Lucene search
SecurityvulnsSECURITYVULNS:DOC:25267HistoryDec 10, 2010 - 12:00 a.m.
Mozilla Foundation Security Advisory 2010-78
2010-12-1000:00:00
vulners.com
39
Mozilla Foundation Security Advisory 2010-78
Title: Add support for OTS font sanitizer
Impact: Critical
Announced: December 9, 2010
Reporter: Marc Schoenefeld, Christoph Diehl
Products: Firefox, Thunderbird, SeaMonkey
Fixed in: Firefox 3.6.13
Firefox 3.5.16
Thunderbird 3.1.7
Thunderbird 3.0.11
SeaMonkey 2.0.11
Description
Mozilla added the OTS font sanitizing library to prevent downloadable fonts from exposing vulnerabilities in the underlying OS font code. This library mitigates against several issues independently reported by Red Hat Security Response Team member Marc Schoenefeld and Mozilla security researcher Christoph Diehl.
References
* https://bugzilla.mozilla.org/show_bug.cgi?id=527276
* CVE-2010-3768
Related
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:52:29
prion
prion
Code injection
2010-12-10 19:00:00
ubuntucve
ubuntucve
CVE-2010-3768
2010-12-09 00:00:00
mozilla
mozilla
Add support for OTS font sanitizer — Mozilla
2010-12-09 00:00:00
cve
cve
CVE-2010-3768
2010-12-10 19:00:00
openvas
openvas
Mozilla Products Multiple Vulnerabilities dec-10 (Windows)
2010-12-27 00:00:00
Oracle Linux Local Check: ELSA-2010-0969
2015-10-06 00:00:00
Mozilla Products Multiple Vulnerabilities-03 dec-10 (Windows)
2010-12-27 00:00:00
nessus
nessus
Fedora 14 : thunderbird-3.1.7-2.fc14 (2010-18777)
2010-12-13 00:00:00
RHEL 6 : thunderbird (RHSA-2010:0969)
2010-12-10 00:00:00
Oracle Linux 6 : thunderbird (ELSA-2010-0969)
2013-07-12 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2011-02-10 00:00:00
firefox security update
2010-12-10 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: thunderbird-3.1.7-2.fc14
2010-12-12 00:05:37
[SECURITY] Fedora 13 Update: thunderbird-3.1.7-2.fc13
2010-12-13 20:10:19
[SECURITY] Fedora 14 Update: perl-Gtk2-MozEmbed-0.08-6.fc14.22
2010-12-10 20:27:49
redhat
redhat
(RHSA-2010:0969) Moderate: thunderbird security update
2010-12-09 00:00:00
(RHSA-2010:0966) Critical: firefox security update
2010-12-09 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2010-12-09 00:00:00
Firefox and Xulrunner vulnerabilities
2010-12-09 00:00:00
centos
centos
firefox security update
2011-01-27 08:53:21
securityvulns
securityvulns
Mozilla Firefox / Thinderbird / Seamonkey multiple security vulnerabilities
2010-12-10 00:00:00
debian
debian
[BSA-013] Security Update for iceweasel
2011-01-02 19:45:28
suse
suse
remote code execution in MozillaFirefox,MozillaThunderbird,Seamonkey
2011-01-05 11:25:44
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
freebsd
freebsd
mozilla -- multiple vulnerabilities
2010-12-09 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
Related for SECURITYVULNS:DOC:25267