CVE-2010-0220

Priority
Description
The nsObserverList::FillObserverArray function in
xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote
attackers to cause a denial of service (application crash) via a crafted
web site that triggers memory consumption and an accompanying Low Memory
alert dialog, and also triggers attempted removal of an observer from an
empty observers array.
Notes
 jdstrand> per upstream, xulrunner-1.9 not affected
Package
Upstream:needs-triage
Package
Upstream:not-affected
Package
Upstream:released (1.9.1.7)
Package
Upstream:needs-triage
More Information

Updated: 2018-10-31 20:53:30 UTC (commit cfa7cf69d76449ccff972ac22f40976a08d908c2)