CVE-2010-3179 (retired)

Priority
Description
Stack-based buffer overflow in the text-rendering functionality in Mozilla
Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and
3.1.x before 3.1.5, and SeaMonkey before 2.0.9 allows remote attackers to
execute arbitrary code or cause a denial of service (memory corruption and
application crash) via a long argument to the document.write method.
Notes
 jdstrand> CVEs in Firefox are tracked in the xulrunner source packages for
  builds that use the system xulrunner, and firefox source packages for those
  that use a static build
  xulrunner (1.8.0): firefox (1.5) - Ubuntu 6.06 LTS (system xul)
  xulrunner (1.8.1): firefox (2.0) - Ubuntu 6.10 - 8.04 LTS (system xul)
  xulrunner-1.9: (ignored) reverse dependencies no longer process web content
  xulrunner-1.9.1: (ignored) reverese dependencies no longer process web content
  xulrunner-1.9.2: system xul for reverese dependencies that process web content
  firefox: Ubuntu 6.06 LTS (static build)
  firefox: Ubuntu 10.04 LTS and higher (static build of 3.6.x or higher)
  firefox-3.0: Ubuntu 8.04 LTS, 9.04 (static build of 3.6.x)
  firefox-3.5: Ubuntu 9.04 (ignored, uses system xul 1.9.1. Use 3.0 instead)
  firefox-3.5: Ubuntu 9.10 (static build of 3.6.x)
Assigned-to
chriscoulson
Package
Upstream:released (3.6.11)
Package
Upstream:needs-triage (Ubuntu source uses 3.6.x)
Package
Upstream:needs-triage (Ubuntu source uses 3.6.x)
Package
Upstream:released (2.0.9)
Package
Priority: Low
Upstream:released (3.0.9, 3.1.5)
Package
Upstream:released (1.9.1.14)
Package
Upstream:released (1.9.2.11)
More Information

Updated: 2019-03-26 11:52:51 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)