CVE-2010-0220 (retired)

Priority
Description
The nsObserverList::FillObserverArray function in
xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote
attackers to cause a denial of service (application crash) via a crafted
web site that triggers memory consumption and an accompanying Low Memory
alert dialog, and also triggers attempted removal of an observer from an
empty observers array.
Notes
 jdstrand> per upstream, xulrunner-1.9 not affected
Package
Upstream:needs-triage
Package
Upstream:not-affected
Package
Upstream:released (1.9.1.7)
Package
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:50:28 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)