فا

‫ Pale Moon Multiple Vulnerabilities

IRCAD2014073440

ID: IRCAD2014073440

Release Date: 2014-07-29

Criticality level: Highly critical

Software:
Pale Moon 24.x
Description:

Some vulnerabilities have been reported in Pale Moon, where some have an unknown impact and the other can be exploited by malicious people to compromise a user's system.

1) A use-after free error exists within a bundled vulnerable version of NSS.

2) Some errors related to SSL exist within NSS. No further information is currently available.

3) An error related to source frame for raster images in low-memory situations exists. No further information is currently available.

4) An error related to the refcounting logic around PostTimerEvent exists. No further information is currently available.

5) An error related to an invalid pointer state in docloader exists. No further information is currently available.

6) An error related to refcounting of font faces exists. No further information is currently available.

The vulnerabilities are reported in versions prior to 24.7.0.

Solution

Update to version 24.7.0 if available.

References:
Secunia:

http://secunia.com/advisories/60576/


نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 14 مرداد 1393

امتیاز

امتیاز شما
تعداد امتیازها:0