| 380994
|
|
Fix for bug 367428 lets through escaped slashes on Linux (windows too on trunk)
|
Core
|
Networking
|
dveditz
|
RESO
|
FIXE
|
2009-05-08
|
| 448548
|
|
XSLT creates documents which don't have script handling objects
|
Core
|
DOM: Core & HTML
|
smaug
|
RESO
|
FIXE
|
2019-03-13
|
| 360529
|
|
Arbitrary code execution using XSS hole and feed preview page
|
Firefox Graveyard
|
RSS Discovery and Pr
|
asaf
|
RESO
|
FIXE
|
2018-12-20
|
| 419848
|
|
XPCNativeWrapper pollution using chrome js
|
Core
|
Security
|
mrbkap
|
RESO
|
FIXE
|
2008-10-13
|
| 369918
|
|
Crash Loading a Saved Search Folder [ nsMsgQuickSearchDBView::OnSearchDone]
|
MailNews Core
|
Backend
|
mkmelin+mozilla
|
RESO
|
FIXE
|
2008-09-25
|
| 430658
|
|
Remaining attack vectors in FeedWriter.js
|
Firefox Graveyard
|
RSS Discovery and Pr
|
asaf
|
RESO
|
FIXE
|
2018-12-20
|
| 443089
|
|
<mtd> with huge rowspan causes crash with sad nsCellMap
|
Core
|
MathML
|
bernd_mozilla
|
RESO
|
FIXE
|
2008-09-25
|
| 448134
|
|
[de] Support URL in german Thunderbird 2.0.0.* broken
|
Mozilla Localization
|
de / German
|
bugzilla
|
RESO
|
FIXE
|
2010-10-19
|
| 394075
|
|
Resource Directory Traversal Vulnerability
|
Firefox
|
Security
|
dveditz
|
RESO
|
FIXE
|
2008-09-30
|
| 416318
|
|
resource:// traversal allows stealing files from a local page
|
Core
|
General
|
dveditz
|
RESO
|
FIXE
|
2008-11-16
|
| 417400
|
|
Resource Directory Traversal Vulnerability - Mac OS X and Linux Example
|
Core
|
Security
|
dveditz
|
RESO
|
FIXE
|
2008-09-30
|
| 441876
|
|
remove UTF-7 from browser encoding menus
|
Core
|
Internationalization
|
gavin.sharp
|
RESO
|
FIXE
|
2008-08-29
|
| 439034
|
|
Same-origin check in nsXMLDocument::OnChannelRedirect() can be circumvented
|
Core
|
Security
|
jstenback+bmo
|
RESO
|
FIXE
|
2008-11-16
|
| 444077
|
|
XPCNativeWrapper pollution using chrome JS
|
Core
|
XPConnect
|
mrbkap
|
RESO
|
FIXE
|
2009-01-27
|
| 444073
|
|
Script evaluated by Components.utils.evalInSandbox() can pollute implicit XPCNativeWrapper
|
Core
|
XPConnect
|
mrbkap
|
VERI
|
FIXE
|
2009-01-27
|
| 444075
|
|
XPCNativeWrapper pollution using chrome XBL
|
Core
|
XPConnect
|
mrbkap
|
VERI
|
FIXE
|
2009-02-05
|
| 438288
|
|
URI.path one character short after redirect involving fragment
|
Core
|
Networking
|
MatsPalmgren_bugz
|
VERI
|
FIXE
|
2009-04-14
|
| 385133
|
|
Crash due to too much recursion in js_DecompileValueGenerator with watch, setter, delete, generator
|
Core
|
JavaScript Engine
|
igor
|
VERI
|
FIXE
|
2008-08-22
|
| 417138
|
|
[ko] [오자 수정] 없데이트→업데이트
|
Mozilla Localization
|
ko / Korean
|
admin
|
VERI
|
FIXE
|
2008-08-18
|
| 443474
|
|
[ko] fixed wrong Thunderbird 2.x translate
|
Mozilla Localization
|
ko / Korean
|
admin
|
VERI
|
FIXE
|
2008-08-18
|
| 445107
|
|
[de] page info window > links: there is a column called "access key" (should be "Tastaturkürzel")
|
Mozilla Localization
|
de / German
|
bugzilla
|
VERI
|
FIXE
|
2008-08-19
|
| 445890
|
|
XMLHttpRequest.responseXml not accessible from signed remote XUL code
|
Core
|
Security
|
bzbarsky
|
VERI
|
FIXE
|
2008-10-08
|
| 448166
|
|
escaped low surrogates possible XSS hazard in URIs
|
Core
|
Networking
|
bzbarsky
|
VERI
|
FIXE
|
2009-02-21
|
| 410757
|
|
[ko] Wrong translate statusFormat of downloads.properties
|
Mozilla Localization
|
ko / Korean
|
channy
|
VERI
|
FIXE
|
2008-08-18
|
| 430740
|
|
BOM characters are stripped from javascript before execution
|
Core
|
JavaScript Engine
|
crowderbt
|
VERI
|
FIXE
|
2009-03-02
|
| 446494
|
|
Buffer overflow in Number.toLocaleString()
|
Core
|
JavaScript Engine
|
crowderbt
|
VERI
|
FIXE
|
2010-11-27
|
| 450865
|
|
c++ style comment in js/src/jsemit.c
|
Core
|
JavaScript Engine
|
crowderbt
|
VERI
|
FIXE
|
2008-09-18
|
| 452689
|
|
Crash in [@ nsPrefBranch::SetComplexValue] passing RSS feed URL to FeedDemon
|
Firefox Graveyard
|
RSS Discovery and Pr
|
gavin.sharp
|
VERI
|
FIXE
|
2018-12-20
|
| 450698
|
|
The second argument of nsParseNewMailState::AppendMsgFromFile should be PRUint32.
|
MailNews Core
|
Filters
|
hikezoe.birchill
|
VERI
|
FIXE
|
2008-09-04
|
| 444608
|
|
SM: jsxml.c assumes that Namespace and QName are read-only
|
Core
|
JavaScript Engine
|
igor
|
VERI
|
FIXE
|
2009-03-02
|
| 367736
|
|
potential sign problems in nsEscapeCount
|
Core
|
XPCOM
|
michal.novotny
|
VERI
|
FIXE
|
2008-09-23
|
| 258136
|
|
Long HTML page takes very long to load on OS/2
|
Core Graveyard
|
Widget: OS/2
|
mozilla
|
VERI
|
FIXE
|
2014-12-09
|
| 441087
|
|
NS_ERROR_XPC_SECURITY_MANAGER_VETO in Greasemonkey JavaScript eval containing object.property
|
Core
|
Security
|
mrbkap
|
VERI
|
FIXE
|
2009-02-05
|
| 420310
|
|
unable to display PDF delivered via SSL since Firefox 2.0.0.10
|
Core
|
Networking: HTTP
|
neil
|
VERI
|
FIXE
|
2008-09-09
|
| 437288
|
|
[1.8 branch] Hang involving a for loop turning into a while loop
|
Core
|
JavaScript Engine
|
nth10sd
|
VERI
|
FIXE
|
2008-09-27
|
| 445276
|
|
uninstall\helper.EXE does not contain a value for "Original file name"
|
Firefox
|
Installer
|
robert.strong.bugs
|
VERI
|
FIXE
|
2008-09-02
|
| 329385
|
|
Attacker can force mouse drag
|
Core
|
DOM: Events
|
smaug
|
VERI
|
FIXE
|
2008-10-22
|
| 451037
|
|
document.loadBindingDocument() returns a document that does not have a script handling object
|
Core
|
Security
|
smaug
|
VERI
|
FIXE
|
2008-10-29
|
| 443288
|
|
Investigate CVE 2008-0016: crash [@ nsACString_internal::SetLength]
|
Core
|
XPCOM
|
smontagu
|
VERI
|
FIXE
|
2009-06-09
|
| 449703
|
|
[1.8 branch] XBM appears to draw uninitialized memory
|
Core
|
Graphics: ImageLib
|
vladimir
|
VERI
|
FIXE
|
2008-09-23
|