VDB
MGASA-2014-0260
MGASA-2014-0260
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Updated firefox and thunderbird packages fix security vulnerabilities: Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox or Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running it (CVE-2014-1533, CVE-2014-1538, CVE-2014-1541).
Risk Scores
CVSS v4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mageia:3 | thunderbird-l10n | 0, 0 |
| Mageia:3 | firefox | 0, 0 |
| Mageia:3 | nspr | 0, 0 |
| Mageia:3 | nss | 0, 0 |
| Mageia:4 | nspr | 0, 0 |
| Mageia:4 | firefox | 0, 0 |
| Mageia:4 | thunderbird | 0, 0 |
| Mageia:4 | thunderbird-l10n | 0, 0 |
| Mageia:3 | rootcerts | 0, 0 |
| Mageia:3 | thunderbird | 0, 0 |
| Mageia:4 | rootcerts | 0, 0 |
| Mageia:4 | nss | 0, 0 |
| Mageia:3 | firefox-l10n | 0, 0 |
| Mageia:4 | firefox-l10n | 0, 0 |
Timeline
- Jun 11, 2014 CVE Published
- Apr 16, 2026 CVE Updated
References
- https://advisories.mageia.org/MGASA-2014-0260.html advisory
- http://www.mozilla.org/security/announce/2014/mfsa2014-48.html url
- http://www.mozilla.org/security/announce/2014/mfsa2014-49.html url
- http://www.mozilla.org/security/announce/2014/mfsa2014-52.html url
- http://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html url
- http://www.mozilla.org/security/known-vulnerabilities/thunderbird.html url
- https://rhn.redhat.com/errata/RHSA-2014-0741.html url
- https://rhn.redhat.com/errata/RHSA-2014-0742.html url
- https://bugs.mageia.org/show_bug.cgi?id=13515 report