Debian Security Advisory 1337-1 - Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. These vulnerabilities range from cross site scripting to arbitrary code execution flaws.
caf99c2e0f0035b962c0967f4694b48897b5d59cdcb1f4b99a052dd8022a5767