[SECURITY] Fedora 10 Update: kazehakase-0.5.6-4.fc10.6

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

Planet 2.0 - HTML Injection

Planet 2.0 - HTML Injection source: https://www.securityfocus.com/bid/36392/info Planet is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would...

Ubuntu: Security Advisory (USN-817-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-817-1: Thunderbird vulnerabilities

Several flaws were discovered in the rendering engine of Thunderbird. If Javascript were enabled, an attacker could exploit these flaws to crash Thunderbird...

Safari < 4.0.3 Multiple Vulnerabilities

Binary data 5125.prm...

[SECURITY] Fedora 10 Update: galeon-2.0.7-13.fc10

Galeon is a web browser built around Gecko Mozilla's rendering engine and Necko Mozilla's networking engine. It's a GNOME web browser, designed to take advantage of as many GNOME technologies as makes sense. Galeon was written to do just one thing - browse the web...

[SECURITY] Fedora 10 Update: epiphany-2.24.3-9.fc10

Epiphany is a simple GNOME web browser based on the Mozilla rendering engine...

Mozilla Firefox < 3.0.12 Multiple Vulnerabilities

Binary data 5101.prm...

[SECURITY] Fedora 10 Update: epiphany-2.24.3-8.fc10

Epiphany is a simple GNOME web browser based on the Mozilla rendering engine...

[SECURITY] Fedora 11 Update: kazehakase-0.5.6-11.svn3771_trunk.fc11.3

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

Integer overflow

Integer overflow in Apple CoreGraphics, as used in Safari before 4.0.3, Mozilla Firefox before 3.0.12, and Mac OS X 10.4.11 and 10.5.8, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a long text run that triggers a heap-based buffer...

CVE-2009-2468

CVE-2009-2468 text describes an integer overflow in Apple CoreGraphics used by Safari/Firefox/macOS, allowing DoS or possible code execution via a long text run during font glyph rendering, related to CVE-2009-1194. Connected documents primarily provide details on CVE-2009-1194 affecting Pango: i...

Mozilla Foundation Security Advisory 2009-36

Mozilla Foundation Security Advisory 2009-36 Title: Heap/integer overflows in font glyph rendering libraries Impact: Critical Announced: July 21, 2009 Reporter: Will Drewry Products: Firefox Fixed in: Firefox 3.5 Firefox 3.0.12 Description oCERT security researcher Will Drewry reported a series o...

Firefox < 3.0.12 Multiple Vulnerabilities

The installed version of Firefox is earlier than 3.0.12. Such versions are potentially affected by the following security issues : - Multiple memory corruption vulnerabilities could potentially be exploited to execute arbitrary code. MFSA 2009-34 - It may be possible to crash the browser or...

Heap/integer overflows in font glyph rendering libraries — Mozilla

oCERT security researcher Will Drewry reported a series of heap and integer overflow vulnerabilities which independently affected multiple font glyph rendering libraries. On Linux platforms libpango was susceptible to the vulnerabilities while on OS X CoreGraphics was similarly vulnerable. An...

openSUSE Security Update : mozilla-xulrunner181 (mozilla-xulrunner181-383)

The Mozilla XULRunner 1.8.1 engine received backports for security problems in 1.9.0.5. The following security issues were fixed : MFSA 2008-68 / CVE-2008-5512 / CVE-2008-5511: Mozilla security researcher mozbugra4 reported that an XBL binding, when attached to an unloaded document, can be used t...

openSUSE Security Update : MozillaFirefox (MozillaFirefox-381)

The Mozilla Firefox browser was updated to version 3.0.5, fixing various security issues and stability problems. The following security issues were fixed : MFSA 2008-69 / CVE-2008-5513: Mozilla security researcher mozbugra4 reported vulnerabilities in the session-restore feature by which content...

openSUSE Security Update : MozillaFirefox (MozillaFirefox-125)

This update brings Mozilla Firefox to version 3.0.1. It fixes various bugs and also following security problems : MFSA 2008-34 / CVE-2008-2785: An anonymous researcher, via TippingPoint's Zero Day Initiative program, reported a vulnerability in Mozilla CSS reference counting code. The vulnerabili...

[SECURITY] Fedora 11 Update: poppler-0.10.7-2.fc11

Poppler, a PDF rendering library, is a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC...

[oCERT-2009-010] mimeTeX and mathTeX buffer overflows and command injection

2009-010 mimeTeX and mathTeX buffer overflows and command injection Description: The mimeTeX and mathTeX CGIs are widely used helper executables that allow mathematical equation rendering in the form of images. Both applications suffer from several buffer overflows as well as command injection...