Search CVE reports

Toggle filters

1561 – 1570 of 2858 results

CVE-2016-2828

Medium priority
Fixed

Use-after-free vulnerability in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via WebGL content that triggers texture access after destruction of the texture's recycle pool.

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
thunderbird
Show less packages

CVE-2016-2825

Low priority
Fixed

Mozilla Firefox before 47.0 allows remote attackers to bypass the Same Origin Policy and modify the location.host property via an invalid data: URL.

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
thunderbird
Show less packages

CVE-2016-2822

Medium priority
Fixed

Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to spoof the address bar via a SELECT element with a persistent menu.

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
thunderbird
Show less packages

CVE-2016-2821

Medium priority
Fixed

Use-after-free vulnerability in the mozilla::dom::Element class in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2, when contenteditable mode is enabled, allows remote attackers to execute arbitrary code or cause a...

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
thunderbird
Show less packages

CVE-2016-2819

Medium priority
Fixed

Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via foreign-context HTML5 fragments, as demonstrated by fragments within an SVG element.

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
thunderbird
Show less packages

CVE-2016-2818

Medium priority
Fixed

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly...

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
thunderbird
Show less packages

CVE-2016-2815

Medium priority
Fixed

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 47.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

2 affected packages

firefox, thunderbird

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
thunderbird
Show less packages

CVE-2016-0718

Medium priority

Some fixes available 33 of 206

Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.

28 affected packages

ayttm, libparagui1.1, audacity, firefox, thunderbird...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ayttm Not in release Not in release Not in release Not in release
libparagui1.1 Not in release Not in release Not in release Not in release
audacity Not affected Not affected Not affected Not affected
firefox Not affected Not affected Not in release Not affected
thunderbird Not affected Not affected Not in release Not affected
expat Fixed Fixed Fixed Fixed
vnc4 Not in release Not in release Not in release Ignored
wxwidgets2.6 Not in release Not in release Not in release Not in release
wxwidgets2.8 Not in release Not in release Not in release Not in release
poco Not affected Not affected Not affected Not affected
sitecopy Not in release Not affected Not affected Not affected
tla Not affected Not affected Not affected Not affected
xotcl Not affected Not affected Not affected Not affected
kompozer Not in release Not in release Not in release Not in release
swish-e Vulnerable Vulnerable Vulnerable Vulnerable
wbxml2 Not affected Not affected Not affected Not affected
gdcm Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release
simgear Not affected Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored
smart Not in release Not in release Not in release Not affected
tdom Not affected Not affected Not affected Not affected
vtk Not in release Not in release Not in release Not in release
coin3 Vulnerable Vulnerable Vulnerable Vulnerable
xmlrpc-c Vulnerable Vulnerable Vulnerable Vulnerable
cadaver Vulnerable Vulnerable Vulnerable Vulnerable
libxmltok Fixed Fixed Fixed Fixed
Show all 28 packages Show less packages

CVE-2016-2813

Medium priority
Not affected

Mozilla Firefox before 46.0 on Android does not properly restrict JavaScript access to orientation and motion data, which allows remote attackers to obtain sensitive information about a device's physical environment, and possibly...

1 affected package

firefox

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
Show less packages

CVE-2016-2810

Medium priority
Not affected

Mozilla Firefox before 46.0 on Android before 5.0 allows attackers to bypass intended Signature access requirements via a crafted application that leverages content-provider permissions, as demonstrated by reading the browser...

1 affected package

firefox

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
firefox
Show less packages
  1. Previous page
  2. 155
  3. 156
  4. 157
  5. 158
  6. 159
  7. Next page
Export to JSON