CVE-2013-1738
Published: 17 September 2013
Use-after-free vulnerability in the JS_GetGlobalForScopeChain function in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 allows remote attackers to execute arbitrary code by leveraging incorrect garbage collection in situations involving default compartments and frame-chain restoration.
Priority
Status
Package | Release | Status |
---|---|---|
firefox Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Released
(24.0+build1-0ubuntu0.12.04.1)
|
|
quantal |
Released
(24.0+build1-0ubuntu0.12.10.1)
|
|
raring |
Released
(24.0+build1-0ubuntu0.13.04.1)
|
|
upstream |
Released
(24.0)
|
|
thunderbird Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
precise |
Released
(1:24.0+build1-0ubuntu0.12.04.1)
|
|
quantal |
Released
(1:24.0+build1-0ubuntu0.12.10.1)
|
|
raring |
Released
(1:24.0+build1-0ubuntu0.13.04.1)
|
|
upstream |
Released
(24.0)
|