Benoit Jacob

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 20.0 Firefox ESR 17.x versions prior to 17.0.5 Thunderbird versions prior to 17.0.5 Thunderbird ESR 17.x versions prior to 17.0.5 SeaMonkey versions prior to 2.17 **Description** The WebGL subsystem does not properly interact with Mesa drivers on Linux, allowing remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors. **Recommendations** For Mozilla Firefox versions prior to 20.0, update to version 20.0 or later. For Firefox ESR 17.x versions prior to 17.0.5, update to version 17.0.5 or later. For Thunderbird versions prior to 17.0.5, update to version 17.0.5 or later. For Thunderbird ESR 17.x versions prior to 17.0.5, update to version 17.0.5 or later. For SeaMonkey versions prior to 2.17, update to version 2.17 or later.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 4.3 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted web site. **Recommendations** For Apple iOS versions prior to 4.3, update to version 4.3 or later to resolve the issue.