Candidate: CVE-2011-2605
PublicDate: 2011-06-30 16:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2605
 http://www.mozilla.org/security/announce/2011/mfsa2011-19.html
Description:
 CRLF injection vulnerability in the
 nsCookieService::SetCookieStringInternal function in
 netwerk/cookie/nsCookieService.cpp in Mozilla Firefox before 3.6.18 and 4.x
 through 4.0.1, and Thunderbird before 3.1.11, allows remote attackers to
 bypass intended access restrictions via a string containing a \n (newline)
 character, which is not properly handled in a JavaScript "document.cookie
 =" expression, a different vulnerability than CVE-2011-2374.
Ubuntu-Description:
Notes:
Bugs:
 https://bugzilla.mozilla.org/show_bug.cgi?id=643051
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_firefox:
upstream_firefox: released (3.6.18)
hardy_firefox: ignored (uses system xulrunner)
lucid_firefox: released (3.6.23+build1+nobinonly-0ubuntu0.10.04.1)
maverick_firefox: released (3.6.23+build1+nobinonly-0ubuntu0.10.10.1)
natty_firefox: released (7.0.1+build1+nobinonly-0ubuntu0.11.04.1)
oneiric_firefox: not-affected (7.0.1+build1+nobinonly-0ubuntu2)
precise_firefox: not-affected
quantal_firefox: not-affected
raring_firefox: not-affected
saucy_firefox: not-affected
devel_firefox: not-affected


Patches_seamonkey:
upstream_seamonkey: needs-triage
hardy_seamonkey: ignored (reached end-of-life)
lucid_seamonkey: ignored (reached end-of-life)
maverick_seamonkey: ignored (reached end-of-life)
natty_seamonkey: ignored (reached end-of-life)
oneiric_seamonkey: not-affected (2.4.1-0ubuntu1)
precise_seamonkey: DNE
quantal_seamonkey: DNE
raring_seamonkey: DNE
saucy_seamonkey: DNE
devel_seamonkey: DNE


Patches_thunderbird:
upstream_thunderbird: released (3.1.11)
hardy_thunderbird: ignored (reached end-of-life)
lucid_thunderbird: released (3.1.15+build1+nobinonly-0ubuntu0.10.04.1)
maverick_thunderbird: released (3.1.15+build1+nobinonly-0ubuntu0.10.10.1)
natty_thunderbird: released (3.1.15+build1+nobinonly-0ubuntu0.11.04.1)
oneiric_thunderbird: not-affected (7.0.1+build1+nobinonly-0ubuntu1)
precise_thunderbird: not-affected
quantal_thunderbird: not-affected
raring_thunderbird: not-affected
saucy_thunderbird: not-affected
devel_thunderbird: not-affected