SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 6979)

Mozilla Firefox was updated to version 3.5.9 fixing lots of bugs and security issues. The following security issues were fixed : - Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed...

SuSE 10 Security Update : MozillaFirefox, MozillaFirefox-branding-upstream, MozillaFirefox-translations, mozilla-xulrunner191, mozilla-xulrunner191-devel, mozilla-xulrunner191-gnomevfs, mozilla-xulrunner191-translations, python-xpcom191 (ZYPP Patch Number 6970)

Mozilla Firefox was updated to version 3.5.9 fixing lots of bugs and security issues. The following security issues were fixed : - Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed...

Firefox window.navigator.plugins对象悬停指针漏洞

CVE ID: CVE-2010-0177 Firefox是一款流行的开源WEB浏览器。 Firefox在实现window.navigator.plugins对象时存在悬停指针漏洞。在重载页面时，插件数组会重新分配所有的成员，但没有检查每个成员之间是否存在引用，这可能导致删除仍存在有效指针的对象。成功利用这个漏洞的攻击者可以导致执行任意指令。 Mozilla Firefox 3.6 Mozilla Firefox 3.5.x Mozilla Firefox 3.0.x Mozilla SeaMonkey 2.0.4 临时解决方法： 禁用JavaScript。 厂商补丁： Debian...

Dangling pointer vulnerability in nsPluginArray — Mozilla

Security researcher regenrecht reported via TippingPoint's Zero Day Initiative an error in the implementation of the window.navigator.plugins object. When a page reloads, the plugins array would reallocate all of its members without checking for existing references to each member. This could resu...