561536
|
|
HTTP CONNECT does not properly handle 302 error
|
Core
|
Networking: HTTP
|
bzbarsky
|
RESO
|
FIXE
|
2013-03-14
|
568564
|
|
Suppress the script filename for cross-origin error events (SA39925)
|
Core
|
DOM: Core & HTML
|
bzbarsky
|
RESO
|
FIXE
|
2019-03-13
|
377392
|
|
"copy link location" fails to copy the letter H and the number 0 where present
|
Core
|
Layout
|
dragtext
|
RESO
|
FIXE
|
2011-03-04
|
556117
|
|
Either breakage or missed fix in nsPNGDecoder.cpp in 1.9.0.19
|
Core
|
Graphics: ImageLib
|
glennrp+bmo
|
RESO
|
FIXE
|
2011-02-25
|
536466
|
|
SSL spoofing using location.href and location.reload() with history.back() and history.forward()
|
Core Graveyard
|
Security: UI
|
honzab.moz
|
RESO
|
FIXE
|
2016-09-27
|
572985
|
|
Plugin Parameter EnsureCachedAttrParamArrays Remote Code Execution Vulnerability (ZDI-CAN-821)
|
Core Graveyard
|
Plug-ins
|
jaas
|
RESO
|
FIXE
|
2022-05-16
|
570451
|
|
segmentation fault when viewing a malformed PNG image
|
Core
|
Graphics
|
jmuizelaar
|
RESO
|
FIXE
|
2013-05-18
|
524921
|
|
Firefox crash on image with src set to a resource with multipart/x-mixed-replace content type [@js_LookupPropertyWithFlags ] or [@RtlEnterCriticalSection ]
|
Core
|
Graphics: ImageLib
|
joe
|
RESO
|
FIXE
|
2011-06-16
|
490461
|
|
Clicking embedded pdf (Adobe Reader plugin) while page scrolling crashes Firefox. [@ nsScrollPortView::IncrementalScroll]
|
Core
|
Web Painting
|
MatsPalmgren_bugz
|
RESO
|
FIXE
|
2018-08-29
|
509839
|
|
Crash [@ nsViewManager::CreateView][@ nsCSSFrameConstructor::AddFrameConstructionItemsInternal] on closing print preview with -moz-transform, position: fixed table displays
|
Core
|
Layout
|
MatsPalmgren_bugz
|
RESO
|
FIXE
|
2013-05-18
|
554255
|
|
XSLT Sort Remote Code Execution Vulnerability (ZDI-CAN-747)
|
Core
|
XSLT
|
peterv
|
RESO
|
FIXE
|
2010-07-24
|
559241
|
|
###!!! ASSERTION: this type of frame can't have overflow containers
|
Core
|
Layout: Block and In
|
roc
|
RESO
|
FIXE
|
2013-05-18
|
531176
|
|
Add assertion that it's safe to run scripts before dispatching any events (and fix the cases when events are dispatched at unsafe time)
|
Core
|
DOM: Events
|
smaug
|
RESO
|
FIXE
|
2010-07-23
|
535926
|
|
"ASSERTION: This is unsafe" with <iframe>, XBL
|
Core
|
DOM: Core & HTML
|
smaug
|
RESO
|
FIXE
|
2019-03-13
|
571106
|
|
nsTreeSelection Dangling Pointer Remote Code Execution Vulnerability (ZDI-CAN-755)
|
Core
|
XUL
|
smaug
|
RESO
|
FIXE
|
2010-09-27
|
572986
|
|
DOM Attribute Cloning Remote Code Execution Vulnerability (ZDI-CAN-832)
|
Core
|
DOM: Core & HTML
|
smaug
|
RESO
|
FIXE
|
2019-03-13
|
551327
|
|
New version of JEP (0.9.7.3), please land on branches
|
Plugins Graveyard
|
Java (Java Embedding
|
smichaud
|
RESO
|
FIXE
|
2016-04-28
|
598453
|
|
New version of JEP (0.9.7.4), please land on branches
|
Core Graveyard
|
Plug-ins
|
smichaud
|
RESO
|
FIXE
|
2022-05-16
|
634724
|
|
JEP allows almost full local-user access to file system via java.io.FileSystem object
|
Plugins Graveyard
|
Java (Java Embedding
|
smichaud
|
RESO
|
FIXE
|
2017-07-06
|
644682
|
|
New version of JEP (0.9.7.5), please land on branches
|
Core Graveyard
|
Plug-ins
|
smichaud
|
RESO
|
FIXE
|
2022-05-16
|
601429
|
|
x-mac-arabic, x-mac-farsi and x-mac-hebrew are vulnerable to XSS
|
Core
|
Internationalization
|
smontagu
|
RESO
|
FIXE
|
2011-02-27
|
607946
|
|
Allow specifying a post-upload command for uploadsymbols
|
Toolkit
|
Crash Reporting
|
ted
|
RESO
|
FIXE
|
2010-11-22
|
537120
|
|
Content-Disposition: attachment ignored if Content-Type: multipart also present
|
Core Graveyard
|
File Handling
|
bzbarsky
|
VERI
|
FIXE
|
2016-06-22
|
575836
|
|
free() of garbage values when an <object> has a |data=""| attribute and no "src" attribute --> crash [@ free | nsPluginInstanceOwner::~nsPluginInstanceOwner() ]
|
Core Graveyard
|
Plug-ins
|
cjones.bugs
|
VERI
|
FIXE
|
2022-05-16
|