Lifeasageek

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 25.0 Firefox ESR versions 17.x prior to 17.0.10 and 24.x prior to 24.1 Thunderbird versions prior to 24.1 Thunderbird ESR versions 17.x prior to 17.0.10 SeaMonkey versions prior to 2.22 **Description** The issue allows remote attackers to execute arbitrary code or cause a denial of service due to heap memory corruption. This can be achieved via vectors involving a state-change event during an update of the offline cache, specifically exploiting a use-after-free vulnerability in the nsDocLoader::doStopDocumentLoad function. **Recommendations** For Mozilla Firefox versions prior to 25.0, update to version 25.0 or later. For Firefox ESR versions 17.x prior to 17.0.10, update to version 17.0.10 or later. For Firefox ESR versions 24.x prior to 24.1, update to version 24.1 or later. For Thunderbird versions prior to 24.1, update to version 24.1 or later. For Thunderbird ESR versions 17.x prior to 17.0.10, update to version 17.0.10 or later. For SeaMonkey versions prior to 2.22, update to version 2.22 or later.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 30.0.1599.66 **Description** A double free vulnerability exists in the ResourceFetcher::didLoadResource function in the resource loader in Blink. This issue can be triggered by remote attackers through certain callback processing during the reporting of a resource entry, potentially causing a denial of service or having other unspecified impacts. **Recommendations** For versions prior to 30.0.1599.66, update to version 30.0.1599.66 or later to resolve the issue.