CVE-2010-3778 in Ubuntu

CVE-2010-3778

Priority

Medium

Description

Unspecified vulnerability in Mozilla Firefox 3.5.x before 3.5.16,
Thunderbird before 3.0.11, and SeaMonkey before 2.0.11 allows remote
attackers to cause a denial of service (memory corruption and application
crash) or possibly execute arbitrary code via unknown vectors.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3778
http://www.ubuntu.com/usn/usn-1020-1
http://www.ubuntu.com/usn/usn-1019-1

Notes

jdstrand> Ubuntu 11.04 (Natty Narwhal) has 4.0b7. Fixes will be in 4.0b8.

Assigned-to

chriscoulson

Package

Source: firefox-3.0 (LP Ubuntu Debian)

Upstream:	needs-triage (Ubuntu source uses 3.6.x)
Ubuntu 8.04 LTS (Hardy Heron):	released (3.6.13+build3+nobinonly-0ubuntu0.8.04.1)
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 11.04 (Natty Narwhal):	DNE
Ubuntu 11.10 (Oneiric Ocelot):	DNE

Package

Source: firefox (LP Ubuntu Debian)

Upstream:	released (3.6.13)
Ubuntu 8.04 LTS (Hardy Heron):	ignored (uses system xulrunner)
Ubuntu 10.04 LTS (Lucid Lynx):	released (3.6.13+build3+nobinonly-0ubuntu0.10.04.1)
Ubuntu 11.04 (Natty Narwhal):	released (4.0~b8+nobinonly-0ubuntu3)
Ubuntu 11.10 (Oneiric Ocelot):	released (4.0~b8+nobinonly-0ubuntu3)

Package

Source: firefox-3.5 (LP Ubuntu Debian)

Upstream:	needs-triage (Ubuntu source uses 3.6.x)
Ubuntu 8.04 LTS (Hardy Heron):	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 11.04 (Natty Narwhal):	DNE
Ubuntu 11.10 (Oneiric Ocelot):	DNE

Package

Source: seamonkey (LP Ubuntu Debian)

Upstream:	released (2.0.11)
Ubuntu 8.04 LTS (Hardy Heron):	released (2.0.11+build1+nobinonly-0ubuntu0.8.04.1)
Ubuntu 10.04 LTS (Lucid Lynx):	released (2.0.11+build1+nobinonly-0ubuntu0.10.04.1)
Ubuntu 11.04 (Natty Narwhal):	released (2.0.11+build1+nobinonly-0ubuntu1)
Ubuntu 11.10 (Oneiric Ocelot):	released (2.0.11+build1+nobinonly-0ubuntu1)

Package

Source: thunderbird (LP Ubuntu Debian)

Upstream:	released (3.1.7)
Ubuntu 8.04 LTS (Hardy Heron):	ignored (reached end-of-life)
Ubuntu 10.04 LTS (Lucid Lynx):	released (3.1.7+build3+nobinonly-0ubuntu0.10.04.1)
Ubuntu 11.04 (Natty Narwhal):	released (3.1.7+build3+nobinonly-0ubuntu2)
Ubuntu 11.10 (Oneiric Ocelot):	released (3.1.7+build3+nobinonly-0ubuntu2)

Package

Source: thunderbird-locales (LP Ubuntu Debian)

Upstream:	not-affected
Ubuntu 8.04 LTS (Hardy Heron):	not-affected
Ubuntu 10.04 LTS (Lucid Lynx):	not-affected
Ubuntu 11.04 (Natty Narwhal):	not-affected
Ubuntu 11.10 (Oneiric Ocelot):	not-affected

Package

Source: xulrunner-1.9.1 (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 8.04 LTS (Hardy Heron):	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 11.04 (Natty Narwhal):	DNE
Ubuntu 11.10 (Oneiric Ocelot):	DNE

Package

Source: xulrunner-1.9.2 (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 8.04 LTS (Hardy Heron):	released (1.9.2.13+build3+nobinonly-0ubuntu0.8.04.1)
Ubuntu 10.04 LTS (Lucid Lynx):	released (1.9.2.13+build3+nobinonly-0ubuntu0.10.04.1)
Ubuntu 11.04 (Natty Narwhal):	released (1.9.2.13+build3+nobinonly-0ubuntu1)
Ubuntu 11.10 (Oneiric Ocelot):	released (1.9.2.13+build3+nobinonly-0ubuntu1)

More Information

Updated: 2012-06-01 15:21:28 UTC (commit 5347)