Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2012-0472

Published: 25 April 2012

The cairo-dwrite implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9, when certain Windows Vista and Windows 7 configurations are used, does not properly restrict font-rendering attempts, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.

Notes

AuthorNote
tyhicks
Windows only

Priority

Medium

Status

Package Release Status
seamonkey
Launchpad, Ubuntu, Debian
oneiric Not vulnerable

hardy Ignored
(end of life)
lucid Not vulnerable

natty Not vulnerable

upstream Not vulnerable

thunderbird
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Not vulnerable

natty Not vulnerable

oneiric Not vulnerable

upstream Not vulnerable

firefox
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Not vulnerable

natty Not vulnerable

oneiric Not vulnerable

upstream Not vulnerable

xulrunner-1.9.2
Launchpad, Ubuntu, Debian
hardy Ignored
(end of life)
lucid Not vulnerable

natty Not vulnerable

oneiric Does not exist

upstream Not vulnerable

xulrunner-2.0
Launchpad, Ubuntu, Debian
hardy Does not exist

lucid Does not exist

natty Ignored
(end of life)
oneiric Does not exist

upstream Not vulnerable