rpm package
suse/MozillaFirefox&distro=SUSE Linux Enterprise Server 12 SP1
pkg:rpm/suse/MozillaFirefox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1
Vulnerabilities (145)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-7212 | — | < 38.5.0esr-54.1 | 38.5.0esr-54.1 | Dec 16, 2015 | Integer overflow in the mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering a graphics operation that requires a large texture allocation. | ||
| CVE-2015-7210 | — | < 38.5.0esr-54.1 | 38.5.0esr-54.1 | Dec 16, 2015 | Use-after-free vulnerability in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering attempted use of a data channel that has been closed by a WebRTC function. | ||
| CVE-2015-7205 | — | < 38.5.0esr-54.1 | 38.5.0esr-54.1 | Dec 16, 2015 | Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 might allow remote attackers to obtain sensitive information, cause a denial of service, or possibly have unspecified other impact by triggering a cr | ||
| CVE-2015-7202 | — | < 38.5.0esr-54.1 | 38.5.0esr-54.1 | Dec 16, 2015 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. | ||
| CVE-2015-7201 | — | < 38.5.0esr-54.1 | 38.5.0esr-54.1 | Dec 16, 2015 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors. |
- CVE-2015-7212Dec 16, 2015affected < 38.5.0esr-54.1fixed 38.5.0esr-54.1
Integer overflow in the mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering a graphics operation that requires a large texture allocation.
- CVE-2015-7210Dec 16, 2015affected < 38.5.0esr-54.1fixed 38.5.0esr-54.1
Use-after-free vulnerability in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering attempted use of a data channel that has been closed by a WebRTC function.
- CVE-2015-7205Dec 16, 2015affected < 38.5.0esr-54.1fixed 38.5.0esr-54.1
Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 might allow remote attackers to obtain sensitive information, cause a denial of service, or possibly have unspecified other impact by triggering a cr
- CVE-2015-7202Dec 16, 2015affected < 38.5.0esr-54.1fixed 38.5.0esr-54.1
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
- CVE-2015-7201Dec 16, 2015affected < 38.5.0esr-54.1fixed 38.5.0esr-54.1
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Page 8 of 8