Comment 2 for bug 276437

Here are all the links to the MFSAs giving links to upstream bugzilla.

MFSA 2008-46 Heap overflow when canceling newsgroup message
http://www.mozilla.org/security/announce/2008/mfsa2008-46.html

MFSA 2008-45 XBM image uninitialized memory reading
http://www.mozilla.org/security/announce/2008/mfsa2008-45.html

MFSA 2008-44 resource: traversal vulnerabilities
http://www.mozilla.org/security/announce/2008/mfsa2008-44.html

MFSA 2008-43 BOM characters stripped from JavaScript before execution
http://www.mozilla.org/security/announce/2008/mfsa2008-43.html

MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17)
http://www.mozilla.org/security/announce/2008/mfsa2008-42.html

MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution
http://www.mozilla.org/security/announce/2008/mfsa2008-41.html

MFSA 2008-40 Forced mouse drag
http://www.mozilla.org/security/announce/2008/mfsa2008-40.html

MFSA 2008-38 nsXMLDocument::OnChannelRedirect() same-origin violation
http://www.mozilla.org/security/announce/2008/mfsa2008-38.html

MFSA 2008-37 UTF-8 URL stack buffer overflow
http://www.mozilla.org/security/announce/2008/mfsa2008-37.html