Overview
Request 90796 accepted
- security update to 3.6.24 (bnc#728520)
* MFSA 2011-46/CVE-2011-3647 (bmo#680880)
loadSubScript unwraps XPCNativeWrapper scope parameter
* MFSA 2011-47/CVE-2011-3648 (bmo#690225)
Potential XSS against sites using Shift-JIS
* MFSA 2011-49/CVE-2011-3650 (bmo#674776)
Memory corruption while profiling using Firebug
* MFSA 2011-36/CVE-2011-2996 (bmo#555018)
Miscellaneous memory safety hazards
* MFSA 2011-37/CVE-2011-2998 (bmo#684815)
Integer underflow when using JavaScript RegExp
* MFSA 2011-38/CVE-2011-2999 (bmo#665548)
XSS via plugins and shadowed window.location object
* MFSA 2011-39/CVE-2011-3000 (bmo#655389)
Defense against multiple Location headers due to CRLF Injection
* MFSA 2011-40/CVE-2011-2372/CVE-2011-3001
Code installation through holding down Enter
- Created by wrosenauer
- In state accepted
Request History
wrosenauer created request
- security update to 3.6.24 (bnc#728520)
* MFSA 2011-46/CVE-2011-3647 (bmo#680880)
loadSubScript unwraps XPCNativeWrapper scope parameter
* MFSA 2011-47/CVE-2011-3648 (bmo#690225)
Potential XSS against sites using Shift-JIS
* MFSA 2011-49/CVE-2011-3650 (bmo#674776)
Memory corruption while profiling using Firebug
* MFSA 2011-36/CVE-2011-2996 (bmo#555018)
Miscellaneous memory safety hazards
* MFSA 2011-37/CVE-2011-2998 (bmo#684815)
Integer underflow when using JavaScript RegExp
* MFSA 2011-38/CVE-2011-2999 (bmo#665548)
XSS via plugins and shadowed window.location object
* MFSA 2011-39/CVE-2011-3000 (bmo#655389)
Defense against multiple Location headers due to CRLF Injection
* MFSA 2011-40/CVE-2011-2372/CVE-2011-3001
Code installation through holding down Enter
wrosenauer accepted request
