PublicDateAtUSN: 2010-07-23 Candidate: CVE-2010-1209 PublicDate: 2010-07-30 20:30:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1209 https://ubuntu.com/security/notices/USN-930-4 https://ubuntu.com/security/notices/USN-957-1 Description: Use-after-free vulnerability in the NodeIterator implementation in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via a crafted NodeFilter that detaches DOM nodes, related to the NodeIterator interface and a javascript callback. Ubuntu-Description: Notes: jdstrand> CVEs in Firefox are tracked in the xulrunner source packages for builds that use the system xulrunner, and firefox source packages for those that use a static build xulrunner (1.8.0): firefox (1.5) - Ubuntu 6.06 LTS (system xul) xulrunner (1.8.1): firefox (2.0) - Ubuntu 6.10 - 8.04 LTS (system xul) xulrunner-1.9: (ignored) reverse dependencies no longer process web content xulrunner-1.9.1: (ignored) reverese dependencies no longer process web content xulrunner-1.9.2: system xul for reverese dependencies that process web content firefox: Ubuntu 6.06 LTS (static build) firefox: Ubuntu 10.04 LTS and higher (static build of 3.6.x or higher) firefox-3.0: Ubuntu 8.04 LTS, 9.04 (static build of 3.6.x) firefox-3.5: Ubuntu 9.04 (ignored, uses system xul 1.9.1. Use 3.0 instead) firefox-3.5: Ubuntu 9.10 (static build of 3.6.x) Bugs: Priority: medium Discovered-by: Assigned-to: CVSS: Patches_firefox: upstream_firefox: needs-triage dapper_firefox: ignored (reached end-of-life) hardy_firefox: ignored (uses system xulrunner) jaunty_firefox: DNE karmic_firefox: DNE lucid_firefox: released (3.6.7+build2+nobinonly-0ubuntu0.10.04.1) devel_firefox: released (3.6.7+build2+nobinonly-0ubuntu1) Patches_firefox-3.0: upstream_firefox-3.0: needs-triage (Ubuntu source uses 3.6.x) dapper_firefox-3.0: DNE hardy_firefox-3.0: released (3.6.7+build2+nobinonly-0ubuntu0.8.04.1) jaunty_firefox-3.0: released (3.6.7+build2+nobinonly-0ubuntu0.9.04.1) karmic_firefox-3.0: DNE lucid_firefox-3.0: DNE devel_firefox-3.0: DNE Patches_firefox-3.5: upstream_firefox-3.5: needs-triage (Ubuntu source uses 3.6.x) dapper_firefox-3.5: DNE hardy_firefox-3.5: DNE jaunty_firefox-3.5: ignored karmic_firefox-3.5: released (3.6.7+build2+nobinonly-0ubuntu0.9.10.1) lucid_firefox-3.5: DNE devel_firefox-3.5: DNE Patches_xulrunner-1.9.2: upstream_xulrunner-1.9.2: needs-triage dapper_xulrunner-1.9.2: DNE hardy_xulrunner-1.9.2: released (1.9.2.7+build2+nobinonly-0ubuntu0.8.04.2) jaunty_xulrunner-1.9.2: released (1.9.2.7+build2+nobinonly-0ubuntu0.9.04.2) karmic_xulrunner-1.9.2: released (1.9.2.7+build2+nobinonly-0ubuntu0.9.10.2) lucid_xulrunner-1.9.2: released (1.9.2.7+build2+nobinonly-0ubuntu0.10.04.1) devel_xulrunner-1.9.2: released (1.9.2.7+build2+nobinonly-0ubuntu1)