CVE-2013-0754
Publication date 9 January 2013
Last updated 24 July 2024
Ubuntu priority
Use-after-free vulnerability in the ListenerManager implementation in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code via vectors involving the triggering of garbage collection after memory allocation for listener objects.
Status
Package | Ubuntu Release | Status |
---|---|---|
firefox | 13.10 saucy |
Fixed 19.0~b1+build2-0ubuntu1
|
13.04 raring |
Fixed 19.0~b1+build2-0ubuntu1
|
|
12.10 quantal |
Fixed 18.0+build1-0ubuntu0.12.10.3
|
|
12.04 LTS precise |
Fixed 18.0+build1-0ubuntu0.12.04.3
|
|
11.10 oneiric |
Fixed 18.0+build1-0ubuntu0.11.10.3
|
|
10.04 LTS lucid |
Fixed 18.0+build1-0ubuntu0.10.04.3
|
|
8.04 LTS hardy | Ignored end of life | |
seamonkey | 13.10 saucy | Not in release |
13.04 raring | Not in release | |
12.10 quantal | Not in release | |
12.04 LTS precise | Not in release | |
11.10 oneiric | Ignored end of life | |
10.04 LTS lucid | Ignored end of life | |
8.04 LTS hardy | Ignored end of life | |
thunderbird | 13.10 saucy |
Fixed 17.0.2+build1-0ubuntu1
|
13.04 raring |
Fixed 17.0.2+build1-0ubuntu1
|
|
12.10 quantal |
Fixed 17.0.2+build1-0ubuntu0.12.10.1
|
|
12.04 LTS precise |
Fixed 17.0.2+build1-0ubuntu0.12.04.1
|
|
11.10 oneiric |
Fixed 17.0.2+build1-0ubuntu0.11.10.1
|
|
10.04 LTS lucid |
Fixed 17.0.2+build1-0ubuntu0.10.04.1
|
|
8.04 LTS hardy | Ignored end of life |
References
Related Ubuntu Security Notices (USN)
- USN-1681-2
- Thunderbird vulnerabilities
- 9 January 2013
- USN-1681-1
- Firefox vulnerabilities
- 9 January 2013