CVE-2013-0766 in Ubuntu

CVE-2013-0766

Priority

Description

Use-after-free vulnerability in the ~nsHTMLEditRules implementation in
Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x
before 17.0.1, Thunderbird before 17.0.2, Thunderbird ESR 10.x before
10.0.12 and 17.x before 17.0.1, and SeaMonkey before 2.15 allows remote
attackers to execute arbitrary code or cause a denial of service (heap
memory corruption) via unspecified vectors.

References

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0766
http://www.mozilla.org/security/announce/
https://usn.ubuntu.com/usn/usn-1681-1
https://usn.ubuntu.com/usn/usn-1681-2

Bugs

https://launchpad.net/bugs/1096387

Notes

Package

Source: firefox (LP Ubuntu Debian)

Upstream:

released (18.0)

Package

Source: seamonkey (LP Ubuntu Debian)

Upstream: