Untrusted search path vulnerability in the GL tracing functionality in Mozilla Firefox before 24.0 on Android allows attackers to execute arbitrary code via a Trojan horse .so file in a world-writable directory.
www.mozilla.org/security/announce/2013/mfsa2013-87.html
bugzilla.mozilla.org/show_bug.cgi?id=899702
lists.fedoraproject.org/pipermail/package-announce/2013-September/115907.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/116610.html
lists.fedoraproject.org/pipermail/package-announce/2013-September/117526.html