| 267123
|
|
[SA12979-2] File ext != Content-Type left intact when downloading
|
Toolkit
|
Downloads API
|
nobody
|
NEW
|
---
|
2022-10-10
|
| 268535
|
|
crashes where rt->gcFreeList turns into a small int after last-ditch GCs
|
Core
|
JavaScript Engine
|
brendan
|
RESO
|
FIXE
|
2011-08-05
|
| 282520
|
|
nsIDNService::Normalize should call normalizeFullStops
|
Core
|
Networking
|
dbaron
|
RESO
|
FIXE
|
2005-02-17
|
| 22183
|
|
UI spoofing can cause user to mistake content for chrome
|
Core
|
XUL
|
dveditz
|
RESO
|
FIXE
|
2023-08-19
|
| 277657
|
|
(Xpfe) textbox.maxLength doesn't work
|
Core
|
XUL
|
ben.bucksch
|
RESO
|
FIXE
|
2006-03-12
|
| 280928
|
|
crash when right-clicking a popup window with onmousedown=window.close
|
Core
|
Widget: Gtk
|
blizzard
|
RESO
|
FIXE
|
2005-02-22
|
| 281367
|
|
Segfault when using cups with no default printer set [@ GlobalPrinters::InitializeGlobalPrinters]
|
Core Graveyard
|
GFX: Gtk
|
blizzard
|
RESO
|
FIXE
|
2009-01-22
|
| 279427
|
|
mozilla-xpcom.pc missing include directory
|
SeaMonkey
|
Build Config
|
braden
|
RESO
|
FIXE
|
2005-07-26
|
| 280086
|
|
Caught exception: “RangeError: reserved slot index out of range” evaluating a regexp in venkman
|
Core
|
JavaScript Engine
|
brendan
|
RESO
|
FIXE
|
2005-10-23
|
| 253787
|
|
In <nsContextMenu.js>, "Warning: reference to undefined property docshell.document.charset" (and other warnings/errors)
|
SeaMonkey
|
General
|
bugzillamozillaorg_serge_20...
|
RESO
|
FIXE
|
2007-04-27
|
| 241440
|
|
memory overflow in UTF8ToNewUnicode
|
Core
|
XPCOM
|
caillon
|
RESO
|
FIXE
|
2020-12-09
|
| 240473
|
|
Tell config tools where .idl files are installed
|
SeaMonkey
|
Build Config
|
chpe
|
RESO
|
FIXE
|
2006-02-10
|
| 270243
|
|
embed prompter mangles non-ascii input
|
Core Graveyard
|
Embedding: GTK Widge
|
chpe
|
RESO
|
FIXE
|
2012-04-05
|
| 276482
|
|
opening windows using javascript: links fails
|
Core Graveyard
|
Embedding: GTK Widge
|
crispin
|
RESO
|
FIXE
|
2012-04-05
|
| 277549
|
|
Out of memory in MutatePrep is not well handled [@nsTSubstring_CharT]
|
Core
|
XPCOM
|
darin.moz
|
RESO
|
FIXE
|
2020-12-09
|
| 280082
|
|
Overflow on malicious imap: URL
|
Core
|
XPCOM
|
darin.moz
|
RESO
|
FIXE
|
2006-04-03
|
| 180309
|
|
Xft Crash while loading page with MS .fon font or read-protected font - FF10RC2 [@ GetNormalLineHeight]
|
Core
|
Layout: Text and Fon
|
dbaron
|
RESO
|
FIXE
|
2011-08-05
|
| 156422
|
|
Win32's nsILocalFile.reveal() (used by Reveal Location) doesn't select file
|
Core Graveyard
|
File Handling
|
dean_tessman
|
RESO
|
FIXE
|
2016-06-22
|
| 211894
|
|
"Show File Location" starts (launches) an executable of the same name (in nsILocalFile::Reveal)
|
Core
|
XPCOM
|
doug.turner
|
RESO
|
FIXE
|
2005-04-14
|
| 267828
|
|
nsLocalFileWin::IsExecutable needs to trim trailing dots
|
Core
|
XPCOM
|
doug.turner
|
RESO
|
FIXE
|
2011-08-05
|
| 275441
|
|
File download extension spoofing with Content-Type and .ext<space>.<space> (SA12979 variant)
|
Toolkit
|
Downloads API
|
doug.turner
|
RESO
|
FIXE
|
2008-07-31
|
| 280522
|
|
Possible Buffer overflow due to missing terminating null [windows/nsToolkit.cpp:ConvertWtoA()]
|
Core
|
Widget: Win32
|
dveditz
|
RESO
|
FIXE
|
2005-02-25
|
| 283103
|
|
security and download dialogs can be spoofed by covering them partially using popup windows
|
SeaMonkey
|
General
|
dveditz
|
RESO
|
FIXE
|
2006-03-12
|
| 237712
|
|
Gecko (? Firefox & Camino) doesn't interpret "macintosh" encoding as "x-mac-roman"
|
Core
|
Internationalization
|
jshin1987
|
RESO
|
FIXE
|
2005-03-01
|
| 270580
|
|
Cannot print if first printing trigger is javascript(window.print()) with a printer with non-Latin1 (e.g. Japanese) characters in its name
|
Core
|
Printing: Output
|
jshin1987
|
RESO
|
FIXE
|
2005-03-10
|
| 282800
|
|
Potential NULL argument 3 to 'memset' in nsUnicodeToJamoTTF.cpp
|
Core
|
Internationalization
|
jshin1987
|
RESO
|
FIXE
|
2005-02-18
|
| 245359
|
|
[10.2] when home page preference is set to 'blank' or 'use system home page' (which is 'blank') no window opens
|
Camino Graveyard
|
Preferences
|
mikepinkerton
|
RESO
|
FIXE
|
2005-03-07
|
| 161337
|
|
pull accept-language header from system prefs
|
Camino Graveyard
|
General
|
mozilla
|
RESO
|
FIXE
|
2005-03-07
|
| 265903
|
|
Camino crashes when starting a download if download folder not specified in IC preferences (e.g. a fresh user account)
|
Camino Graveyard
|
Downloading
|
mozilla
|
RESO
|
FIXE
|
2005-03-07
|
| 275558
|
|
Filter based on custom header doesn't work automatically after upgrade to Moz 1.7.5
|
MailNews Core
|
Filters
|
mozilla
|
RESO
|
FIXE
|
2008-07-31
|
| 280063
|
|
3 bugs in nsDragService for OS/2
|
Core Graveyard
|
Widget: OS/2
|
mozilla
|
RESO
|
FIXE
|
2014-12-09
|
| 280814
|
|
Automated determination of accept-language header has some problems
|
Camino Graveyard
|
Preferences
|
mozilla
|
RESO
|
FIXE
|
2005-03-07
|
| 272455
|
|
javascript statement "prompt(string)" fails with the latest nightly of TB or Fx 1.0.1
|
Core
|
DOM: Core & HTML
|
mscott
|
RESO
|
FIXE
|
2019-03-13
|
| 275779
|
|
bump version to 1.7.6
|
SeaMonkey
|
Build Config
|
nobody
|
RESO
|
FIXE
|
2005-03-21
|
| 271050
|
|
Improve Camino's handling of Gecko Events
|
Camino Graveyard
|
General
|
sfraser_bugs
|
RESO
|
FIXE
|
2005-07-04
|
| 261934
|
|
regression: network.standard-url.encode.utf8 and network.enableIDN prefs are ignored
|
Core
|
Networking
|
smontagu
|
RESO
|
FIXE
|
2011-08-18
|
| 271883
|
|
Multiple bookmark.html files being generated
|
Firefox
|
Bookmarks & History
|
vladimir+bm
|
RESO
|
FIXE
|
2006-08-27
|
| 280984
|
|
PR_GetLibraryFilePathname is not working correctly on AIX
|
NSPR
|
NSPR
|
wtc
|
RESO
|
FIXE
|
2005-02-09
|
| 162392
|
|
Crash eval-ing void arguments in debugger [@ JS_GetReservedSlot]
|
Core
|
JavaScript Engine
|
brendan
|
VERI
|
FIXE
|
2006-08-19
|
| 281984
|
|
FF10 crash viewing superbowl ads at ifilm.com [@ Detecting]
|
Core
|
JavaScript Engine
|
brendan
|
VERI
|
FIXE
|
2011-08-05
|
| 270414
|
|
[FIX]Cannot reference parent frameset from window created using window.open()
|
Core
|
DOM: Core & HTML
|
bzbarsky
|
VERI
|
FIXE
|
2008-01-27
|
| 278916
|
|
[FIX]link launches blank popup window and new page with the desired content
|
Core
|
DOM: Navigation
|
bzbarsky
|
VERI
|
FIXE
|
2008-01-27
|
| 271209
|
|
xsl:include and xsl:import allow at least checking for existance of documents on arbitrary servers
|
Core
|
XSLT
|
peterv
|
VERI
|
FIXE
|
2006-03-12
|
| 271585
|
|
Add UTN root CA certs to NSS
|
NSS
|
Libraries
|
nelson
|
VERI
|
FIXE
|
2006-07-25
|
| 103638
|
|
targets with same name in different windows open in wrong window with javascript
|
Core
|
Layout: Images, Vide
|
jstenback+bmo
|
VERI
|
FIXE
|
2018-08-29
|
| 268231
|
|
crash on RC2/1.8a5/1.7.5 with malformed html
|
Core
|
Layout: Tables
|
bernd_mozilla
|
VERI
|
FIXE
|
2006-03-12
|
| 277069
|
|
venkman/jsd exposed a rooting problem (last ditch gc?) [@ str_resolve]
|
Core
|
JavaScript Engine
|
brendan
|
VERI
|
FIXE
|
2005-10-13
|
| 262887
|
|
Secunia background tab security issues (SA12712 - less critical) -
|
SeaMonkey
|
Tabbed Browser
|
bryner
|
VERI
|
FIXE
|
2014-04-26
|
| 279495
|
|
A link with an URL and additional javascript open shows a popup and an unwanted new window [link with TARGET and onClick=window.open]
|
Core
|
DOM: Navigation
|
bzbarsky
|
VERI
|
FIXE
|
2008-01-27
|
| 242845
|
|
Firefox disk image should use .dmg internal zlib-compression, not .dmg.gz
|
Firefox Build System
|
General
|
chase
|
VERI
|
FIXE
|
2018-03-02
|
| 238566
|
|
Checking SSL certificate verifies wrong site when new page is slow to load
|
Core Graveyard
|
Security: UI
|
darin.moz
|
VERI
|
WORK
|
2016-09-27
|
| 258048
|
|
Security indicators updated when page finishes load, not when it starts rendering
|
Core
|
Security
|
darin.moz
|
VERI
|
FIXE
|
2006-03-12
|
| 268483
|
|
Lock icon appears even though http connection failed.
|
Core
|
Networking: HTTP
|
darin.moz
|
VERI
|
FIXE
|
2006-03-12
|
| 276720
|
|
wrong behavior with "http/1.1 204 no content"
|
Core
|
Security
|
darin.moz
|
VERI
|
FIXE
|
2007-04-01
|
| 277322
|
|
XMLHttpRequest from chrome fails to prompt when auth needed
|
Core
|
Networking: HTTP
|
darin.moz
|
VERI
|
FIXE
|
2005-02-25
|
| 277564
|
|
lock icon and certificates spoofable with "wyciwyg:"
|
Core
|
Security
|
darin.moz
|
VERI
|
FIXE
|
2011-08-05
|
| 282270
|
|
Display IDN urls as punycode by default (pref controlled)
|
Core
|
Networking
|
darin.moz
|
VERI
|
FIXE
|
2010-01-31
|
| 283201
|
|
Entering/leaving security warnings when staying on https
|
Core Graveyard
|
Security: UI
|
darin.moz
|
VERI
|
FIXE
|
2016-09-27
|
| 283733
|
|
accessing a relative anchor in a secure page removes the locked icon and yellow background UI
|
Core Graveyard
|
Security: UI
|
darin.moz
|
VERI
|
FIXE
|
2016-09-27
|
| 271732
|
|
COMMAND.COM is overwritten by downloading the pif file
|
Core Graveyard
|
GFX: Win32
|
doug.turner
|
VERI
|
FIXE
|
2009-01-22
|
| 268059
|
|
InstallTrigger.install doesn't check for username:password URL spoofing
|
Core Graveyard
|
Installer: XPInstall
|
dveditz
|
VERI
|
FIXE
|
2015-12-11
|
| 273699
|
|
2 Frame Injection Vulnerabilities (popup blocking race condition & onunload event mis-firing) [Secunia Advisory SA13129 moderately critical]
|
Core
|
Security
|
dveditz
|
VERI
|
FIXE
|
2014-04-26
|
| 280056
|
|
When dropping a javascript link to a tab, the script runs in the security context of the site currently displayed in the tab
|
Core
|
DOM: Copy & Paste an
|
dveditz
|
VERI
|
FIXE
|
2020-12-01
|
| 282894
|
|
crashes anytime it needs the master password dialog [@ nsPrompt::DispatchCustomEvent]
|
Firefox
|
General
|
dveditz
|
VERI
|
FIXE
|
2011-06-09
|
| 282955
|
|
Run-on title in urlbar-less windows on Mac
|
Core
|
DOM: Navigation
|
dveditz
|
VERI
|
FIXE
|
2005-10-14
|
| 284551
|
|
SSL spoofing vulnerability: status bar disappears in small windows; popups can spoof the SSL lock.
|
Core
|
Layout: Images, Vide
|
dveditz
|
VERI
|
FIXE
|
2018-08-29
|
| 285595
|
|
A buffer overflow vulnerability in GIF processing that can lead to remote compromise.
|
Core
|
Graphics: ImageLib
|
dveditz
|
VERI
|
FIXE
|
2009-08-26
|
| 239472
|
|
Page Info -> media -> Save As... doesn't work
|
SeaMonkey
|
Page Info
|
florian
|
VERI
|
FIXE
|
2014-06-13
|
| 267378
|
|
open link from Mail&News in new tab doesn't work (XPCNativeWrapper is not defined)
|
SeaMonkey
|
Tabbed Browser
|
jon
|
VERI
|
FIXE
|
2009-11-02
|
| 236596
|
|
form element cannot get focus when loaded by XML/XSLT page
|
Core
|
XSLT
|
jonas
|
VERI
|
FIXE
|
2006-03-12
|
| 277574
|
|
Http auth prompt from other tabs displays over current tab
|
Firefox
|
Tabbed Browser
|
jstenback+bmo
|
VERI
|
FIXE
|
2007-08-13
|
| 278143
|
|
"Force links that open new windows to open in tab" does not work for links inside mail body in GMail
|
SeaMonkey
|
Tabbed Browser
|
jstenback+bmo
|
VERI
|
FIXE
|
2008-07-31
|
| 279945
|
|
Image drag and drop allows to create executable files
|
Core
|
Layout
|
jstenback+bmo
|
VERI
|
FIXE
|
2008-03-31
|
| 280664
|
|
Using Flash and the -moz-opacity filter you can get access to about:config and make the user silently change values [secunia http://secunia.com/advisories/14160/ moderately critcial ]
|
Core Graveyard
|
Plug-ins
|
jstenback+bmo
|
VERI
|
FIXE
|
2022-05-16
|
| 280947
|
|
Fix for bug 279945 breaks dragging of dynamic images
|
Core
|
DOM: Copy & Paste an
|
jstenback+bmo
|
VERI
|
FIXE
|
2005-02-22
|
| 281284
|
|
malicious local users can remove mozilla users files (insecure use of /tmp/plugtmp)
|
Core Graveyard
|
Plug-ins
|
jstenback+bmo
|
VERI
|
FIXE
|
2022-05-16
|
| 282453
|
|
XFT crash when displaying page with bad font if character not found
|
Core Graveyard
|
GFX: Gtk
|
lorenzo
|
VERI
|
FIXE
|
2009-01-22
|
| 241987
|
|
Export bookmarks doesn't save the bookmarks to a file like bookmarks.html
|
SeaMonkey
|
Bookmarks & History
|
mfe
|
VERI
|
FIXE
|
2009-08-26
|
| 267352
|
|
printing doesn't print form inputs
|
Core
|
Printing: Output
|
mike.shaver
|
VERI
|
FIXE
|
2011-08-05
|
| 186384
|
|
the auto fill password does not work inside a frameset
|
Camino Graveyard
|
OS Integration
|
mikepinkerton
|
VERI
|
FIXE
|
2005-03-10
|
| 277928
|
|
quitting while downloading a file causes crash
|
Camino Graveyard
|
Downloading
|
mikepinkerton
|
VERI
|
FIXE
|
2005-03-10
|
| 279815
|
|
Get Info "Version" should be 2005, not 2004
|
Camino Graveyard
|
General
|
mikepinkerton
|
VERI
|
FIXE
|
2005-03-10
|
| 242677
|
|
trunk crash while downloading mails [@ nsMsgSearchTerm::StripQuotedPrintable ]
|
SeaMonkey
|
MailNews: Message Di
|
mozilla
|
VERI
|
FIXE
|
2011-06-09
|
| 242744
|
|
Junk mail preference delete junk after x days doesn't work if "Junk Purge" is enabled for multiple accounts
|
MailNews Core
|
Filters
|
mozilla
|
VERI
|
FIXE
|
2008-07-31
|
| 281107
|
|
Google defaults to non-native language
|
Camino Graveyard
|
Toolbars & Menus
|
mozilla
|
VERI
|
FIXE
|
2005-03-10
|
| 285163
|
|
Download dialog source spoofing (Secunia Advisory SA13599 less critical)
|
SeaMonkey
|
Download & File Hand
|
neil
|
VERI
|
FIXE
|
2005-03-10
|
| 266225
|
|
Crash [@ nsFieldSetFrame::Reflow ]
|
Core
|
Layout: Form Control
|
nobody
|
VERI
|
FIXE
|
2014-04-26
|
| 149648
|
|
OPTGROUP element not supported
|
Camino Graveyard
|
HTML Form Controls
|
sfraser_bugs
|
VERI
|
FIXE
|
2005-03-10
|
| 281470
|
|
Vertical mouse drags are reversed on Google maps
|
Camino Graveyard
|
Page Layout
|
sfraser_bugs
|
VERI
|
FIXE
|
2005-03-10
|
| 282295
|
|
Inverted screen Y-coords fix make drag snapback zoom to wrong place
|
Camino Graveyard
|
Drag & Drop
|
sfraser_bugs
|
VERI
|
FIXE
|
2005-03-10
|
| 271895
|
|
Exporting an address book doesn't work (Not enough arguments [nsIAddressBook.exportAddressBook])
|
SeaMonkey
|
MailNews: Address Bo
|
standard8
|
VERI
|
FIXE
|
2005-11-03
|
| 262822
|
|
FIPS can't be enabled
|
SeaMonkey
|
Build Config
|
wtc
|
VERI
|
FIXE
|
2005-02-24
|
| 271280
|
|
Crash in online lc2 suite - [@ FindConstructor] OBJ_IS_NATIVE
|
Core Graveyard
|
Java: Live Connect
|
yuanyi21
|
VERI
|
FIXE
|
2010-10-16
|