CVE-2011-3654

Priority
Low
Description
The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0
does not properly handle links from SVG mpath elements to non-SVG elements,
which allows remote attackers to cause a denial of service (memory
corruption and application crash) or possibly execute arbitrary code via
unspecified vectors.
References
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):not-affected
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):not-affected (9.0~b2+build1-0ubuntu1)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected (9.0~b2+build1-0ubuntu1)
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 12.04 LTS (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:40:06 UTC (commit 9756)