VDB
GCVE-110-MAGEIA-2015-131
GCVE-110-MAGEIA-2015-131
Advisory Published
Updated firefox and thunderbird packages fix security vulnerabilities:
Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox or Thunderbird to crash
or, potentially, execute arbitrary code with the privileges of the user
running it (CVE-2015-0801, CVE-2015-0813, CVE-2015-0815).
A flaw was found in the Beacon interface implementation in Firefox and
Thunderbird. A web page containing malicious content could allow a remote
attacker to conduct a Cross-Site Request Forgery (CSRF) attack
(CVE-2015-0807).
A flaw was found in the way documents were loaded via resource URLs in, for
example, Firefox's PDF.js PDF file viewer. An attacker could use this flaw
to bypass certain restrictions and under certain conditions even execute
arbitrary code with the privileges of the user running Firefox or Thunderbird
(CVE-2015-0816)
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | rootcerts | 0 (affected), 20150326.00-1.mga4 (unaffected), 0 (affected), 20150326.00-1.mga4 (unaffected) | — |
| Mageia | thunderbird | 31.6.0-1.mga4 (unaffected), 0 (affected), 0 (affected), 31.6.0-1.mga4 (unaffected) | — |
| Mageia | firefox-l10n | 31.6.0-1.mga4 (unaffected), 0 (affected), 0 (affected), 31.6.0-1.mga4 (unaffected) | — |
| Mageia | thunderbird-l10n | 0 (affected), 31.6.0-1.mga4 (unaffected), 0 (affected), 31.6.0-1.mga4 (unaffected) | — |
| Mageia | firefox | 0 (affected), 31.6.0-1.mga4 (unaffected), 0 (affected), 31.6.0-1.mga4 (unaffected) | — |
| Mageia | nss | 0 (affected), 3.18.0-1.1.mga4 (unaffected), 0 (affected), 3.18.0-1.1.mga4 (unaffected) | — |
| Mageia | dslib | 3.0-8.2.mga5 (unaffected), 0 (affected) | — |
References
Browse GCVE Records
73,196 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.