Описание
The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via vectors involving removal of SVG elements.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | |
| hardy | ignored | end of life |
| lucid | released | |
| maverick | ignored | end of life |
| natty | released | 9.0.1+build1-0ubuntu0.11.04.1 |
| oneiric | released | 9.0.1+build1-0ubuntu0.11.10.2 |
| precise | not-affected | |
| quantal | not-affected | |
| raring | not-affected | |
| saucy | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | ignored | end of life |
| oneiric | ignored | end of life |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 15.0+build1-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | released | 3.1.20+build1+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 3.1.20+build1+nobinonly-0ubuntu0.10.10.1 |
| natty | released | 3.1.20+build1+nobinonly-0ubuntu0.11.04.1 |
| oneiric | released | 9.0+build2-0ubuntu0.11.10.1 |
| precise | not-affected | 11.0.1+build1-0ubuntu2 |
| quantal | not-affected | 15.0+build1-0ubuntu1 |
| raring | not-affected | 15.0+build1-0ubuntu1 |
| saucy | not-affected | 15.0+build1-0ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | released | 1.9.2.28+build1+nobinonly-0ubuntu0.10.04.1 |
| maverick | released | 1.9.2.28+build1+nobinonly-0ubuntu0.10.10.1 |
| natty | released | 1.9.2.28+build1+nobinonly-0ubuntu0.11.04.1 |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | ignored | end of life |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | DNE |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via vectors involving removal of SVG elements.
The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via vectors involving removal of SVG elements.
The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and Se ...
The SVG implementation in Mozilla Firefox 8.0, Thunderbird 8.0, and SeaMonkey 2.5 does not properly interact with DOMAttrModified event handlers, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via vectors involving removal of SVG elements.
EPSS
7.5 High
CVSS2