CVE search results

1711 – 1720 of 2399 results

Detailed view

Sort by:

CVE-2014-1558

Low priority

Some fixes available 4 of 6

Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote attackers to cause a denial of service (X.509 certificate parsing outage) via a crafted certificate that does not use UTF-8 character encoding in a required...

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1557

Medium priority

Some fixes available 4 of 6

The ConvolveHorizontally function in Skia, as used in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7, does not properly handle the discarding of image data during function execution, which...

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1556

Medium priority

Some fixes available 4 of 6

Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allow remote attackers to execute arbitrary code via crafted WebGL content constructed with the Cesium JavaScript library.

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1555

Medium priority

Some fixes available 4 of 6

Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allows remote attackers to execute arbitrary code via vectors that...

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1552

Medium priority

Some fixes available 4 of 6

Mozilla Firefox before 31.0 and Thunderbird before 31.0 do not properly implement the sandbox attribute of the IFRAME element, which allows remote attackers to bypass intended restrictions on same-origin content via a crafted web...

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1550

Medium priority

Some fixes available 4 of 6

Use-after-free vulnerability in the MediaInputPort class in Mozilla Firefox before 31.0 and Thunderbird before 31.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption)...

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1549

Medium priority

Some fixes available 4 of 6

The mozilla::dom::AudioBufferSourceNodeEngine::CopyFromInputBuffer function in Mozilla Firefox before 31.0 and Thunderbird before 31.0 does not properly allocate Web Audio buffer memory, which allows remote attackers to execute...

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1547

Medium priority

Some fixes available 4 of 6

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allow remote attackers to cause a denial of service (memory corruption and...

2 affected packages

firefox, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-1544

Medium priority

Some fixes available 7 of 9

Use-after-free vulnerability in the CERT_DestroyCertificate function in libnss3.so in Mozilla Network Security Services (NSS) 3.x, as used in Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7, allows...

3 affected packages

firefox, nss, thunderbird

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	—	—	—
nss	—	—	—	—	—
thunderbird	—	—	—	—	—

CVE-2014-4715

Medium priority

Some fixes available 1 of 56

Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows, which allows context-dependent attackers to cause a denial of service (memory...

10 affected packages

firefox, eet, grub2, efl, gtkwave...

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
firefox	—	—	Not affected	Not in release	Not affected
eet	—	—	Not in release	Not in release	Not in release
grub2	—	—	Not affected	Not affected	Not affected
efl	—	—	Not affected	Not affected	Not affected
gtkwave	—	—	Not affected	Not affected	Not affected
lz4	—	—	Not affected	Not affected	Not affected
php-horde-lz4	—	—	Not in release	Not in release	Not affected
pytables	—	—	Not affected	Not affected	Not affected
thunderbird	—	—	Not affected	Not in release	Not affected
zfsutils	—	—	Not in release	Not in release	Not in release

Export to JSON

Results by page:

Search CVE reports