Candidate: CVE-2011-2998
PublicDate: 2011-09-30 10:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2998
Description:
 Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote
 attackers to cause a denial of service (application crash) or possibly
 execute arbitrary code via JavaScript code containing a large RegExp
 expression.
Ubuntu-Description:
Notes:
Bugs:
 https://bugzilla.mozilla.org/show_bug.cgi?id=684815
Priority: low
Discovered-by:
Assigned-to: micahg
CVSS: 

Patches_firefox:
upstream_firefox: needs-triage
hardy_firefox: ignored (reached end-of-life)
lucid_firefox: released (3.6.23+build1+nobinonly-0ubuntu0.10.04.1)
maverick_firefox: released (3.6.23+build1+nobinonly-0ubuntu0.10.04.1)
natty_firefox: not-affected (7.0.1+build1+nobinonly-0ubuntu0.11.04.1)
devel_firefox: not-affected (7.0.1+build1+nobinonly-0ubuntu1)

Patches_xulrunner-1.9.2:
upstream_xulrunner-1.9.2: needs-triage
hardy_xulrunner-1.9.2: ignored (reached end-of-life)
lucid_xulrunner-1.9.2: ignored (does not process internet content)
maverick_xulrunner-1.9.2: ignored (does not process internet content)
natty_xulrunner-1.9.2: ignored (does not process internet content)
devel_xulrunner-1.9.2: DNE

Patches_xulrunner-2.0:
upstream_xulrunner-2.0: needs-triage
hardy_xulrunner-2.0: DNE
lucid_xulrunner-2.0: DNE
maverick_xulrunner-2.0: DNE
natty_xulrunner-2.0: ignored (does not process internet content)
devel_xulrunner-2.0: DNE