AVG-966 log

Package firefox
Status Fixed
Severity Critical
Type multiple issues
Affected 66.0.5-1
Fixed 67.0-1
Current 132.0.1-1 [extra]
Ticket None
Created Wed May 22 14:46:02 2019
Issue Severity Remote Type Description
CVE-2019-11701 Low Yes Cross-site scripting
The default webcal: protocol handler in Firefox before 67.0 will load a web site vulnerable to cross-site scripting (XSS) attacks. This default was left in...
CVE-2019-11699 Low Yes Content spoofing
A malicious page can briefly cause the wrong name to be highlighted as the domain name in the addressbar during page navigations in Firefox before 67.0....
CVE-2019-11698 Medium Yes Information disclosure
If a crafted hyperlink is dragged and dropped to the bookmark bar or sidebar in Firefox before 67.0 or Thunderbird before 60.7.0, and the resulting bookmark...
CVE-2019-11697 Medium Yes Access restriction bypass
In Firefox before 67.0, if the ALT and "a" keys are pressed when users receive an extension installation prompt, the extension will be installed without the...
CVE-2019-11696 Medium Yes Content spoofing
In Firefox before 67.0, files with the .JNLP extension used for "Java web start" applications are not treated as executable content for download prompts...
CVE-2019-11695 Medium Yes Content spoofing
In Firefox before 67.0, a custom cursor defined by scripting on a site can position itself over the addressbar to spoof the actual cursor when it should not...
CVE-2019-11693 Critical Yes Arbitrary code execution
The bufferdata function in WebGL in Firefox before 67.0 and Thunderbird before 60.7.0 is vulnerable to a buffer overflow with specific graphics drivers on...
CVE-2019-11692 Critical Yes Arbitrary code execution
A use-after-free vulnerability can occur in Firefox before 67.0 and Thunderbird before 60.7.0, when listeners are removed from the event listener manager...
CVE-2019-11691 Critical Yes Arbitrary code execution
A use-after-free vulnerability can occur in Firefox before 67.0 and Thunderbird before 60.7.0, when working with XMLHttpRequest (XHR) in an event loop,...
CVE-2019-9821 Critical Yes Arbitrary code execution
A use-after-free vulnerability can occur in AssertWorkerThread in Firefox before 67.0, due to a race condition with shared workers. This results in a...
CVE-2019-9820 Critical Yes Arbitrary code execution
A use-after-free vulnerability can occur in the chrome event handler of Firefox before 67.0 when it is freed while still in use. This results in a...
CVE-2019-9819 Critical Yes Arbitrary code execution
A vulnerability where a JavaScript compartment mismatch can occur in Firefox before 67.0 and Thunderbird before 60.7.0, while working with the fetch API,...
CVE-2019-9817 High Yes Same-origin policy bypass
In Firefox before 67.0 and Thunderbird before 60.7.0, images from a different domain can be read using a canvas object in some circumstances. This could be...
CVE-2019-9816 High Yes Access restriction bypass
A possible vulnerability exists in Firefox before 67.0 and Thunderbird before 60.7.0, where type confusion can occur when manipulating JavaScript objects in...
CVE-2019-9814 Critical Yes Arbitrary code execution
Several memory safety bugs have been found in Firefox before 67.0. Some of these bugs showed evidence of memory corruption and Mozilla presumes that with...
CVE-2019-9800 Critical Yes Arbitrary code execution
Several memory safety bugs have been found in Firefox before 67.0 and Thunderbird before 60.7.0. Some of these bugs showed evidence of memory corruption and...
CVE-2019-7317 Low No Denial of service
png_image_free in png.c in libpng 1.6.36 has a use-after-free because png_image_free_function is called under png_safe_execute.
Date Advisory Package Type
23 May 2019 ASA-201905-9 firefox multiple issues
References
https://www.mozilla.org/en-US/security/advisories/mfsa2019-13/