CVE-2011-2983 (retired)

Priority
Description
Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12,
SeaMonkey 1.x and 2.x, and possibly other products does not properly handle
the RegExp.input property, which allows remote attackers to bypass the Same
Origin Policy and read data from a different domain via a crafted web site,
possibly related to a use-after-free.
Package
Upstream:released (3.6.20)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Package
Upstream:needs-triage (Ubuntu source uses 3.6.x)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage (Ubuntu source uses 3.6.x)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (3.1.12)
Ubuntu 14.04 LTS (Trusty Tahr):not-affected
Package
Upstream:released (1.9.2.20)
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:not-affected
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2019-03-26 11:57:47 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)