PublicDateAtUSN: 2011-09-30
Candidate: CVE-2011-3002
PublicDate: 2011-09-29 00:55:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3002
 https://ubuntu.com/security/notices/USN-1222-1
Description:
 Almost Native Graphics Layer Engine (ANGLE), as used in Mozilla Firefox
 before 7.0 and SeaMonkey before 2.4, does not validate the return value of
 a GrowAtomTable function call, which allows remote attackers to cause a
 denial of service (application crash) or possibly execute arbitrary code
 via vectors that trigger a memory-allocation error and a resulting buffer
 overflow.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: micahg
CVSS: 

Patches_firefox:
upstream_firefox: released (7.0)
hardy_firefox: ignored (uses system xulrunner)
lucid_firefox: not-affected
maverick_firefox: not-affected (3.6.23+build1+nobinonly-0ubuntu0.10.10.1)
natty_firefox: released (7.0.1+build1+nobinonly-0ubuntu0.11.04.1)
devel_firefox: released (7.0.1+build1+nobinonly-0ubuntu1)