| Errata ID | 232 |
|---|---|
| Date | 2014-10-30 |
| Source package | firefox-en |
| Fixed in version | 31.2.0esr-1.43.201410281620 |
| Description | Several vulnerabilities have been fixed with the update to Firefox ESR 31.2.0: * Memory corruption in the browser engine (CVE-2014-1574) * Buffer overflow in CSS parsing (CVE-2014-1576) * Memory corruption in Web Audio (CVE-2014-1577) * Out-of-bounds write in WebM playback (CVE-2014-1578) * Use-after-free in text rendering (CVE-2014-1581) * Information leak in WebRTC (CVE-2014-1585, CVE-2014-1586) * Bypass of the same-origin policy (CVE-2014-1583) |
| Additional notes | This update consists of two updates for firefox-en and firefox-de. |
| CVE ID | CVE-2014-1574 CVE-2014-1576 CVE-2014-1577 CVE-2014-1578 CVE-2014-1581 CVE-2014-1585 CVE-2014-1586 CVE-2014-1583 |
| UCS Bug number | #36175 |
