Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » firefox10.0.11

Overview

Id firefox10.0.11
Name Mozilla Firefox ESR 10.0.11 for Mac OS X (Update) (See Note)
Vendor Name mozilla
Product Firefox
Content Type Critical Critical
Language(s)
Operating System(s) OSX 
Released On 20 Nov 2012 11:42:00

firefox10.0.11

Mozilla Firefox ESR 10.0.11 for Mac OS X (Update) (See Note)

Vendor Name

mozilla

Product

Firefox

Released On

20 Nov 2012 11:42:00

Url

http://www.mozilla.com/firefox/10.0.11/releasenotes/

Description

Mozilla offers an Extended Support Release (ESR) cycle for Firefox that gives users a longer support tail than what is currently offered with regular Firefox releases. This ESR version is available for users who wish to remain on the ESR cycle. Please see Mozilla Firefox Extended Support Release for more information.

About This Update:
Firefox ESR 10.0.11 fixes the following security issues:

  • MFSA 2012-106 Use-after-free, buffer overflow, and memory corruption issues found using Address Sanitizer.
  • MFSA 2012-105 Use-after-free and buffer overflow issues found using Address Sanitizer.
  • MFSA 2012-104 CSS and HTML injection through Style Inspector.
  • MFSA 2012-103 Frames can shadow top.location.
  • MFSA 2012-101 Improper character decoding in HZ-GB-2312 charset.
  • MFSA 2012-100 Improper security filtering for cross-origin wrappers.
  • MFSA 2012-98 Firefox installer DLL hijacking.
  • MFSA 2012-93 evalInSanbox location context incorrectly applied.
  • MFSA 2012-92 Buffer overflow while rendering GIF images.
  • MFSA 2012-91 Miscellaneous memory safety hazards (rv:17.0/ rv:10.0.11).
  • Important Note:
    The detection logic only detects Firefox installations in the current system volume.

    System Requirements:
    Intel-based Mac OS X 10.5
    Mac OS X 10.6
    Mac OS X 10.7

    Related Resources

    Related Vulnerabilities

    CVE-2012-4201   CVE-2012-4202   CVE-2012-4206   CVE-2012-4207   CVE-2012-4209   CVE-2012-4210   CVE-2012-4214   CVE-2012-4215   CVE-2012-4216   CVE-2012-5829   CVE-2012-5830   CVE-2012-5833   CVE-2012-5835   CVE-2012-5839   CVE-2012-5840   CVE-2012-5841   CVE-2012-5842  

    Related Patches

    None

    Superseded Patches


    Last Updated: 27 May 2016 11:15:37