SUSE CVE-2015-7210

Use-after-free vulnerability in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering attempted use of a data channel that has been closed by a WebRTC function...

UBUNTU-CVE-2016-1947

Mozilla Firefox 43.x mishandles attempts to connect to the Application Reputation service, which makes it easier for remote attackers to trigger an unintended download by leveraging the absence of reputation data...

Mozilla: Miscellaneous memory safety hazards (rv:38.5) (MFSA 2015-134)

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

PT-2016-1279 · Mozilla +5 · Firefox +9

Name of the Vulnerable Software and Affected Versions: Graphite 2 versions 1.2.4 and earlier Mozilla Firefox versions prior to 43.0 Mozilla Firefox ESR versions 38.x prior to 38.6.1 Thunderbird affected versions not specified Description: The issue is related to the TtfUtil:LocaLookup function in...

PT-2016-1278 · Mozilla +6 · Firefox Esr +7

Name of the Vulnerable Software and Affected Versions: Libgraphite versions 1.2.4 Mozilla Firefox versions prior to 43.0 Firefox ESR versions prior to 38.6.1 Description: The issue is related to the SillMap::readFace function in FeatureMap.cpp, which mishandles a return value. This can be exploit...