Mozilla 製品における複数の脆弱性に対するアップデート
http://jvn.jp/tr/TRTA08-087A
JVNRSS based Status Tracking Notes: Mozilla が提供するウェブブラウザやその他製品の複数の脆弱性に対応した最新バージョンが公開されました。JVNRSS Feasibility Study Teamjvn@jvn.jpTRTA08-087A2008-05-07T17:07+09:002008-04-07T05:02+09:002008-05-07T17:07+09:00Mozilla Releases Thunderbird 2.0.0.14
http://www.us-cert.gov/current/archive/2008/05/09/archive.html#mozilla_releases_thunderbird_2_0
US-CERT Current Activity リリース情報を報告
US-CERThttp://www.us-cert.gov/cas/techalerts/TA08-087A.html2008-05-09T09:11-04:002008-05-09T09:11-04:002008-05-09T09:11-04:00Mozilla Thunderbird 2.0.0.14 リリース
http://www.mozilla-japan.org/products/thunderbird/2.0.0.14/releasenotes/
Mozilla Japanhttp://www.us-cert.gov/cas/techalerts/TA08-087A.html2008-05-012008-05-012008-05-01Mozilla Updates for Multiple Vulnerabilities
http://www.us-cert.gov/cas/techalerts/TA08-087A.html
US-CERT メーリングリスト経由で Technical Cyber Security Alert 受信
US-CERTTA08-087Ahttp://www.us-cert.gov/cas/techalerts/TA08-087A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1233http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1234http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1235http://www.kb.cert.org/vuls/id/4665212008-03-27T16:34-04:002008-03-27T16:34-04:002008-03-27T16:34-04:00Mozilla Releases Firefox 2.0.0.13
http://www.us-cert.gov/current/archive/2008/03/26/archive.html#mozilla_releases_firefox_2_0
US-CERT Current Activity としてリリースを報告
US-CERThttp://www.us-cert.gov/cas/techalerts/TA08-087A.html2008-03-26T08:23-04:002008-03-26T08:23-04:002008-03-26T08:23-04:00Firefox 2.0.0.13 is out
http://isc.sans.org/diary.html?storyid=4196
SANS Internet Storm Centerhttp://www.us-cert.gov/cas/techalerts/TA08-087A.html2008-03-26T10:24+00:002008-03-26T10:24+00:002008-03-26T10:24+00:00不正な URL を用いた HTTP Referrer の偽装
http://www.mozilla-japan.org/security/announce/2008/mfsa2008-16.html
Mozilla Japanmfsa2008-16http://www.us-cert.gov/cas/techalerts/TA08-087A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-12382008-03-252008-03-252008-03-25メモリ破壊の形跡があるクラッシュ (rv:1.8.1.13)
http://www.mozilla-japan.org/security/announce/2008/mfsa2008-15.html
Mozilla Japanmfsa2008-15http://www.us-cert.gov/cas/techalerts/TA08-087A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1236http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-12372008-03-252008-03-252008-03-25JavaScript の特権昇格と任意のコード実行
http://www.mozilla-japan.org/security/announce/2008/mfsa2008-14.html
Mozilla Japanmfsa2008-14http://www.us-cert.gov/cas/techalerts/TA08-087A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1233http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1234http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-12352008-03-252008-03-252008-03-25SeaMonkey 1.1.9 リリース
http://www.mozilla.org/projects/seamonkey/releases/seamonkey1.1.9/
Mozillahttp://www.us-cert.gov/cas/techalerts/TA08-087A.html2008-03-252008-03-252008-03-25Mozilla Firefox 2.0.0.13 リリース
http://www.mozilla-japan.org/products/firefox/2.0.0.13/releasenotes/
Mozilla Japanhttp://www.us-cert.gov/cas/techalerts/TA08-087A.html2008-03-252008-03-252008-03-25XUL ポップアップ偽装の応用例 (タブを超えたポップアップ)
http://www.mozilla-japan.org/security/announce/2008/mfsa2008-19.html
Mozilla Japanmfsa2008-19http://www.us-cert.gov/cas/techalerts/TA08-087A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-12412008-03-252008-03-252008-03-25LiveConnect を通じた、任意のローカルポートへの Java ソケット接続
http://www.mozilla-japan.org/security/announce/2008/mfsa2008-18.html
Mozilla Japanmfsa2008-18http://www.us-cert.gov/cas/techalerts/TA08-087A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1195http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-12402008-03-252008-03-252008-03-25SSL クライアント認証に関するプライバシー問題
http://www.mozilla-japan.org/security/announce/2008/mfsa2008-17.html
Mozilla Japanmfsa2008-17http://www.us-cert.gov/cas/techalerts/TA08-087A.htmlhttp://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-48792008-03-252008-03-252008-03-25QroT01TNmrmSdDOBodmsaUkVeUk=DDvFvtsGmdZU8havRiwtWDhZ4SI=HldVAvDOl24VcUIhwWt9fqlVnAKb13kUI/Xwrt6gMHAbPcJjSAG5iC4MUjLWEHw4nEcsF8+Vjc/oGeHa8WoJNyK5YnhShapnBbyLmp9pSSomvDjDg4X5b7NItSxE3E1CKi93huA+CbOaU2DDLQcDT6mWaMzxRQr2DB3lWeI1f8g=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