Update Firefox to 17.0.8esr
Fixed in Firefox ESR 17.0.8
MFSA 2013-75 Local Java applets may read contents of local file system
MFSA 2013-73 Same-origin bypass with web workers and XMLHttpRequest
MFSA 2013-72 Wrong principal used for validating URI for some Javascript components
MFSA 2013-71 Further Privilege escalation through Mozilla Updater
MFSA 2013-69 CRMF requests allow for code execution and XSS attacks
MFSA 2013-68 Document URI misrepresentation and masquerading
MFSA 2013-66 Buffer overflow in Mozilla Maintenance Service and Mozilla Updater
MFSA 2013-63 Miscellaneous memory safety hazards (rv:23.0 / rv:17.0.8)
Fixed in Firefox ESR 17.0.7
MFSA 2013-59 XrayWrappers can be bypassed to run user defined methods in a privileged context
MFSA 2013-56 PreserveWrapper has inconsistent behavior
MFSA 2013-55 SVG filters can lead to information disclosure
MFSA 2013-54 Data in the body of XHR HEAD requests leads to CSRF attacks
MFSA 2013-53 Execution of unmapped memory through onreadystatechange event
MFSA 2013-51 Privileged content access and execution via XBL
MFSA 2013-50 Memory corruption found using Address Sanitizer
MFSA 2013-49 Miscellaneous memory safety hazards (rv:22.0 / rv:17.0.7)
Update Tor to 0.2.4.15-rc
Update HTTPS-Everywhere to 3.3.1
Update NoScript to 2.6.6.9
Improve build input fetching and authentication
Bug #9283: Update NoScript prefs for usability.
Bug #6152 (partial): Disable JSCtypes support at compile time
Update Torbutton to 1.6.1
Bug 8478: Change when window resize code fires to avoid rounding errors
Bug 9331: Hack a correct download URL for the next TBB release
Bug 9144: Change an aboutTor.dtd string so transifex will accept it
Update Tor-Launcher to 0.2.1-alpha
Bug #9128: Remove dependency on JSCtypes
Bug #9195: Disable download manager AV scanning (to prevent cloud
reporting+scanning of downloaded files)
