Sunfish

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 26.0 SeaMonkey versions prior to 2.23 **Description** The issue is related to multiple integer overflows in the binary-search implementation in SpiderMonkey, which might allow remote attackers to cause a denial of service or possibly have other unspecified impacts via crafted JavaScript code. **Recommendations** For Mozilla Firefox versions prior to 26.0, update to version 26.0 or later. For SeaMonkey versions prior to 2.23, update to version 2.23 or later.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 24.0 Thunderbird versions prior to 24.0 SeaMonkey versions prior to 2.21 **Description** The issue is related to the IonMonkey JavaScript engine in Mozilla products. When Valgrind mode is used, the engine does not properly initialize memory. This makes it easier for remote attackers to obtain sensitive information via unspecified vectors. **Recommendations** For Mozilla Firefox versions prior to 24.0, update to version 24.0 or later. For Thunderbird versions prior to 24.0, update to version 24.0 or later. For SeaMonkey versions prior to 2.21, update to version 2.21 or later.