mozilla: multiple vulnerabilities [LWN.net]

Package(s):

firefox, thunderbird, seamonkey

CVE #(s):

CVE-2012-1948 CVE-2012-1950 CVE-2012-1951 CVE-2012-1952 CVE-2012-1953 CVE-2012-1954 CVE-2012-1955 CVE-2012-1957 CVE-2012-1958 CVE-2012-1959 CVE-2012-1961 CVE-2012-1962 CVE-2012-1963 CVE-2012-1964 CVE-2012-1965 CVE-2012-1966 CVE-2012-1967 CVE-2012-1949

Created:

July 18, 2012

Updated:

August 15, 2012

Description:

From the Red Hat advisory:

A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2012-1948, CVE-2012-1951, CVE-2012-1952, CVE-2012-1953, CVE-2012-1954, CVE-2012-1958, CVE-2012-1962, CVE-2012-1967)

A malicious web page could bypass same-compartment security wrappers (SCSW) and execute arbitrary code with chrome privileges. (CVE-2012-1959)

A flaw in the context menu functionality in Firefox could allow a malicious website to bypass intended restrictions and allow a cross-site scripting attack. (CVE-2012-1966)

A page different to that in the address bar could be displayed when dragging and dropping to the address bar, possibly making it easier for a malicious site or user to perform a phishing attack. (CVE-2012-1950)

A flaw in the way Firefox called history.forward and history.back could allow an attacker to conceal a malicious URL, possibly tricking a user into believing they are viewing a trusted site. (CVE-2012-1955)

A flaw in a parser utility class used by Firefox to parse feeds (such as RSS) could allow an attacker to execute arbitrary JavaScript with the privileges of the user running Firefox. This issue could have affected other browser components or add-ons that assume the class returns sanitized input. (CVE-2012-1957)

A flaw in the way Firefox handled X-Frame-Options headers could allow a malicious website to perform a clickjacking attack. (CVE-2012-1961)

A flaw in the way Content Security Policy (CSP) reports were generated by Firefox could allow a malicious web page to steal a victim's OAuth 2.0 access tokens and OpenID credentials. (CVE-2012-1963)

A flaw in the way Firefox handled certificate warnings could allow a man-in-the-middle attacker to create a crafted warning, possibly tricking a user into accepting an arbitrary certificate as trusted. (CVE-2012-1964)

A flaw in the way Firefox handled feed:javascript URLs could allow output filtering to be bypassed, possibly leading to a cross-site scripting attack. (CVE-2012-1965)

Alerts:

Red Hat	RHSA-2012:1088-01	2012-07-17
Red Hat	RHSA-2012:1089-01	2012-07-17
Debian	DSA-2513-1	2012-07-17
Debian	DSA-2514-1	2012-07-17
CentOS	CESA-2012:1088	2012-07-18
CentOS	CESA-2012:1088	2012-07-17
CentOS	CESA-2012:1089	2012-07-18
CentOS	CESA-2012:1089	2012-07-17
Ubuntu	USN-1509-1	2012-07-17
Ubuntu	USN-1510-1	2012-07-17
Ubuntu	USN-1509-2	2012-07-17
Scientific Linux	SL-fire-20120718	2012-07-18
Scientific Linux	SL-thun-20120718	2012-07-18
Mageia	MGASA-2012-0173	2012-07-19
Mageia	MGASA-2012-0174	2012-07-19
Oracle	ELSA-2012-1088	2012-07-18
Oracle	ELSA-2012-1088	2012-07-18
Oracle	ELSA-2012-1089	2012-07-18
Slackware	SSA:2012-200-02	2012-07-18
Slackware	SSA:2012-200-04	2012-07-18
Slackware	SSA:2012-200-03	2012-07-18
Fedora	FEDORA-2012-10799	2012-07-20
Fedora	FEDORA-2012-10799	2012-07-20
Fedora	FEDORA-2012-10799	2012-07-20
openSUSE	openSUSE-SU-2012:0899-1	2012-07-23
SUSE	SUSE-SU-2012:0895-1	2012-07-21
SUSE	SUSE-SU-2012:0896-1	2012-07-21
Mandriva	MDVSA-2012:110	2012-07-24
Fedora	FEDORA-2012-10822	2012-07-24
Fedora	FEDORA-2012-10822	2012-07-24
Fedora	FEDORA-2012-10822	2012-07-24
Fedora	FEDORA-2012-10822	2012-07-24
Fedora	FEDORA-2012-10799	2012-07-20
Fedora	FEDORA-2012-10829	2012-07-26
Fedora	FEDORA-2012-10807	2012-07-26
openSUSE	openSUSE-SU-2012:0917-1	2012-07-27
Mageia	MGASA-2012-0183	2012-07-29
Mandriva	MDVSA-2012:110-1	2012-07-30
openSUSE	openSUSE-SU-2012:0924-1	2012-07-30
openSUSE	openSUSE-SU-2012:0935-1	2012-08-01
Debian	DSA-2528-1	2012-08-14
Gentoo	201301-01	2013-01-07

(Log in to post comments)