View at Official suse advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2014-1489 severity critical: SUSE including 69 source package names (MozillaFirefox-140.2.0-160000.1.2, MozillaFirefox-24.3.0esr-0.4.2.1, …), 139 product×package rows across 32 product lines (SUSE Linux Enterprise Desktop 11 SP3, SUSE Linux Enterprise Desktop 12, … (32 product lines)): Fixed 139.
Mozilla Firefox before 27.0 does not properly restrict access to about:home buttons by script on other pages, which allows user-assisted remote attackers to cause a denial of service (session restore) via a crafted web site.