mozilla -- multiple vulnerabilities

2015-03-31T00:00:00
ID D0C97697-DF2C-4B8B-BFF2-CEC24DC35AF8
Type freebsd
Reporter FreeBSD
Modified 2015-03-31T00:00:00

Description

The Mozilla Project reports:

MFSA-2015-30 Miscellaneous memory safety hazards (rv:37.0 / rv:31.6) MFSA-2015-31 Use-after-free when using the Fluendo MP3 GStreamer plugin MFSA-2015-32 Add-on lightweight theme installation approval bypassed through MITM attack MFSA-2015-33 resource:// documents can load privileged pages MFSA-2015-34 Out of bounds read in QCMS library MFSA-2015-35 Cursor clickjacking with flash and images MFSA-2015-36 Incorrect memory management for simple-type arrays in WebRTC MFSA-2015-37 CORS requests should not follow 30x redirections after preflight MFSA-2015-38 Memory corruption crashes in Off Main Thread Compositing MFSA-2015-39 Use-after-free due to type confusion flaws MFSA-2015-40 Same-origin bypass through anchor navigation MFSA-2015-41 PRNG weakness allows for DNS poisoning on Android MFSA-2015-42 Windows can retain access to privileged content on navigation to unprivileged pages