CVE-2013-5607

Priority
Description
Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape
Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1,
Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey
before 2.22.1, allows remote attackers to cause a denial of service
(application crash) or possibly have unspecified other impact via a crafted
X.509 certificate, a related issue to CVE-2013-1741.
Assigned-to
mdeslaur
Notes
Package
Upstream:released (25.0.1)
Package
Source: nspr (LP Ubuntu Debian)
Upstream:released (4.10.2)
Patches:
Upstream:https://hg.mozilla.org/projects/nspr/rev/4df6bc35be64
Package
Upstream:released (24.1.1)
More Information

Updated: 2019-12-05 21:06:00 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)