CLD-702 Details

Other IDs this deficiency may be known by:

Basic Information:

Version Specific Information:

Details:

This is an upstream bug and security fix release that fixes the following
vulnerabilities:
	CVE-2019-11707: Type confusion in Array.pop
	CVE-2019-11708: sandbox escape using Prompt:Open
	CVE-2019-11703: Heap buffer overflow in icalparser.c
	CVE-2019-11704: Heap buffer overflow in icalvalue.c
	CVE-2019-11705: Stack buffer overflow in icalrecur.c
	CVE-2019-11706: Type confusion in icalproperty.c
	CVE-2019-9816: Type confusion with object groups and UnboxedObjects
	CVE-2019-11707: Type confusion in Array.pop
	CVE-2019-9817: Stealing of cross-domain images using canvas
	CVE-2019-9818: Use-after-free in crash generation server
	CVE-2019-9819: Compartment mismatch with fetch API
	CVE-2019-9820: Use-after-free of ChromeEventHandler by DocShell
	CVE-2019-11691: Use-after-free in XMLHttpRequest
	CVE-2019-11692: Use-after-free removing listeners in the event listener
		manager
	CVE-2019-11693: Buffer overflow in WebGL bufferdata on Linux
	CVE-2019-7317: Use-after-free in png_image_free of libpng library
	CVE-2019-9797: Cross-origin theft of images with createImageBitmap
	CVE-2018-18511: Cross-origin theft of images with
		ImageBitmapRenderingContext
	CVE-2019-11694: Uninitialized memory memory leakage in Windows sandbox
	CVE-2019-11698: Theft of user history data through drag and drop of
		hyperlinks to and from bookmarks
	CVE-2019-5798: Out-of-bounds read in Skia
	CVE-2019-9800: Memory safety bugs fixed in Firefox 67,
		Firefox ESR 60.7, and Thunderbird 60.7

For more information see:
	https://www.mozilla.org/en-US/security/advisories/mfsa2019-20/
	https://www.mozilla.org/en-US/security/advisories/mfsa2019-17/
	https://www.mozilla.org/en-US/security/advisories/mfsa2019-15/