Description
update to Firefox 22.0 and Thunderbird 17.0.7 including the
following security fixes
* MFSA 2013-49 Miscellaneous memory safety hazards
* MFSA 2013-50 Memory corruption found using Address
Sanitizer
* MFSA 2013-51 Privileged content access and execution via
XBL
* MFSA 2013-52 Arbitrary code execution within Profiler
* MFSA 2013-53 Execution of unmapped memory through
onreadystatechange event
* MFSA 2013-54 Data in the body of XHR HEAD requests leads
to CSRF attacks
* MFSA 2013-55 SVG filters can lead to information
disclosure
* MFSA 2013-56 PreserveWrapper has inconsistent behavior
* MFSA 2013-57 Sandbox restrictions not applied to nested
frame elements
* MFSA 2013-58 X-Frame-Options ignored when using server
push with multi-part responses
* MFSA 2013-59 XrayWrappers can be bypassed to run user
defined methods in a privileged context