Debian Security Advisory 1707-1 - Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser.
bcc130fb1f1d07c3a3255951cc98724dd8b4314f82fcc2ee7d349720b8f8704e
Mandriva Linux Security Advisory 2009-012 - A number of security vulnerabilities have been discovered and corrected in the latest Mozilla Thunderbird program, version 2.0.0.19. This update provides the latest Thunderbird to correct these issues.
31ce266a8e873139a385b06d223d593e99fa02d8b4ea56d85ce98d309312c225
Debian Security Advisory 1704 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications.
9e3e36a4fa485680c7a4bd74e51761da2d1644c64d0801e1cec00e1a9bab5952
Ubuntu Security Notice USN-701-2 - Several flaws were discovered in the Thunderbird browser engine. Boris Zbarsky discovered that the same-origin check in Thunderbird could be bypassed by utilizing XBL-bindings. Marius Schilder discovered that Thunderbird did not properly handle redirects to an outside domain when an XMLHttpRequest was made to a same-origin resource. Chris Evans discovered that Thunderbird did not properly protect a user's data when accessing a same-domain Javascript URL that is redirected to an unparsable Javascript off-site resource. Chip Salzenberg, Justin Schuh, Tom Cross, and Peter William discovered Thunderbird did not properly parse URLs when processing certain control characters. Several flaws were discovered in the Javascript engine.
b6cca8b4a0ada9843a17cd60ca12f09f4ce7f003175d38b562b60e18b3b1077d
Ubuntu Security Notice USN-701-1 - Several flaws were discovered in the Thunderbird browser engine. Boris Zbarsky discovered that the same-origin check in Thunderbird could be bypassed by utilizing XBL-bindings. Marius Schilder discovered that Thunderbird did not properly handle redirects to an outside domain when an XMLHttpRequest was made to a same-origin resource. Chris Evans discovered that Thunderbird did not properly protect a user's data when accessing a same-domain Javascript URL that is redirected to an unparsable Javascript off-site resource. Chip Salzenberg, Justin Schuh, Tom Cross, and Peter William discovered Thunderbird did not properly parse URLs when processing certain control characters. Kojima Hajime discovered that Thunderbird did not properly handle an escaped null character. An attacker may be able to exploit this flaw to bypass script sanitization. Several flaws were discovered in the Javascript engine.
bde8c1eb9e592f8207701c4d7555f829f5c7f296cc697e00576cf9a67ec6ba8c
Mandriva Linux Security Advisory 2008-245 - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox 3.x, version 3.0.5. This update provides the latest Mozilla Firefox 3.x to correct these issues.
8e8a124d3442c7f7e103e33992e5c8bfc960102e2339c8903eed555f5a12867d
Ubuntu Security Notice USN-690-2 - Several flaws were discovered in the firefox browser engine.
0b55724bc93e7f832d58701657e39690d1852e24cc7a334cf3aae12b84dc6cb7
Ubuntu Security Notice USN-690-1 - Several flaws were discovered in the firefox browser engine.
2da044eb0e205b8d61a7ef634850906be1fe9b2063cb5e4633c76b32e47fa1a7
Mandriva Linux Security Advisory 2008-244 - Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox 2.x, version 2.0.0.19. This update provides the latest Mozilla Firefox 2.x to correct these issues.
2ef0e1d70f36766c952e710ba3d3e9d0973baefba0fdb6d07bf664a08f89cbeb