-after-free vulnerability in the CanonicalizeXPCOMParticipant ...
CVE-2015-2731Use-after-free vulnerability in the CSPService::ShouldLoad function in ...
CVE-2015-2730Mozilla Network Security Services (NSS) before 3.19.1, as used in ...
CVE-2015-2729The AudioParamTimeline::AudioNodeInputValue function in the Web Audio ...
CVE-2015-2728The IndexedDatabaseManager class in the IndexedDB implementation in ...
CVE-2015-2727Mozilla Firefox 38.0 and Firefox ESR 38.0 allow user-assisted remote ...
CVE-2015-2726Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-2725Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-2724Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-2722Use-after-free vulnerability in the CanonicalizeXPCOMParticipant ...
CVE-2015-2721Mozilla Network Security Services (NSS) before 3.19, as used in ...
CVE-2015-2720The update implementation in Mozilla Firefox before 38.0 on Windows ...
CVE-2015-2718The WebChannel.jsm module in Mozilla Firefox before 38.0 allows remote ...
CVE-2015-2717Integer overflow in libstagefright in Mozilla Firefox before 38.0 ...
CVE-2015-2716Buffer overflow in the XML parser in Mozilla Firefox before 38.0, ...
CVE-2015-2715Race condition in the nsThreadManager::RegisterCurrentThread function ...
CVE-2015-2714Mozilla Firefox before 38.0 on Android does not properly restrict ...
CVE-2015-2713Use-after-free vulnerability in the SetBreaks function in Mozilla ...
CVE-2015-2712The asm.js implementation in Mozilla Firefox before 38.0 does not ...
CVE-2015-2711Mozilla Firefox before 38.0 does not recognize a referrer policy ...
CVE-2015-2710Heap-based buffer overflow in the SVGTextFrame class in Mozilla ...
CVE-2015-2709Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-2708Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-2706Race condition in the AsyncPaintWaitEvent::AsyncPaintWaitEvent ...
CVE-2015-0973Buffer overflow in the png_read_IDAT_data function in pngrutil.c in ...
CVE-2015-0836Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-0835Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-0834The WebRTC subsystem in Mozilla Firefox before 36.0 recognizes turns: ...
CVE-2015-0833Multiple untrusted search path vulnerabilities in updater.exe in ...
CVE-2015-0832Mozilla Firefox before 36.0 does not properly recognize the ...
CVE-2015-0831Use-after-free vulnerability in the ...
CVE-2015-0830The WebGL implementation in Mozilla Firefox before 36.0 does not ...
CVE-2015-0829Buffer overflow in libstagefright in Mozilla Firefox before 36.0 ...
CVE-2015-0828Double free vulnerability in the nsXMLHttpRequest::GetResponse ...
CVE-2015-0827Heap-based buffer overflow in the mozilla::gfx::CopyRect function in ...
CVE-2015-0826The nsTransformedTextRun::SetCapitalization function in Mozilla ...
CVE-2015-0825Stack-based buffer underflow in the ...
CVE-2015-0824The mozilla::layers::BufferTextureClient::AllocateForSurface function ...
CVE-2015-0823Multiple use-after-free vulnerabilities in OpenType Sanitiser, as used ...
CVE-2015-0822The Form Autocompletion feature in Mozilla Firefox before 36.0, ...
CVE-2015-0821Mozilla Firefox before 36.0 allows user-assisted remote attackers to ...
CVE-2015-0820Mozilla Firefox before 36.0 does not properly restrict transitions of ...
CVE-2015-0819The UITour::onPageEvent function in Mozilla Firefox before 36.0 does ...
CVE-2015-0818Mozilla Firefox before 36.0.4, Firefox ESR 31.x before 31.5.3, and ...
CVE-2015-0817The asm.js implementation in Mozilla Firefox before 36.0.3, Firefox ...
CVE-2015-0816Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and ...
CVE-2015-0815Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-0814Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2015-0813Use-after-free vulnerability in the AppendElements function in Mozilla ...
CVE-2015-0812Mozilla Firefox before 37.0 does not require an HTTPS session for ...
CVE-2015-0811The QCMS implementation in Mozilla Firefox before 37.0 allows remote ...
CVE-2015-0810Mozilla Firefox before 37.0 on OS X does not ensure that the cursor is ...
CVE-2015-0808The webrtc::VPMContentAnalysis::Release function in the WebRTC ...
CVE-2015-0807The navigator.sendBeacon implementation in Mozilla Firefox before ...
CVE-2015-0806The Off Main Thread Compositing (OMTC) implementation in Mozilla ...
CVE-2015-0805The Off Main Thread Compositing (OMTC) implementation in Mozilla ...
CVE-2015-0804The HTMLSourceElement::BindToTree function in Mozilla Firefox before ...
CVE-2015-0803The HTMLSourceElement::AfterSetAttr function in Mozilla Firefox before ...
CVE-2015-0802Mozilla Firefox before 37.0 relies on docshell type information ...
CVE-2015-0801Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and ...
CVE-2015-0800The PRNG implementation in the DNS resolver in Mozilla Firefox (aka ...
CVE-2015-0799The HTTP Alternative Services feature in Mozilla Firefox before 37.0.1 ...
CVE-2015-0798The Reader mode feature in Mozilla Firefox before 37.0.1 on Android, ...
CVE-2015-0797GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, ...
CVE-2014-9495Heap-based buffer overflow in the png_combine_row function in libpng ...
CVE-2014-8643Mozilla Firefox before 35.0 on Windows allows remote attackers to ...
CVE-2014-8642Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not consider ...
CVE-2014-8641Use-after-free vulnerability in the WebRTC implementation in Mozilla ...
CVE-2014-8640The mozilla::dom::AudioParamTimeline::AudioNodeInputValue function in ...
CVE-2014-8639Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird ...
CVE-2014-8638The navigator.sendBeacon implementation in Mozilla Firefox before ...
CVE-2014-8637Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not properly ...
CVE-2014-8636The XrayWrapper implementation in Mozilla Firefox before 35.0 and ...
CVE-2014-8635Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-8634Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-8632The structured-clone implementation in Mozilla Firefox before 34.0 and ...
CVE-2014-8631The Chrome Object Wrapper (COW) implementation in Mozilla Firefox ...
CVE-2014-3566The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other ...
CVE-2014-1595Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, and ...
CVE-2014-1594Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, Thunderbird ...
CVE-2014-1593Stack-based buffer overflow in the mozilla::FileBlockCache::Read ...
CVE-2014-1592Use-after-free vulnerability in the nsHtml5TreeOperation function in ...
CVE-2014-1591Mozilla Firefox 33.0 and SeaMonkey before 2.31 include path strings in ...
CVE-2014-1590The XMLHttpRequest.prototype.send method in Mozilla Firefox before ...
CVE-2014-1589Mozilla Firefox before 34.0 and SeaMonkey before 2.31 provide ...
CVE-2014-1588Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1587Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1586content/base/src/nsDocument.cpp in Mozilla Firefox before 33.0, ...
CVE-2014-1585The WebRTC video-sharing feature in dom/media/MediaManager.cpp in ...
CVE-2014-1584The Public Key Pinning (PKP) implementation in Mozilla Firefox before ...
CVE-2014-1583The Alarm API in Mozilla Firefox before 33.0 and Firefox ESR 31.x ...
CVE-2014-1582The Public Key Pinning (PKP) implementation in Mozilla Firefox before ...
CVE-2014-1581Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla ...
CVE-2014-1580Mozilla Firefox before 33.0 does not properly initialize memory for ...
CVE-2014-1578The get_tile function in Mozilla Firefox before 33.0, Firefox ESR 31.x ...
CVE-2014-1577The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the ...
CVE-2014-1576Heap-based buffer overflow in the nsTransformedTextRun function in ...
CVE-2014-1575Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1574Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1568Mozilla Network Security Services (NSS) before 3.16.2.1, 3.16.x before ...
CVE-2014-1567Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla ...
CVE-2014-1566Mozilla Firefox before 31.1 on Android does not properly restrict ...
CVE-2014-1565The mozilla::dom::AudioEventTimeline function in the Web Audio API ...
CVE-2014-1564Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and ...
CVE-2014-1563Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff ...
CVE-2014-1562Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2014-1561Mozilla Firefox before 31.0 does not properly restrict use of ...
CVE-2014-1560Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote ...
CVE-2014-1559Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote ...
CVE-2014-1558Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote ...
CVE-2014-1557The ConvolveHorizontally function in Skia, as used in Mozilla Firefox ...
CVE-2014-1556Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and ...
CVE-2014-1555Use-after-free vulnerability in the nsDocLoader::OnProgress function ...
CVE-2014-1554Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1553Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1552Mozilla Firefox before 31.0 and Thunderbird before 31.0 do not ...
CVE-2014-1551Use-after-free vulnerability in the FontTableRec destructor in Mozilla ...
CVE-2014-1550Use-after-free vulnerability in the MediaInputPort class in Mozilla ...
CVE-2014-1549The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer ...
CVE-2014-1548Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1547Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1545Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote ...
CVE-2014-1544Use-after-free vulnerability in the CERT_DestroyCertificate function ...
CVE-2014-1543Multiple heap-based buffer overflows in the navigator.getGamepads ...
CVE-2014-1542Buffer overflow in the Speex resampler in the Web Audio subsystem in ...
CVE-2014-1541Use-after-free vulnerability in the RefreshDriverTimer::TickDriver ...
CVE-2014-1540Use-after-free vulnerability in the ...
CVE-2014-1539Mozilla Firefox before 30.0 and Thunderbird through 24.6 on OS X do ...
CVE-2014-1538Use-after-free vulnerability in the nsTextEditRules::CreateMozBR ...
CVE-2014-1537Use-after-free vulnerability in the ...
CVE-2014-1536The PropertyProvider::FindJustificationRange function in Mozilla ...
CVE-2014-1534Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1533Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1532Use-after-free vulnerability in the ...
CVE-2014-1531Use-after-free vulnerability in the ...
CVE-2014-1530The docshell implementation in Mozilla Firefox before 29.0, Firefox ...
CVE-2014-1529The Web Notification API in Mozilla Firefox before 29.0, Firefox ESR ...
CVE-2014-1528The sse2_composite_src_x888_8888 function in Pixman, as used in Cairo ...
CVE-2014-1527Mozilla Firefox before 29.0 on Android allows remote attackers to ...
CVE-2014-1526The XrayWrapper implementation in Mozilla Firefox before 29.0 and ...
CVE-2014-1525The mozilla::dom::TextTrack::AddCue function in Mozilla Firefox before ...
CVE-2014-1524The nsXBLProtoImpl::InstallImplementation function in Mozilla Firefox ...
CVE-2014-1523Heap-based buffer overflow in the read_u32 function in Mozilla Firefox ...
CVE-2014-1522The mozilla::dom::OscillatorNodeEngine::ComputeCustom function in the ...
CVE-2014-1520maintenservice_installer.exe in the Maintenance Service Installer in ...
CVE-2014-1519Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1518Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1516The saltProfileName function in base/GeckoProfileDirectories.java in ...
CVE-2014-1515Mozilla Firefox before 28.0.1 on Android processes a file: URL by ...
CVE-2014-1514vmtypedarrayobject.cpp in Mozilla Firefox before 28.0, Firefox ESR ...
CVE-2014-1513TypedArrayObject.cpp in Mozilla Firefox before 28.0, Firefox ESR 24.x ...
CVE-2014-1512Use-after-free vulnerability in the TypeObject class in the JavaScript ...
CVE-2014-1511Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird ...
CVE-2014-1510The Web IDL implementation in Mozilla Firefox before 28.0, Firefox ESR ...
CVE-2014-1509Buffer overflow in the _cairo_truetype_index_to_ucs4 function in ...
CVE-2014-1508The libxul.so!gfxContext::Polygon function in Mozilla Firefox before ...
CVE-2014-1506Directory traversal vulnerability in Android Crash Reporter in Mozilla ...
CVE-2014-1505The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ...
CVE-2014-1504The session-restore feature in Mozilla Firefox before 28.0 and ...
CVE-2014-1502The (1) WebGL.compressedTexImage2D and (2) ...
CVE-2014-1501Mozilla Firefox before 28.0 on Android allows remote attackers to ...
CVE-2014-1500Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote ...
CVE-2014-1499Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote ...
CVE-2014-1498The crypto.generateCRMFRequest method in Mozilla Firefox before 28.0 ...
CVE-2014-1497The mozilla::WaveReader::DecodeAudioData function in Mozilla Firefox ...
CVE-2014-1496Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird ...
CVE-2014-1494Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1493Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1492The cert_TestHostName function in lib/certdb/certdb.c in the ...
CVE-2014-1491Mozilla Network Security Services (NSS) before 3.15.4, as used in ...
CVE-2014-1490Race condition in libssl in Mozilla Network Security Services (NSS) ...
CVE-2014-1489Mozilla Firefox before 27.0 does not properly restrict access to ...
CVE-2014-1488The Web workers implementation in Mozilla Firefox before 27.0 and ...
CVE-2014-1487The Web workers implementation in Mozilla Firefox before 27.0, Firefox ...
CVE-2014-1486Use-after-free vulnerability in the imgRequestProxy function in ...
CVE-2014-1485The Content Security Policy (CSP) implementation in Mozilla Firefox ...
CVE-2014-1484Mozilla Firefox before 27.0 on Android 4.2 and earlier creates ...
CVE-2014-1483Mozilla Firefox before 27.0 and SeaMonkey before 2.24 allow remote ...
CVE-2014-1482RasterImage.cpp in Mozilla Firefox before 27.0, Firefox ESR 24.x ...
CVE-2014-1481Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird ...
CVE-2014-1480The file-download implementation in Mozilla Firefox before 27.0 and ...
CVE-2014-1479The System Only Wrapper (SOW) implementation in Mozilla Firefox before ...
CVE-2014-1478Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2014-1477Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-6673Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird ...
CVE-2013-6672Mozilla Firefox before 26.0 and SeaMonkey before 2.23 on Linux allow ...
CVE-2013-6671The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before ...
CVE-2013-6630The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as ...
CVE-2013-6629The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) ...
CVE-2013-5619Multiple integer overflows in the binary-search implementation in ...
CVE-2013-5618Use-after-free vulnerability in the nsNodeUtils::LastRelease function ...
CVE-2013-5616Use-after-free vulnerability in the ...
CVE-2013-5615The JavaScript implementation in Mozilla Firefox before 26.0, Firefox ...
CVE-2013-5614Mozilla Firefox before 26.0 and SeaMonkey before 2.23 do not properly ...
CVE-2013-5613Use-after-free vulnerability in the PresShell::DispatchSynthMouseMove ...
CVE-2013-5612Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...
CVE-2013-5611Mozilla Firefox before 26.0 does not properly remove the Application ...
CVE-2013-5610Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-5609Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-5604The txXPathNodeUtils::getBaseURI function in the XSLT processor in ...
CVE-2013-5603Use-after-free vulnerability in the ...
CVE-2013-5602The Worker::SetEventListener function in the Web workers ...
CVE-2013-5601Use-after-free vulnerability in the ...
CVE-2013-5600Use-after-free vulnerability in the ...
CVE-2013-5599Use-after-free vulnerability in the nsIPresShell::GetPresContext ...
CVE-2013-5598PDF.js in Mozilla Firefox before 25.0 and Firefox ESR 24.x before 24.1 ...
CVE-2013-5597Use-after-free vulnerability in the nsDocLoader::doStopDocumentLoad ...
CVE-2013-5596The cycle collection (CC) implementation in Mozilla Firefox before ...
CVE-2013-5595The JavaScript engine in Mozilla Firefox before 25.0, Firefox ESR 17.x ...
CVE-2013-5593The SELECT element implementation in Mozilla Firefox before 25.0, ...
CVE-2013-5592Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-5591Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2013-5590Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-1738Use-after-free vulnerability in the JS_GetGlobalForScopeChain function ...
CVE-2013-1737Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, ...
CVE-2013-1736The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before ...
CVE-2013-1735Use-after-free vulnerability in the mozilla::layout::ScrollbarActivity ...
CVE-2013-1732Buffer overflow in the nsFloatManager::GetFlowArea function in Mozilla ...
CVE-2013-1731Untrusted search path vulnerability in the GL tracing functionality in ...
CVE-2013-1730Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, ...
CVE-2013-1729The WebGL implementation in Mozilla Firefox before 24.0, when NVIDIA ...
CVE-2013-1728The IonMonkey JavaScript engine in Mozilla Firefox before 24.0, ...
CVE-2013-1727Mozilla Firefox before 24.0 on Android allows attackers to bypass the ...
CVE-2013-1726Mozilla Updater in Mozilla Firefox before 24.0, Firefox ESR 17.x ...
CVE-2013-1725Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, ...
CVE-2013-1724Use-after-free vulnerability in the ...
CVE-2013-1723The NativeKey widget in Mozilla Firefox before 24.0, Thunderbird ...
CVE-2013-1722Use-after-free vulnerability in the ...
CVE-2013-1721Integer overflow in the drawLineLoop function in the libGLESv2 library ...
CVE-2013-1720The nsHtml5TreeBuilder::resetTheInsertionMode function in the HTML5 ...
CVE-2013-1719Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-1718Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-1717Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, ...
CVE-2013-1715Multiple untrusted search path vulnerabilities in the (1) full ...
CVE-2013-1714The Web Workers implementation in Mozilla Firefox before 23.0, Firefox ...
CVE-2013-1713Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, ...
CVE-2013-1712Multiple untrusted search path vulnerabilities in updater.exe in ...
CVE-2013-1711The XrayWrapper implementation in Mozilla Firefox before 23.0 and ...
CVE-2013-1710The crypto.generateCRMFRequest function in Mozilla Firefox before ...
CVE-2013-1709Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, ...
CVE-2013-1708Mozilla Firefox before 23.0 and SeaMonkey before 2.20 allow remote ...
CVE-2013-1707Stack-based buffer overflow in Mozilla Updater in Mozilla Firefox ...
CVE-2013-1706Stack-based buffer overflow in maintenanceservice.exe in the Mozilla ...
CVE-2013-1705Heap-based buffer underflow in the cryptojs_interpret_key_gen_type ...
CVE-2013-1704Use-after-free vulnerability in the nsINode::GetParentNode function in ...
CVE-2013-1702Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-1701Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-1700The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on ...
CVE-2013-1699The Internationalized Domain Name (IDN) display algorithm in Mozilla ...
CVE-2013-1698The getUserMedia permission implementation in Mozilla Firefox before ...
CVE-2013-1697The XrayWrapper implementation in Mozilla Firefox before 22.0, Firefox ...
CVE-2013-1696Mozilla Firefox before 22.0 does not properly enforce the ...
CVE-2013-1695Mozilla Firefox before 22.0 does not properly implement certain ...
CVE-2013-1694The PreserveWrapper implementation in Mozilla Firefox before 22.0, ...
CVE-2013-1693The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ...
CVE-2013-1692Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, ...
CVE-2013-1690Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, ...
CVE-2013-1688The Profiler implementation in Mozilla Firefox before 22.0 parses ...
CVE-2013-1687The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) ...
CVE-2013-1686Use-after-free vulnerability in the mozilla::ResetDir function in ...
CVE-2013-1685Use-after-free vulnerability in the nsIDocument::GetRootElement ...
CVE-2013-1684Use-after-free vulnerability in the ...
CVE-2013-1683Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-1682Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-1681Use-after-free vulnerability in the ...
CVE-2013-1680Use-after-free vulnerability in the nsFrameList::FirstChild function ...
CVE-2013-1679Use-after-free vulnerability in the ...
CVE-2013-1678The _cairo_xlib_surface_add_glyph function in Mozilla Firefox before ...
CVE-2013-1677The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox ...
CVE-2013-1676The SelectionIterator::GetNextSegment function in Mozilla Firefox ...
CVE-2013-1675Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, ...
CVE-2013-1674Use-after-free vulnerability in Mozilla Firefox before 21.0, Firefox ...
CVE-2013-1673The Mozilla Updater in Mozilla Firefox before 21.0 on Windows does not ...
CVE-2013-1672The Mozilla Maintenance Service in Mozilla Firefox before 21.0, ...
CVE-2013-1671Mozilla Firefox before 21.0 does not properly implement the INPUT ...
CVE-2013-1670The Chrome Object Wrapper (COW) implementation in Mozilla Firefox ...
CVE-2013-1669Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0801Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0800Integer signedness error in the pixman_fill_sse2 function in ...
CVE-2013-0799Buffer overflow in the Mozilla Maintenance Service in Mozilla Firefox ...
CVE-2013-0798Mozilla Firefox before 20.0 on Android uses world-writable and ...
CVE-2013-0797Untrusted search path vulnerability in the Mozilla Updater in Mozilla ...
CVE-2013-0796The WebGL subsystem in Mozilla Firefox before 20.0, Firefox ESR 17.x ...
CVE-2013-0795The System Only Wrapper (SOW) implementation in Mozilla Firefox before ...
CVE-2013-0794Mozilla Firefox before 20.0 and SeaMonkey before 2.17 do not prevent ...
CVE-2013-0793Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, ...
CVE-2013-0792Mozilla Firefox before 20.0 and SeaMonkey before 2.17, when ...
CVE-2013-0790Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2013-0789Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0788Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0787Use-after-free vulnerability in the nsEditor::IsPreformatted function ...
CVE-2013-0784Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0783Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0782Heap-based buffer overflow in the nsSaveAsCharset::DoCharsetConversion ...
CVE-2013-0781Use-after-free vulnerability in the nsPrintEngine::CommonPrint ...
CVE-2013-0780Use-after-free vulnerability in the ...
CVE-2013-0779The nsCodingStateMachine::NextState function in Mozilla Firefox before ...
CVE-2013-0778The ClusterIterator::NextCluster function in Mozilla Firefox before ...
CVE-2013-0777Use-after-free vulnerability in the nsDisplayBoxShadowOuter::Paint ...
CVE-2013-0776Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, ...
CVE-2013-0775Use-after-free vulnerability in the ...
CVE-2013-0774Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, ...
CVE-2013-0773The Chrome Object Wrapper (COW) and System Only Wrapper (SOW) ...
CVE-2013-0772The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, ...
CVE-2013-0771Heap-based buffer overflow in the ...
CVE-2013-0770Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0769Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0768Stack-based buffer overflow in the Canvas implementation in Mozilla ...
CVE-2013-0767The nsSVGPathElement::GetPathLengthScale function in Mozilla Firefox ...
CVE-2013-0766Use-after-free vulnerability in the ~nsHTMLEditRules implementation in ...
CVE-2013-0765Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey ...
CVE-2013-0764The nsSOCKSSocketInfo::ConnectToProxy function in Mozilla Firefox ...
CVE-2013-0763Use-after-free vulnerability in Mozilla Firefox before 18.0, Firefox ...
CVE-2013-0762Use-after-free vulnerability in the imgRequest::OnStopFrame function ...
CVE-2013-0761Use-after-free vulnerability in the ...
CVE-2013-0760Buffer overflow in the CharDistributionAnalysis::HandleOneChar ...
CVE-2013-0759Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ...
CVE-2013-0758Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ...
CVE-2013-0757The Chrome Object Wrapper (COW) implementation in Mozilla Firefox ...
CVE-2013-0756Use-after-free vulnerability in the obj_toSource function in Mozilla ...
CVE-2013-0755Use-after-free vulnerability in the mozVibrate implementation in the ...
CVE-2013-0754Use-after-free vulnerability in the ListenerManager implementation in ...
CVE-2013-0753Use-after-free vulnerability in the serializeToStream implementation ...
CVE-2013-0752Mozilla Firefox before 18.0, Firefox ESR 17.x before 17.0.2, ...
CVE-2013-0751Mozilla Firefox before 18.0 on Android and SeaMonkey before 2.15 do ...
CVE-2013-0750Integer overflow in the JavaScript implementation in Mozilla Firefox ...
CVE-2013-0749Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2013-0748The XBL.__proto__.toString implementation in Mozilla Firefox before ...
CVE-2013-0747The gPluginHandler.handleEvent function in the plugin handler in ...
CVE-2013-0746Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ...
CVE-2013-0745The AutoWrapperChanger class in Mozilla Firefox before 18.0, Firefox ...
CVE-2013-0744Use-after-free vulnerability in the ...
CVE-2012-5843Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-5842Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-5841Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, ...
CVE-2012-5840Use-after-free vulnerability in the nsTextEditorState::PrepareEditor ...
CVE-2012-5839Heap-based buffer overflow in the ...
CVE-2012-5838The copyTexImage2D implementation in the WebGL subsystem in Mozilla ...
CVE-2012-5837The Web Developer Toolbar in Mozilla Firefox before 17.0 executes ...
CVE-2012-5836Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey ...
CVE-2012-5835Integer overflow in the WebGL subsystem in Mozilla Firefox before ...
CVE-2012-5833The texImage2D implementation in the WebGL subsystem in Mozilla ...
CVE-2012-5830Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ...
CVE-2012-5829Heap-based buffer overflow in the nsWindow::OnExposeEvent function in ...
CVE-2012-5354Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey ...
CVE-2012-4930The SPDY protocol 3 and earlier, as used in Mozilla Firefox, Google ...
CVE-2012-4929The TLS protocol 1.2 and earlier, as used in Mozilla Firefox, Google ...
CVE-2012-4218Use-after-free vulnerability in the ...
CVE-2012-4217Use-after-free vulnerability in the ...
CVE-2012-4216Use-after-free vulnerability in the gfxFont::GetFontEntry function in ...
CVE-2012-4215Use-after-free vulnerability in the ...
CVE-2012-4214Use-after-free vulnerability in the nsTextEditorState::PrepareEditor ...
CVE-2012-4213Use-after-free vulnerability in the nsEditor::FindNextLeafNode ...
CVE-2012-4212Use-after-free vulnerability in the XPCWrappedNative::Mark function in ...
CVE-2012-4210The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR ...
CVE-2012-4209Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, ...
CVE-2012-4208The XrayWrapper implementation in Mozilla Firefox before 17.0, ...
CVE-2012-4207The HZ-GB-2312 character-set implementation in Mozilla Firefox before ...
CVE-2012-4206Untrusted search path vulnerability in the installer in Mozilla ...
CVE-2012-4205Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey ...
CVE-2012-4204The str_unescape function in the JavaScript engine in Mozilla Firefox ...
CVE-2012-4203The New Tab page in Mozilla Firefox before 17.0 uses a privileged ...
CVE-2012-4202Heap-based buffer overflow in the image::RasterImage::DrawFrameTo ...
CVE-2012-4201The evalInSandbox implementation in Mozilla Firefox before 17.0, ...
CVE-2012-4196Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, ...
CVE-2012-4195The nsLocation::CheckURL function in Mozilla Firefox before 16.0.2, ...
CVE-2012-4194Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, ...
CVE-2012-4193Mozilla Firefox before 16.0.1, Firefox ESR 10.x before 10.0.9, ...
CVE-2012-4192Mozilla Firefox 16.0, Thunderbird 16.0, and SeaMonkey 2.13 allow ...
CVE-2012-4191The mozilla::net::FailDelayManager::Lookup function in the WebSockets ...
CVE-2012-4190The FT2FontEntry::CreateFontEntry function in FreeType, as used in the ...
CVE-2012-4188Heap-based buffer overflow in the Convolve3x3 function in Mozilla ...
CVE-2012-4187Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, ...
CVE-2012-4186Heap-based buffer overflow in the nsWaveReader::DecodeAudioData ...
CVE-2012-4185Buffer overflow in the nsCharTraits::length function in Mozilla ...
CVE-2012-4184The Chrome Object Wrapper (COW) implementation in Mozilla Firefox ...
CVE-2012-4183Use-after-free vulnerability in the DOMSVGTests::GetRequiredFeatures ...
CVE-2012-4182Use-after-free vulnerability in the nsTextEditRules::WillInsert ...
CVE-2012-4181Use-after-free vulnerability in the ...
CVE-2012-4180Heap-based buffer overflow in the ...
CVE-2012-4179Use-after-free vulnerability in the ...
CVE-2012-3995The IsCSSWordSpacingSpace function in Mozilla Firefox before 16.0, ...
CVE-2012-3994Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, ...
CVE-2012-3993The Chrome Object Wrapper (COW) implementation in Mozilla Firefox ...
CVE-2012-3992Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, ...
CVE-2012-3991Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, ...
CVE-2012-3990Use-after-free vulnerability in the IME State Manager implementation ...
CVE-2012-3989Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey ...
CVE-2012-3988Use-after-free vulnerability in Mozilla Firefox before 16.0, Firefox ...
CVE-2012-3987Mozilla Firefox before 16.0 on Android assigns chrome privileges to ...
CVE-2012-3986Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, ...
CVE-2012-3985Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey ...
CVE-2012-3984Mozilla Firefox before 16.0, Thunderbird before 16.0, and SeaMonkey ...
CVE-2012-3983Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-3982Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-3980The web console in Mozilla Firefox before 15.0, Firefox ESR 10.x ...
CVE-2012-3979Mozilla Firefox before 15.0 on Android does not properly implement ...
CVE-2012-3978The nsLocation::CheckURL function in Mozilla Firefox before 15.0, ...
CVE-2012-3976Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, and ...
CVE-2012-3975The DOMParser component in Mozilla Firefox before 15.0, Thunderbird ...
CVE-2012-3974Untrusted search path vulnerability in the installer in Mozilla ...
CVE-2012-3973The debugger in the developer-tools subsystem in Mozilla Firefox ...
CVE-2012-3972The format-number functionality in the XSLT implementation in Mozilla ...
CVE-2012-3971Summer Institute of Linguistics (SIL) Graphite 2, as used in Mozilla ...
CVE-2012-3970Use-after-free vulnerability in the nsTArray_base::Length function in ...
CVE-2012-3969Integer overflow in the nsSVGFEMorphologyElement::Filter function in ...
CVE-2012-3968Use-after-free vulnerability in the WebGL implementation in Mozilla ...
CVE-2012-3967The WebGL implementation in Mozilla Firefox before 15.0, Firefox ESR ...
CVE-2012-3966Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, ...
CVE-2012-3965Mozilla Firefox before 15.0 does not properly restrict navigation to ...
CVE-2012-3964Use-after-free vulnerability in the gfxTextRun::GetUserData function ...
CVE-2012-3963Use-after-free vulnerability in the js::gc::MapAllocToTraceKind ...
CVE-2012-3962Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, ...
CVE-2012-3961Use-after-free vulnerability in the RangeData implementation in ...
CVE-2012-3960Use-after-free vulnerability in the ...
CVE-2012-3959Use-after-free vulnerability in the nsRangeUpdater::SelAdjDeleteNode ...
CVE-2012-3958Use-after-free vulnerability in the ...
CVE-2012-3957Heap-based buffer overflow in the nsBlockFrame::MarkLineDirty function ...
CVE-2012-3956Use-after-free vulnerability in the ...
CVE-2012-3105The glBufferData function in the WebGL implementation in Mozilla ...
CVE-2012-2808The PRNG implementation in the DNS resolver in Bionic in Android ...
CVE-2012-1976Use-after-free vulnerability in the ...
CVE-2012-1975Use-after-free vulnerability in the PresShell::CompleteMove function ...
CVE-2012-1974Use-after-free vulnerability in the gfxTextRun::CanBreakLineBefore ...
CVE-2012-1973Use-after-free vulnerability in the nsObjectLoadingContent::LoadObject ...
CVE-2012-1972Use-after-free vulnerability in the ...
CVE-2012-1971Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-1970Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-1967Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...
CVE-2012-1966Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do ...
CVE-2012-1965Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do ...
CVE-2012-1964The certificate-warning functionality in ...
CVE-2012-1963The Content Security Policy (CSP) functionality in Mozilla Firefox 4.x ...
CVE-2012-1962Use-after-free vulnerability in the JSDependentString::undepend ...
CVE-2012-1961Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...
CVE-2012-1960The qcms_transform_data_rgb_out_lut_sse2 function in the QCMS ...
CVE-2012-1959Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...
CVE-2012-1958Use-after-free vulnerability in the nsGlobalWindow::PageHidden ...
CVE-2012-1957An unspecified parser-utility class in Mozilla Firefox 4.x through ...
CVE-2012-1956Mozilla Firefox before 15.0, Thunderbird before 15.0, and SeaMonkey ...
CVE-2012-1955Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ...
CVE-2012-1954Use-after-free vulnerability in the nsDocument::AdoptNode function in ...
CVE-2012-1953The ElementAnimations::EnsureStyleRuleFor function in Mozilla Firefox ...
CVE-2012-1952The nsTableFrame::InsertFrames function in Mozilla Firefox 4.x through ...
CVE-2012-1951Use-after-free vulnerability in the nsSMILTimeValueSpec::IsEventBased ...
CVE-2012-1950The drag-and-drop implementation in Mozilla Firefox 4.x through 13.0 ...
CVE-2012-1949Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-1948Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-1947Heap-based buffer overflow in the utf16_to_isolatin1 function in ...
CVE-2012-1946Use-after-free vulnerability in the nsINode::ReplaceOrInsertBefore ...
CVE-2012-1945Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, ...
CVE-2012-1944The Content Security Policy (CSP) implementation in Mozilla Firefox ...
CVE-2012-1943Untrusted search path vulnerability in Updater.exe in the Windows ...
CVE-2012-1942The Mozilla Updater and Windows Updater Service in Mozilla Firefox ...
CVE-2012-1941Heap-based buffer overflow in the ...
CVE-2012-1940Use-after-free vulnerability in the nsFrameList::FirstChild function ...
CVE-2012-1939jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ...
CVE-2012-1938Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-1937Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-0479Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, ...
CVE-2012-0478The texImage2D implementation in the WebGL subsystem in Mozilla ...
CVE-2012-0477Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ...
CVE-2012-0475Mozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and ...
CVE-2012-0474Cross-site scripting (XSS) vulnerability in the docshell ...
CVE-2012-0473The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x ...
CVE-2012-0472The cairo-dwrite implementation in Mozilla Firefox 4.x through 11.0, ...
CVE-2012-0471Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x ...
CVE-2012-0470Heap-based buffer overflow in the ...
CVE-2012-0469Use-after-free vulnerability in the ...
CVE-2012-0468The browser engine in Mozilla Firefox 4.x through 11.0, Thunderbird ...
CVE-2012-0467Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-0464Use-after-free vulnerability in the browser engine in Mozilla Firefox ...
CVE-2012-0463The nsWindow implementation in the browser engine in Mozilla Firefox ...
CVE-2012-0462Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-0461Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-0460Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, ...
CVE-2012-0459The Cascading Style Sheets (CSS) implementation in Mozilla Firefox 4.x ...
CVE-2012-0458Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x ...
CVE-2012-0457Use-after-free vulnerability in the ...
CVE-2012-0456The SVG Filters implementation in Mozilla Firefox before 3.6.28 and ...
CVE-2012-0455Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x ...
CVE-2012-0454Use-after-free vulnerability in Mozilla Firefox 4.x through 10.0, ...
CVE-2012-0452Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, ...
CVE-2012-0451CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, ...
CVE-2012-0450Mozilla Firefox 4.x through 9.0 and SeaMonkey before 2.7 on Linux and ...
CVE-2012-0449Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ...
CVE-2012-0447Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and ...
CVE-2012-0446Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ...
CVE-2012-0445Mozilla Firefox 4.x through 9.0, Thunderbird 5.0 through 9.0, and ...
CVE-2012-0444Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before ...
CVE-2012-0443Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2012-0442Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-3866Mozilla Firefox before 7.0 and SeaMonkey before 2.4 do not properly ...
CVE-2011-3671Use-after-free vulnerability in the nsHTMLSelectElement function in ...
CVE-2011-3670Mozilla Firefox before 3.6.26 and 4.x through 6.0, Thunderbird before ...
CVE-2011-3666Mozilla Firefox before 3.6.25 and Thunderbird before 3.1.17 on Mac OS ...
CVE-2011-3665Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and ...
CVE-2011-3664Mozilla Firefox before 9.0, Thunderbird before 9.0, and SeaMonkey ...
CVE-2011-3663Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and ...
CVE-2011-3661YARR, as used in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 ...
CVE-2011-3660Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-3659Use-after-free vulnerability in Mozilla Firefox before 3.6.26 and 4.x ...
CVE-2011-3658The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and ...
CVE-2011-3656
CVE-2011-3655Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 ...
CVE-2011-3654The browser engine in Mozilla Firefox before 8.0 and Thunderbird ...
CVE-2011-3653Mozilla Firefox before 8.0 and Thunderbird before 8.0 on Mac OS X do ...
CVE-2011-3652The browser engine in Mozilla Firefox before 8.0 and Thunderbird ...
CVE-2011-3651Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-3650Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird ...
CVE-2011-3649Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) ...
CVE-2011-3648Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...
CVE-2011-3647The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird ...
CVE-2011-3389The SSL protocol, as used in certain configurations in Microsoft ...
CVE-2011-3232YARR, as used in Mozilla Firefox before 7.0, Thunderbird before 7.0, ...
CVE-2011-3079The Inter-process Communication (IPC) implementation in Google Chrome ...
CVE-2011-3062Off-by-one error in the OpenType Sanitizer in Google Chrome before ...
CVE-2011-3005Use-after-free vulnerability in Mozilla Firefox 4.x through 6, ...
CVE-2011-3004The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey ...
CVE-2011-3003Mozilla Firefox before 7.0 and SeaMonkey before 2.4 allow remote ...
CVE-2011-3002Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla ...
CVE-2011-3001Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey ...
CVE-2011-3000Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before ...
CVE-2011-2999Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before ...
CVE-2011-2998Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote ...
CVE-2011-2997Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-2996Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x ...
CVE-2011-2995Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-2993The implementation of digital signatures for JAR files in Mozilla ...
CVE-2011-2992The Ogg reader in the browser engine in Mozilla Firefox 4.x through 5, ...
CVE-2011-2991The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x ...
CVE-2011-2990The implementation of Content Security Policy (CSP) violation reports ...
CVE-2011-2989The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x ...
CVE-2011-2988Buffer overflow in an unspecified string class in the WebGL shader ...
CVE-2011-2987Heap-based buffer overflow in Almost Native Graphics Layer Engine ...
CVE-2011-2986Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x ...
CVE-2011-2985Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-2984Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before ...
CVE-2011-2983Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12, ...
CVE-2011-2982Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-2981The event-management implementation in Mozilla Firefox before 3.6.20, ...
CVE-2011-2980Untrusted search path vulnerability in the ThinkPadSensor::Startup ...
CVE-2011-2605CRLF injection vulnerability in the ...
CVE-2011-2598The WebGL implementation in Mozilla Firefox 4.x allows remote ...
CVE-2011-2378The appendChild function in Mozilla Firefox before 3.6.20, Thunderbird ...
CVE-2011-2377Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird ...
CVE-2011-2376Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-2375Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-2374Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-2373Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x ...
CVE-2011-2372Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before ...
CVE-2011-2371Integer overflow in the Array.reduceRight method in Mozilla Firefox ...
CVE-2011-2370Mozilla Firefox before 5.0 does not properly enforce the whitelist for ...
CVE-2011-2369Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x ...
CVE-2011-2368The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not ...
CVE-2011-2367The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not ...
CVE-2011-2366Mozilla Gecko before 5.0, as used in Firefox before 5.0 and ...
CVE-2011-2365Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-2364Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-2363Use-after-free vulnerability in the nsSVGPointList::AppendElement ...
CVE-2011-2362Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and ...
CVE-2011-1712The txXPathNodeUtils::getXSLTId function in ...
CVE-2011-1202The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 ...
CVE-2011-1187Google Chrome before 10.0.648.127 allows remote attackers to bypass ...
CVE-2011-0085Use-after-free vulnerability in the nsXULCommandDispatcher function in ...
CVE-2011-0084The SVGTextElement.getCharNumAtPosition function in Mozilla Firefox ...
CVE-2011-0083Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem ...
CVE-2011-0081Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0080Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-0079Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-0078Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0077Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0076Unspecified vulnerability in the Java Embedding Plugin (JEP) in ...
CVE-2011-0075Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0074Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0073Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey ...
CVE-2011-0072Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0071Directory traversal vulnerability in Mozilla Firefox before 3.5.19 and ...
CVE-2011-0070Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0069Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2011-0068
CVE-2011-0067Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey ...
CVE-2011-0066Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and ...
CVE-2011-0065Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and ...
CVE-2011-0062Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-0061Buffer overflow in Mozilla Firefox 3.6.x before 3.6.14, Thunderbird ...
CVE-2011-0059Cross-site request forgery (CSRF) vulnerability in Mozilla Firefox ...
CVE-2011-0058Buffer overflow in Mozilla Firefox before 3.5.17 and 3.6.x before ...
CVE-2011-0057Use-after-free vulnerability in the Web Workers implementation in ...
CVE-2011-0056Buffer overflow in the JavaScript engine in Mozilla Firefox before ...
CVE-2011-0055Use-after-free vulnerability in the JSON.stringify method in ...
CVE-2011-0054Buffer overflow in the JavaScript engine in Mozilla Firefox before ...
CVE-2011-0053Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2011-0051Mozilla Firefox before 3.5.17 and 3.6.x before 3.6.14, and SeaMonkey ...
CVE-2010-5074The layout engine in Mozilla Firefox before 4.0, Thunderbird before ...
CVE-2010-3778Unspecified vulnerability in Mozilla Firefox 3.5.x before 3.5.16, ...
CVE-2010-3777Unspecified vulnerability in Mozilla Firefox 3.6.x before 3.6.13 and ...
CVE-2010-3776Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-3775Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...
CVE-2010-3774The NS_SecurityCompareURIs function in netwerk/base/public/nsNetUtil.h ...
CVE-2010-3773Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...
CVE-2010-3772Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...
CVE-2010-3771Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey ...
CVE-2010-3770Multiple cross-site scripting (XSS) vulnerabilities in the rendering ...
CVE-2010-3769The line-breaking implementation in Mozilla Firefox before 3.5.16 and ...
CVE-2010-3768Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird ...
CVE-2010-3767Integer overflow in the NewIdArray function in Mozilla Firefox before ...
CVE-2010-3766Use-after-free vulnerability in Mozilla Firefox before 3.5.16 and ...
CVE-2010-3765Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, ...
CVE-2010-3183The LookupGetterOrSetter function in js3250.dll in Mozilla Firefox ...
CVE-2010-3182A certain application-launch script in Mozilla Firefox before 3.5.14 ...
CVE-2010-3181Untrusted search path vulnerability in Mozilla Firefox before 3.5.14 ...
CVE-2010-3180Use-after-free vulnerability in the nsBarProp function in Mozilla ...
CVE-2010-3179Stack-based buffer overflow in the text-rendering functionality in ...
CVE-2010-3178Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird ...
CVE-2010-3177Multiple cross-site scripting (XSS) vulnerabilities in the Gopher ...
CVE-2010-3176Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-3175Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-3174Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2010-3169Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-3168Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ...
CVE-2010-3167The nsTreeContentView function in Mozilla Firefox before 3.5.12 and ...
CVE-2010-3166Heap-based buffer overflow in the nsTextFrameUtils::TransformText ...
CVE-2010-3131Untrusted search path vulnerability in Mozilla Firefox before 3.5.12 ...
CVE-2010-2770Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ...
CVE-2010-2769Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...
CVE-2010-2768Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ...
CVE-2010-2767The navigator.plugins implementation in Mozilla Firefox before 3.5.12 ...
CVE-2010-2766The normalizeDocument function in Mozilla Firefox before 3.5.12 and ...
CVE-2010-2765Integer overflow in the FRAMESET element implementation in Mozilla ...
CVE-2010-2764Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird ...
CVE-2010-2763The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) ...
CVE-2010-2762The XPCSafeJSObjectWrapper class in the SafeJSObjectWrapper (aka SJOW) ...
CVE-2010-2760Use-after-free vulnerability in the nsTreeSelection function in ...
CVE-2010-2755layout/generic/nsObjectFrame.cpp in Mozilla Firefox 3.6.7 does not ...
CVE-2010-2754dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before 3.5.11 ...
CVE-2010-2753Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x ...
CVE-2010-2752Integer overflow in an array class in Mozilla Firefox 3.5.x before ...
CVE-2010-2751The nsDocShell::OnRedirectStateChange function in ...
CVE-2010-1585The nsIScriptableUnescapeHTML.parseFragment method in the ...
CVE-2010-1215Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 ...
CVE-2010-1214Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x ...
CVE-2010-1213The importScripts Web Worker method in Mozilla Firefox 3.5.x before ...
CVE-2010-1212js/src/jstracer.cpp in the browser engine in Mozilla Firefox 3.6.x ...
CVE-2010-1211Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-1210intl/uconv/util/nsUnicodeDecodeHelper.cpp in Mozilla Firefox before ...
CVE-2010-1209Use-after-free vulnerability in the NodeIterator implementation in ...
CVE-2010-1207Mozilla Firefox before 3.6.7 and Thunderbird before 3.1.1 do not ...
CVE-2010-1206The startDocumentLoad function in browser/base/content/browser.js in ...
CVE-2010-1203The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow ...
CVE-2010-1202Multiple unspecified vulnerabilities in the JavaScript engine in ...
CVE-2010-1201Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2010-1200Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-1199Integer overflow in the XSLT node sorting implementation in Mozilla ...
CVE-2010-1198Use-after-free vulnerability in Mozilla Firefox 3.5.x before 3.5.10 ...
CVE-2010-1197Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and ...
CVE-2010-1196Integer overflow in the nsGenericDOMDataNode::SetTextInternal function ...
CVE-2010-0654Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, ...
CVE-2010-0183Use-after-free vulnerability in the nsCycleCollector::MarkRoots ...
CVE-2010-0182The XMLDocument::load function in Mozilla Firefox before 3.5.9 and ...
CVE-2010-0181Mozilla Firefox before 3.5.9 and 3.6.x before 3.6.2, and SeaMonkey ...
CVE-2010-0179Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.8, and SeaMonkey ...
CVE-2010-0178Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before ...
CVE-2010-0177Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before ...
CVE-2010-0176Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before ...
CVE-2010-0175Use-after-free vulnerability in the nsTreeSelection implementation in ...
CVE-2010-0174Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-0173Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2010-0172toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in the ...
CVE-2010-0171Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x ...
CVE-2010-0170Mozilla Firefox 3.6 before 3.6.2 does not offer plugins the expected ...
CVE-2010-0169The CSSLoaderImpl::DoSheetComplete function in ...
CVE-2010-0168The nsDocument::MaybePreLoadImage function in ...
CVE-2010-0167The browser engine in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x ...
CVE-2010-0166The gfxTextRun::SanitizeGlyphRuns function in ...
CVE-2010-0165The TraceRecorder::traverseScopeChain function in js/src/jstracer.cpp ...
CVE-2010-0164Use-after-free vulnerability in the ...
CVE-2010-0162Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and ...
CVE-2010-0161The nsAuthSSPI::Unwrap function in extensions/auth/nsAuthSSPI.cpp in ...
CVE-2010-0160The Web Worker functionality in Mozilla Firefox 3.0.x before 3.0.18 ...
CVE-2010-0159The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x ...
CVE-2009-4630Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, ...
CVE-2009-4629Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other ...
CVE-2009-3988Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, and ...
CVE-2009-3986Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ...
CVE-2009-3985Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ...
CVE-2009-3984Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ...
CVE-2009-3983Mozilla Firefox before 3.0.16 and 3.5.x before 3.5.6, and SeaMonkey ...
CVE-2009-3981Unspecified vulnerability in the browser engine in Mozilla Firefox ...
CVE-2009-3980Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2009-3979Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2009-3720The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ...
CVE-2009-3560The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, ...
CVE-2009-3389Integer overflow in libtheora in Xiph.Org Theora before 1.1, as used ...
CVE-2009-3388liboggplay in Mozilla Firefox 3.5.x before 3.5.6 and SeaMonkey before ...
CVE-2009-3385The mail component in Mozilla SeaMonkey before 1.1.19 does not ...
CVE-2009-3079Unspecified vulnerability in Mozilla Firefox before 3.0.14, and 3.5.x ...
CVE-2009-2535Mozilla Firefox before 2.0.0.19 and 3.x before 3.0.5, SeaMonkey, and ...
CVE-2009-1310Cross-site scripting (XSS) vulnerability in the MozSearch plugin ...
CVE-2009-0777Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and ...
CVE-2009-0776nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before ...
CVE-2009-0774The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird ...
CVE-2009-0772The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird ...
CVE-2009-0358Mozilla Firefox 3.x before 3.0.6 does not properly implement the (1) ...
CVE-2009-0357Mozilla Firefox before 3.0.6 and SeaMonkey before 1.1.15 do not ...
CVE-2009-0356Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the ...
CVE-2009-0355components/sessionstore/src/nsSessionStore.js in Mozilla Firefox ...
CVE-2009-0354Cross-domain vulnerability in js/src/jsobj.cpp in Mozilla Firefox 3.x ...
CVE-2009-0353Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, ...
CVE-2009-0352Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ...
CVE-2008-7293Mozilla Firefox before 4 cannot properly restrict modifications to ...
CVE-2008-5513Unspecified vulnerability in the session-restore feature in Mozilla ...
CVE-2008-5512Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ...
CVE-2008-5511Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ...
CVE-2008-5510The CSS parser in Mozilla Firefox 3.x before 3.0.5 and 2.x before ...
CVE-2008-5508Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ...
CVE-2008-5507Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ...
CVE-2008-5506Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird ...
CVE-2008-5505Mozilla Firefox 3.x before 3.0.5 allows remote attackers to bypass ...
CVE-2008-5504Mozilla Firefox 2.x before 2.0.0.19 allows remote attackers to run ...
CVE-2008-5503The loadBindingDocument function in Mozilla Firefox 2.x before ...
CVE-2008-5502The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x ...
CVE-2008-5501The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x ...
CVE-2008-5500The layout engine in Mozilla Firefox 3.x before 3.0.5 and 2.x before ...
CVE-2008-5052The AppendAttributeValue function in the JavaScript engine in Mozilla ...
CVE-2008-5024Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, ...
CVE-2008-5023Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey ...
CVE-2008-5022The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x ...
CVE-2008-5021nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before ...
CVE-2008-5019The session restore feature in Mozilla Firefox 3.x before 3.0.4 and ...
CVE-2008-5018The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x ...
CVE-2008-5017Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in ...
CVE-2008-5016The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x ...
CVE-2008-5015Mozilla Firefox 3.x before 3.0.4 assigns chrome privileges to a file: ...
CVE-2008-5014jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before ...
CVE-2008-5013Mozilla Firefox 2.x before 2.0.0.18 and SeaMonkey 1.x before 1.1.13 do ...
CVE-2008-5012Mozilla Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, ...
CVE-2008-4723Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ...
CVE-2008-4582Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and ...
CVE-2008-4069The XBM decoder in Mozilla Firefox before 2.0.0.17 and SeaMonkey ...
CVE-2008-4068Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 ...
CVE-2008-4067Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 ...
CVE-2008-4066Mozilla Firefox 2.0.0.14, and other versions before 2.0.0.17, allows ...
CVE-2008-4065Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird ...
CVE-2008-4064Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ...
CVE-2008-4063Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before ...
CVE-2008-4062Multiple unspecified vulnerabilities in Mozilla Firefox before ...
CVE-2008-4061Integer overflow in the MathML component in Mozilla Firefox before ...
CVE-2008-4060Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird ...
CVE-2008-4059The XPConnect component in Mozilla Firefox before 2.0.0.17 allows ...
CVE-2008-4058The XPConnect component in Mozilla Firefox before 2.0.0.17 and 3.x ...
CVE-2008-3837Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, and SeaMonkey ...
CVE-2008-3836feedWriter in Mozilla Firefox before 2.0.0.17 allows remote attackers ...
CVE-2008-3835The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox ...
CVE-2008-3198Mozilla Firefox 3.x before 3.0.1 allows remote attackers to inject ...
CVE-2008-2934Mozilla Firefox 3 before 3.0.1 on Mac OS X allows remote attackers to ...
CVE-2008-2933Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' ...
CVE-2008-2811The block reflow implementation in Mozilla Firefox before 2.0.0.15, ...
CVE-2008-2810Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ...
CVE-2008-2809Mozilla 1.9 M8 and earlier, Mozilla Firefox 2 before 2.0.0.15, ...
CVE-2008-2808Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ...
CVE-2008-2807Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ...
CVE-2008-2806Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 on Mac OS ...
CVE-2008-2805Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow ...
CVE-2008-2803The mozIJSSubScriptLoader.LoadScript function in Mozilla Firefox ...
CVE-2008-2802Mozilla Firefox before 2.0.0.15, Thunderbird 2.0.0.14 and earlier, and ...
CVE-2008-2801Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not ...
CVE-2008-2800Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow ...
CVE-2008-2799Multiple unspecified vulnerabilities in Mozilla Firefox before ...
CVE-2008-2798Multiple unspecified vulnerabilities in Mozilla Firefox before ...
CVE-2008-2785Mozilla Firefox before 2.0.0.16 and 3.x before 3.0.1, Thunderbird ...
CVE-2008-1380The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird ...
CVE-2008-1241GUI overlay vulnerability in Mozilla Firefox before 2.0.0.13 and ...
CVE-2008-1240LiveConnect in Mozilla Firefox before 2.0.0.13 and SeaMonkey before ...
CVE-2008-1238Mozilla Firefox before 2.0.0.13 and SeaMonkey before 1.1.9, when ...
CVE-2008-1237Multiple unspecified vulnerabilities in Mozilla Firefox before ...
CVE-2008-1236Multiple unspecified vulnerabilities in Mozilla Firefox before ...
CVE-2008-1235Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, ...
CVE-2008-1234Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...
CVE-2008-1233Unspecified vulnerability in Mozilla Firefox before 2.0.0.13, ...
CVE-2008-0594Mozilla Firefox before 2.0.0.12 does not always display a web forgery ...
CVE-2008-0593Gecko-based browsers, including Mozilla Firefox before 2.0.0.12 and ...
CVE-2008-0592Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows ...
CVE-2008-0591Mozilla Firefox before 2.0.0.12 and Thunderbird before 2.0.0.12 does ...
CVE-2008-0420modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox ...
CVE-2008-0419Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows ...
CVE-2008-0418Directory traversal vulnerability in Mozilla Firefox before 2.0.0.12, ...
CVE-2008-0417CRLF injection vulnerability in Mozilla Firefox before 2.0.0.12 allows ...
CVE-2008-0416Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox ...
CVE-2008-0415Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and ...
CVE-2008-0414Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows ...
CVE-2008-0413The JavaScript engine in Mozilla Firefox before 2.0.0.12, Thunderbird ...
CVE-2008-0412The browser engine in Mozilla Firefox before 2.0.0.12, Thunderbird ...
CVE-2008-0367Mozilla Firefox 2.0.0.11, 3.0b2, and possibly earlier versions, when ...
CVE-2008-0017The http-index-format MIME type parser (nsDirIndexParser) in Firefox ...
CVE-2008-0016Stack-based buffer overflow in the URL parsing implementation in ...
CVE-2007-6589The jar protocol handler in Mozilla Firefox before 2.0.0.10 and ...
CVE-2007-5960Mozilla Firefox before 2.0.0.10 and SeaMonkey before 1.1.7 sets the ...
CVE-2007-5959Multiple unspecified vulnerabilities in Mozilla Firefox before ...
CVE-2007-5947The jar protocol handler in Mozilla Firefox before 2.0.0.10 and ...
CVE-2007-5691ParseFTPList.cpp in Mozilla Firefox 2.0.0.7 allows remote FTP servers ...
CVE-2007-5414Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...
CVE-2007-5341Remote code execution in the Venkman script debugger in Mozilla ...
CVE-2007-5340Multiple vulnerabilities in the Javascript engine in Mozilla Firefox ...
CVE-2007-5339Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, ...
CVE-2007-5338Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote ...
CVE-2007-5337Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when ...
CVE-2007-5335Mozilla Firefox 2.0 before 2.0.0.8 allows remote attackers to obtain ...
CVE-2007-5334Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can hide the ...
CVE-2007-5045Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, ...
CVE-2007-4879Mozilla Firefox before Firefox 2.0.0.13, and SeaMonkey before 1.1.9, ...
CVE-2007-4841Mozilla Firefox before 2.0.0.8, Thunderbird before 2.0.0.8, and ...
CVE-2007-4041Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 ...
CVE-2007-4038Argument injection vulnerability in Mozilla Firefox before 2.0.0.5, ...
CVE-2007-3845Mozilla Firefox before 2.0.0.6, Thunderbird before 1.5.0.13 and 2.x ...
CVE-2007-3844Mozilla Firefox 2.0.0.5, Thunderbird 2.0.0.5 and before 1.5.0.13, and ...
CVE-2007-3738Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 ...
CVE-2007-3737Mozilla Firefox before 2.0.0.5 allows remote attackers to execute ...
CVE-2007-3736Cross-site scripting (XSS) vulnerability in Mozilla Firefox before ...
CVE-2007-3735Multiple unspecified vulnerabilities in the JavaScript engine in ...
CVE-2007-3734Multiple unspecified vulnerabilities in the browser engine in Mozilla ...
CVE-2007-3670Argument injection vulnerability in Microsoft Internet Explorer, when ...
CVE-2007-3656Mozilla Firefox before 1.8.0.13 and 1.8.1.x before 1.8.1.5 does not ...
CVE-2007-3511The focus handling for the onkeydown event in Mozilla Firefox ...
CVE-2007-3285Mozilla Firefox before 2.0.0.5, when run on Windows, allows remote ...
CVE-2007-3089Mozilla Firefox before 2.0.0.5 does not prevent use of document.write ...
CVE-2007-3074Mozilla Firefox 2.0.0.4 and earlier allows remote attackers to read ...
CVE-2007-3072Directory traversal vulnerability in Mozilla Firefox before 2.0.0.4 on ...
CVE-2007-2871Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...
CVE-2007-2870Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...
CVE-2007-2869The form autocomplete feature in Mozilla Firefox 1.5.x before ...
CVE-2007-2868Multiple vulnerabilities in the JavaScript engine for Mozilla Firefox ...
CVE-2007-2867Multiple vulnerabilities in the layout engine for Mozilla Firefox ...
CVE-2007-2292CRLF injection vulnerability in the Digest Authentication support for ...
CVE-2007-1762Mozilla Firefox 2.0.0.1 through 2.0.0.3 does not canonicalize URLs ...
CVE-2007-1562The FTP protocol implementation in Mozilla Firefox before 1.5.0.11 and ...
CVE-2007-1362Mozilla Firefox 1.5.x before 1.5.0.12 and 2.x before 2.0.0.4, and ...
CVE-2007-1116The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI ...
CVE-2007-1095Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not ...
CVE-2007-1092Mozilla Firefox 1.5.0.9 and 2.0.0.1, and SeaMonkey before 1.0.8 allow ...
CVE-2007-1004Mozilla Firefox might allow remote attackers to conduct spoofing and ...
CVE-2007-0996The child frames in Mozilla Firefox before 1.5.0.10 and 2.x before ...
CVE-2007-0995Mozilla Firefox before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey ...
CVE-2007-0994A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x ...
CVE-2007-0981Mozilla based browsers, including Firefox before 1.5.0.10 and 2.x ...
CVE-2007-0802Mozilla Firefox 2.0.0.1 allows remote attackers to bypass the Phishing ...
CVE-2007-0801The nsExternalAppHandler::SetUpTempFile function in Mozilla Firefox ...
CVE-2007-0800Cross-zone vulnerability in Mozilla Firefox 1.5.0.9 considers blocked ...
CVE-2007-0780browser.js in Mozilla Firefox 1.5.x before 1.5.0.10 and 2.x before ...
CVE-2007-0779GUI overlay vulnerability in Mozilla Firefox 1.5.x before 1.5.0.10 and ...
CVE-2007-0778The page cache feature in Mozilla Firefox before 1.5.0.10 and 2.x ...
CVE-2007-0777The JavaScript engine in Mozilla Firefox before 1.5.0.10 and 2.x ...
CVE-2007-0776Heap-based buffer overflow in the _cairo_pen_init function in Mozilla ...
CVE-2007-0775Multiple unspecified vulnerabilities in the layout engine in Mozilla ...
CVE-2007-0009Stack-based buffer overflow in the SSLv2 support in Mozilla Network ...
CVE-2007-0008Integer underflow in the SSLv2 support in Mozilla Network Security ...
CVE-2006-6971Mozilla Firefox 2.0, possibly only when running on Windows, allows ...
CVE-2006-6585The Extensions manager in Mozilla Firefox 2.0 does not properly ...
CVE-2006-6507Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass ...
CVE-2006-6506The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends ...
CVE-2006-6504Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, and ...
CVE-2006-6503Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird ...
CVE-2006-6502Use-after-free vulnerability in the LiveConnect bridge code for ...
CVE-2006-6501Unspecified vulnerability in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ...
CVE-2006-6500Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, ...
CVE-2006-6499The js_dtoa function in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x ...
CVE-2006-6498Multiple unspecified vulnerabilities in the JavaScript engine for ...
CVE-2006-6497Multiple unspecified vulnerabilities in the layout engine for Mozilla ...
CVE-2006-6077The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and ...
CVE-2006-5748Multiple unspecified vulnerabilities in the JavaScript engine in ...
CVE-2006-5747Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, ...
CVE-2006-5464Multiple unspecified vulnerabilities in the layout engine in Mozilla ...
CVE-2006-5463Unspecified vulnerability in Mozilla Firefox before 1.5.0.8, ...
CVE-2006-5462Mozilla Network Security Service (NSS) library before 3.11.3, as used ...
CVE-2006-4310Mozilla Firefox 1.5.0.6 allows remote attackers to cause a denial of ...
CVE-2006-2894Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, ...
CVE-2006-0496Cross-site scripting (XSS) vulnerability in Mozilla 1.7.12 and ...
CVE-2005-4874The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE ...
CVE-2005-2414Race condition in the xpcom library, as used by web browsers such as ...
CVE-2002-2437The JavaScript implementation in Mozilla Firefox before 4.0, ...
CVE-2002-2436The Cascading Style Sheets (CSS) implementation in Mozilla Firefox ...

Security announcements

DSA / DLADescription
DSA-3559-1iceweasel - security update
DSA-3559-1iceweasel - security update
DSA-3523-1iceweasel - security update
DSA-3523-1iceweasel - security update
DSA-3510-1iceweasel - security update
DSA-3510-1iceweasel - security update
DSA-3477-1iceweasel - security update
DSA-3477-1iceweasel - security update
DSA-3457-1iceweasel - security update
DSA-3457-1iceweasel - security update
DSA-3422-1iceweasel - security update
DSA-3422-1iceweasel - security update
DSA-3393-1iceweasel - security update
DSA-3393-1iceweasel - security update
DSA-3365-1iceweasel - security update
DSA-3365-1iceweasel - security update
DSA-3345-1iceweasel - security update
DSA-3345-1iceweasel - security update
DSA-3333-1iceweasel - security update
DSA-3333-1iceweasel - security update
DSA-3300-1iceweasel - security update
DSA-3300-1iceweasel - security update
DSA-3260-1iceweasel - security update
DSA-3260-1iceweasel - security update
DSA-3211-1iceweasel - security update
DSA-3201-1iceweasel - security update
DSA-3174-1iceweasel - security update
DSA-3127-1iceweasel - security update
DSA-3090-1iceweasel - security update
DSA-3050-1iceweasel - security update
DSA-3034-1iceweasel - security update
DSA-3018-1iceweasel - security update
DSA-2986-1iceweasel - security update
DSA-2955-1iceweasel - security update
DSA-2918-1iceweasel - security update
DSA-2881-1iceweasel - security update
DSA-2858-1iceweasel - several
DSA-2788-1iceweasel - several
DSA-2759-1iceweasel - several
DSA-2735-1iceweasel - several
DSA-2716-1iceweasel - several
DSA-2699-1iceweasel - several
DSA-2583-1iceweasel - several
DSA-2565-1iceweasel - several
DSA-2553-1iceweasel - several
DSA-2514-1iceweasel - several vulnerabilities
DSA-2488-1iceweasel - several vulnerabilities
DSA-2457-1iceweasel - several
DSA-2433-1iceweasel - several
DSA-2400-1iceweasel - several
DSA-2341-1iceweasel - several
DSA-2313-1iceweasel - several
DSA-2296-1iceweasel - several
DSA-2268-1iceweasel - several
DSA-2228-1iceweasel - several
DSA-2186-1iceweasel - several
DSA-1886-1iceweasel - several vulnerabilities
DSA-1707-1iceweasel - several vulnerabilities
DSA-1671-1iceweasel - several vulnerabilities
DSA-1649-1iceweasel - several vulnerabilities
DSA-1614-1iceweasel - several vulnerabilities
DSA-1607-1iceweasel - several vulnerabilities
DSA-1555-1iceweasel - arbitrary code execution
DSA-1535-1iceweasel
DSA-1489-1iceweasel - several vulnerabilities
DSA-1424-1iceweasel - several vulnerabilities
DSA-1396-1iceweasel
DSA-1344-1iceweasel
DSA-1338-1iceweasel
DSA-1308-1iceweasel - several vulnerabilities

Search for package or bug name: Reporting problems