CVE-2012-0473
Priority
Low
Description
The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x
through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0,
Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 calls the
FindMaxElementInSubArray function with incorrect template arguments, which
allows remote attackers to obtain sensitive information from video memory
via a crafted WebGL.drawElements call.
through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0,
Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 calls the
FindMaxElementInSubArray function with incorrect template arguments, which
allows remote attackers to obtain sensitive information from video memory
via a crafted WebGL.drawElements call.
References
Package
| Upstream: | released (12.0.1) |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored (reached end-of-life) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (12.0.1+build1-0ubuntu0.10.04.1) |
| Ubuntu 11.10 (Oneiric Ocelot): | released (12.0.1+build1-0ubuntu0.11.10.1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | released (12.0.1+build1-0ubuntu0.12.04.1) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (15.0+build1-0ubuntu1) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (15.0+build1-0ubuntu1) |
| Ubuntu 13.10 (Saucy Salamander): | not-affected (15.0+build1-0ubuntu1) |
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | DNE |
| Ubuntu 10.04 LTS (Lucid Lynx): | DNE |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored (reached end-of-life) |
| Ubuntu 10.04 LTS (Lucid Lynx): | released (12.0+build1-0ubuntu0.10.04.1) |
| Ubuntu 11.10 (Oneiric Ocelot): | released (12.0+build1-0ubuntu0.11.10.1) |
| Ubuntu 12.04 LTS (Precise Pangolin): | released (12.0+build1-0ubuntu0.12.04.1) |
| Ubuntu 12.10 (Quantal Quetzal): | not-affected (12.0+build1-0ubuntu0.12.04.1) |
| Ubuntu 13.04 (Raring Ringtail): | not-affected (12.0+build1-0ubuntu0.12.04.1) |
| Ubuntu 13.10 (Saucy Salamander): | not-affected (12.0+build1-0ubuntu0.12.04.1) |
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored (reached end-of-life) |
| Ubuntu 10.04 LTS (Lucid Lynx): | needs-triage |
| Ubuntu 11.10 (Oneiric Ocelot): | ignored (reached end-of-life) |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored (reached end-of-life) |
| Ubuntu 10.04 LTS (Lucid Lynx): | ignored (see notes) |
| Ubuntu 11.10 (Oneiric Ocelot): | DNE |
| Ubuntu 12.04 LTS (Precise Pangolin): | DNE |
| Ubuntu 12.10 (Quantal Quetzal): | DNE |
| Ubuntu 13.04 (Raring Ringtail): | DNE |
| Ubuntu 13.10 (Saucy Salamander): | DNE |