firefox is vulnerable to denial of service (DoS) attacks. The vulnerability exists through multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
lists.opensuse.org/opensuse-security-announce/2014-03/msg00016.html
lists.opensuse.org/opensuse-security-announce/2014-03/msg00017.html
lists.opensuse.org/opensuse-security-announce/2014-03/msg00022.html
lists.opensuse.org/opensuse-security-announce/2014-04/msg00016.html
rhn.redhat.com/errata/RHSA-2014-0310.html
rhn.redhat.com/errata/RHSA-2014-0316.html
www.debian.org/security/2014/dsa-2881
www.debian.org/security/2014/dsa-2911
www.mozilla.org/security/announce/2014/mfsa2014-15.html
www.mozilla.org/security/known-vulnerabilities/firefoxESR.html
www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
www.securityfocus.com/bid/66412
www.ubuntu.com/usn/USN-2151-1
access.redhat.com/security/updates/classification/#critical
bugzilla.mozilla.org/show_bug.cgi?id=896268
bugzilla.mozilla.org/show_bug.cgi?id=958867
bugzilla.mozilla.org/show_bug.cgi?id=960145
bugzilla.mozilla.org/show_bug.cgi?id=963974
bugzilla.mozilla.org/show_bug.cgi?id=965982
bugzilla.mozilla.org/show_bug.cgi?id=967341
bugzilla.mozilla.org/show_bug.cgi?id=977538
rhn.redhat.com/errata/RHSA-2014-0310.html
security.gentoo.org/glsa/201504-01