CVE-2008-0304
Published: 29 February 2008
Heap-based buffer overflow in Mozilla Thunderbird before 2.0.0.12 and SeaMonkey before 1.1.8 might allow remote attackers to execute arbitrary code via a crafted external-body MIME type in an e-mail message, related to an incorrect memory allocation during message preview.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
icedove Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| edgy |
Does not exist
|
|
| feisty |
Does not exist
|
|
| gutsy |
Does not exist
|
|
| upstream |
Needs triage
|
|
|
mozilla-thunderbird Launchpad, Ubuntu, Debian |
dapper |
Released
(1.5.0.13+1.5.0.15~prepatch080227-0ubuntu0.6.06.0)
|
| edgy |
Released
(1.5.0.13+1.5.0.15~prepatch080227-0ubuntu0.6.10.0)
|
|
| feisty |
Released
(1.5.0.13+1.5.0.15~prepatch080227-0ubuntu0.7.04.0)
|
|
| gutsy |
Does not exist
|
|
| upstream |
Needs triage
|
|
|
thunderbird Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
| edgy |
Does not exist
|
|
| feisty |
Does not exist
|
|
| gutsy |
Released
(2.0.0.12+nobinonly-0ubuntu0.7.10.0)
|
|
| upstream |
Not vulnerable
(2.0.0.12)
|