CVE-2012-3972

Priority
Medium
Description
The format-number functionality in the XSLT implementation in Mozilla
Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before
15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows
remote attackers to obtain sensitive information via unspecified vectors
that trigger a heap-based buffer over-read.
References
Package
Upstream:released (15.0)
Ubuntu 14.04 LTS (Trusty Tahr):released (15.0+build1-0ubuntu1)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:released (15.0)
Ubuntu 14.04 LTS (Trusty Tahr):released (15.0+build1-0ubuntu1)
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
Package
Upstream:needs-triage
Ubuntu 14.04 LTS (Trusty Tahr):DNE
More Information

Updated: 2017-08-11 23:49:31 UTC (commit 13081)