CVE-2012-0452

Priority
Description
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1,
Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers
to cause a denial of service (application crash) or possibly execute
arbitrary code via vectors that trigger failure of an
nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the
cycle collector's access to a hash table containing a stale XBL binding.
Notes
 micahg> did not affect Firefox 9, Thunderbird 9, Seamonkey 2.6 or earlier
Assigned-to
micahg
Package
Upstream:released (10.0.1)
Ubuntu 12.04 ESM (Precise Pangolin):released (11.0~b2+build1-0ubuntu1)
Package
Upstream:released (2.7.1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Package
Upstream:released (10.0.1)
Ubuntu 12.04 ESM (Precise Pangolin):not-affected (13.0~b4+build1-0ubuntu1)
Package
Upstream:not-affected
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Package
Upstream:not-affected
Ubuntu 12.04 ESM (Precise Pangolin):DNE
More Information

Updated: 2019-01-14 22:01:23 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)