Vulnerabilities in mozilla

1,860 results
CVE-2017-7845A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. ThiEPSS 3.2%CVE-2018-12390Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2. Some of these bugs showed eEPSS 3.2%CVE-2018-12405Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed eEPSS 3.2%CVE-2020-6811The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the webEPSS 3.2%CVE-2017-7753An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. This vulnerabilityEPSS 3.2%CVE-2017-5435A use-after-free vulnerability occurs during transaction processing in the editor during design mode interactions. This results in a potentiEPSS 3.2%CVE-2018-5183Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including invalid buffer EPSS 3.2%CVE-2017-5432A use-after-free vulnerability occurs during certain text input selection resulting in a potentially exploitable crash. This vulnerability aEPSS 3.2%CVE-2018-5150Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of these bugs showed evidence of memory corruptEPSS 3.2%CVE-2018-12366An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value. This couEPSS 3.2%CVE-2018-12365A compromised IPC child process can escape the content sandbox and list the names of arbitrary files on the file system without user consentEPSS 3.2%CVE-2017-7805During TLS 1.2 exchanges, handshake hashes are generated which point to a message buffer. This saved data is used for later messages but in EPSS 3.2%CVE-2017-5443An out-of-bounds write vulnerability while decoding improperly formed BinHex format archives. This vulnerability affects Thunderbird < 52.1,EPSS 3.1%CVE-2017-5446An out-of-bounds read when an HTTP/2 connection to a servers sends "DATA" frames with incorrect data content. This leads to a potentially exEPSS 3.1%CVE-2018-12376Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we presume that wEPSS 3.1%CVE-2017-7758An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder is in useEPSS 3.1%CVE-2018-5098A use-after-free vulnerability can occur when form input elements, focus, and selections are manipulated by script content. This results in EPSS 3.1%CVE-2018-12360A use-after-free vulnerability can occur when deleting an input element during a mutation event handler triggered by focusing that element. EPSS 3.1%CVE-2018-12363A use-after-free vulnerability can occur when script uses mutation events to move DOM nodes between documents, resulting in the old documentEPSS 3.1%CVE-2018-5099A use-after-free vulnerability can occur when the widget listener is holding strong references to browser objects that have previously been EPSS 3.1%