Univention Bugzilla – Bug 38180
Firefox: Security issues from 31.6 (3.2)
Last modified: 2015-05-07 13:48:54 CEST
+++ This bug was initially created as a clone of Bug #38179 +++
Same-origin bypass through anchor navigation (CVE-2015-0801)
Potential XSRF affecting sendBeacon() requests (CORS requests should not follow 30x redirections after prefligh) (CVE-2015-0807)
Use-after-free when using the Fluendo MP3 GStreamer plugin (CVE-2015-0813)
Memory safety bugs (CVE-2015-0815)
resource:// documents can load privileged pages (CVE-2015-0816)
Two more have been fixed in 31.5.2 and 31.5.3:
* Reading and writing of memory allowing for arbitary code execution on the local system (Pwn2Own asm.js exploit) (CVE-2015-0817)
* Run arbitrary scripts in a privileged context (Same-origin bypass via SVG hash navigation) (CVE-2015-0818)
Tests (i386): OK
* Upstream ESR version imported and built in errata3.2-5
* Package update works, german and english versions tested.
* Advisories Ok.