24 matches found
EUVD-2013-1095
Malware in sbrugna...
CVE-2012-0958
content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted webpage...
Code injection
The unity-firefox-extension package could be tricked into destroying the Unity webapps context, causing Firefox to crash. This could be achieved by spinning the event loop inside the webapps initialization callback. Fixed in 3.0.0+14.04.20140416-0ubuntu1.14.04.1 by shipping an empty package, thus...
Design/Logic Flaw
The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an action to the launcher and updating it with new callbacks until the libunity-webapps rate limit was...
UBUNTU-CVE-2013-1054
The unity-firefox-extension package could be tricked into destroying the Unity webapps context, causing Firefox to crash. This could be achieved by spinning the event loop inside the webapps initialization callback. Fixed in 3.0.0+14.04.20140416-0ubuntu1.14.04.1 by shipping an empty package, thus...
UBUNTU-CVE-2013-1055
The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an action to the launcher and updating it with new callbacks until the libunity-webapps rate limit was...
CVE-2013-1055
The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an action to the launcher and updating it with new callbacks until the libunity-webapps rate limit was...
CVE-2013-1054
CVE-2013-1054 affects the unity-firefox-extension in Ubuntu's Firefox integration. The vulnerability could be triggered by spinning the event loop inside the webapps initialization callback, which could destroy the Unity webapps context and cause Firefox to crash. The issue has a concrete fix: Ub...
CVE-2013-1055
The CVE-2013-1055 issue affects the unity-firefox-extension and all versions of libunity-webapps. A vulnerability could be exploited by manipulating the launcher to push new callbacks, leaving a C callback in use that Firefox would free, leading to a crash. Exploitation details indicate a rate-li...
USN-2743-3 unity-firefox-extension, webapps-greasemonkey, webaccounts-browser-extension update
USN-2743-1 fixed vulnerabilities in Firefox. Future Firefox updates will require all addons be signed and unity-firefox-extension, webapps-greasemonkey and webaccounts-browser-extension will not go through the signing process. Because these addons currently break search engine installations LP:...
Ubuntu: Security Advisory (USN-1924-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-1786-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for unity-firefox-extension USN-1786-2
Check for the Version of unity-firefox-extension OpenVAS Vulnerability Test $Id: gbubuntuUSN17862.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for unity-firefox-extension USN-1786-2 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.n...
Ubuntu 12.10 : unity-firefox-extension update (USN-1786-2)
USN-1786-1 fixed vulnerabilities in Firefox. This update provides the corresponding update for Unity Firefox Extension. Olli Pettay, Jesse Ruderman, Boris Zbarsky, Christian Holler, Milan Sreckovic, Joe Drew, Andrew McCreight, Randell Jesup, Gary Kwong and Mats Palmgren discovered multiple memory...
USN-1786-2: Unity Firefox Extension update
USN-1786-1 fixed vulnerabilities in Firefox. This update provides the corresponding update for Unity Firefox Extension. Original advisory details: Olli Pettay, Jesse Ruderman, Boris Zbarsky, Christian Holler, Milan Sreckovic, Joe Drew, Andrew McCreight, Randell Jesup, Gary Kwong and Mats Palmgren...
CVE-2012-0958
content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted webpage...
CVE-2012-0958
CVE-2012-0958 affects the unity-firefox-extension (Firefox extension) version 2.4.1. The issue in content/unity-api.js exposes the toDataURL function, allowing a crafted page to bypass the Same Origin Policy and potentially obtain sensitive information from the user. The vulnerability is document...
CVE-2012-0958
content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted webpage...
Ubuntu Update for unity-firefox-extension USN-1665-1
Ubuntu Update for Linux kernel vulnerabilities USN-1665-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN16651.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for unity-firefox-extension USN-1665-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-1665-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...