Ubuntu Security Notice 921-1 – Martijn Wargers, Josh Soref, Jesse Ruderman, and Ehsan Akhgari discovered flaws in the browser engine of Firefox. It was discovered that Firefox could be made to access previously freed memory. Paul Stone discovered that Firefox could be made to change a mouse click into a drag and drop event. It was discovered that the XMLHttpRequestSpy module as used by the Firebug add-on could be used to escalate privileges within the browser. Henry Sudhof discovered that an image tag could be used as a redirect to a mailto: URL to launch an external mail handler. Wladimir Palant discovered that Firefox did not always perform security checks on XML content.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/88231/USN-921-1.txt
Source: https://packetstormsecurity.com/files/88231/Ubuntu-Security-Notice-921-1.html