Gentoo Linux Security Advisory 200708-9
https://packetstormsecurity.com/files/58588/glsa-200708-09.txt
https://packetstormsecurity.com/files/58588/glsa-200708-09.txthttps://packetstormsecurity.com/files/58588/Gentoo-Linux-Security-Advisory-200708-9.htmlWed, 15 Aug 2007 04:39:21 GMTGentoo Linux Security Advisory GLSA 200708-09 - Mozilla developers fixed several bugs, including an issue with modifying XPCNativeWrappers, a problem with event handlers executing elements outside of the document, and a cross-site scripting (XSS) vulnerability. They also fixed a problem with promiscuous IFRAME access and an XULRunner URL spoofing issue with the wyciwyg:// URI and HTTP 302 redirects. Denials of Service involving corrupted memory were fixed in the browser engine and the JavaScript engine. Finally, another XSS vulnerability caused by a regression in the CVE-2007-3089 patch was fixed. Versions less than 2.0.0.6 are affected.