Mozilla Foundation Security Advisory 2009-14

Mozilla Foundation Security Advisory 2009-14 Title: Crashes with evidence of memory corruption rv:1.9.0.9 Impact: Critical Announced: April 21, 2009 Reporter: Mozilla developers Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.0.9 Thunderbird 2.0.0.22 SeaMonkey 1.1.16 Description...

Ubuntu 8.04 LTS : firefox-3.0, xulrunner-1.9 regression (USN-645-3)

USN-645-1 fixed vulnerabilities in Firefox and xulrunner. The upstream patches introduced a regression in the saved password handling. While password data was not lost, if a user had saved any passwords with non-ASCII characters, Firefox could not access the password database. This update fixes t...

Memory corruption

The JavaScript engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service application crash and possibly trigger memory corruption via vectors involving 1 jsFindPropertyHelper, related to the definition...

CVE-2009-1305

The JavaScript engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service application crash and possibly trigger memory corruption via vectors involving JSOPDEFVAR and properties that lack the JSPROPPERMANE...

CVE-2009-1304

CVE-2009-1304 affects the JavaScript engine in Mozilla Firefox 3.x prior to 3.0.9, Thunderbird prior to 2.0.0.22, and SeaMonkey prior to 1.1.16. The vulnerability arises from the engine’s handling of (1) js_FindPropertyHelper (related to Math and Date) and (2) js_CheckRedeclaration, enabling remo...

CVE-2009-1305

The JavaScript engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service application crash and possibly trigger memory corruption via vectors involving JSOPDEFVAR and properties that lack the JSPROPPERMANE...

CVE-2009-1305

CVE-2009-1305 is a vulnerability in the JavaScript engine of Mozilla Firefox (and affected Thunderbird/SeaMonkey) prior to version 3.0.9. It allows remote attackers to cause a denial of service (application crash) and potentially memory corruption via vectors involving JSOP_DEFVAR and properties ...

CVE-2009-1304

The JavaScript engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service application crash and possibly trigger memory corruption via vectors involving 1 jsFindPropertyHelper, related to the definition...

CVE-2009-1305

The JavaScript engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service application crash and possibly trigger memory corruption via vectors involving JSOPDEFVAR and properties that lack the JSPROPPERMANE...

Firefox 2 and 3 JavaScript engine crash

The JavaScript engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service application crash and possibly trigger memory corruption via vectors involving JSOPDEFVAR and properties that lack the JSPROPPERMANE...

SuSE Security Advisory SUSE-SA:2009:014 (acroread)

The remote host is missing updates announced in advisory SUSE-SA:2009:014. OpenVAS Vulnerability Test $Id: susesa2009014.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:014 acroread Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

SUSE: Security Advisory for acroread (SUSE-SA:2009:014)

The remote host is missing updates announced in advisory SUSE-SA:2009:014. Copyright C 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...

openSUSE 10 Security Update : acroread (acroread-6120)

Multiple flaws in the JBIG2 decoder and the JavaScript engine of the Adobe Reader allowed attackers to crash acroread or even execute arbitrary code by tricking users into opening specially crafted PDF files. CVE-2009-0658, CVE-2009-0927, CVE-2009-0193, CVE-2009-0928, CVE-2009-1061, CVE-2009-1062...

Firefox javascript crashes with evidence of memory corruption

Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the JavaScript engine...

Firefox 2 and 3 crashes in the JavaScript engine

The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via vectors related to gczeal, a different vulnerability than CVE-2009-0773...

Ubuntu Update for firefox, firefox-3.0, xulrunner-1.9 vulnerabilities USN-645-1

Ubuntu Update for Linux kernel vulnerabilities USN-645-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6451.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for firefox, firefox-3.0, xulrunner-1.9 vulnerabilities USN-645-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone...

Ubuntu Update for mozilla-thunderbird, thunderbird vulnerabilities USN-605-1

Ubuntu Update for Linux kernel vulnerabilities USN-605-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6051.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for mozilla-thunderbird, thunderbird vulnerabilities USN-605-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networ...

Ubuntu: Security Advisory (USN-582-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-619-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-690-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...