Описание
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 11.0~b2+build1-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | released | 10.0.1+build1-0ubuntu0.10.04.1 |
| maverick | released | 10.0.1+build1-0ubuntu0.10.10.1 |
| natty | released | 10.0.1+build1-0ubuntu0.11.04.1 |
| oneiric | released | 10.0.1+build1-0ubuntu0.11.10.1 |
| precise | released | 11.0~b2+build1-0ubuntu1 |
| upstream | released | 10.0.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | not-affected | |
| maverick | not-affected | |
| natty | not-affected | |
| oneiric | not-affected | |
| precise | DNE | |
| upstream | released | 2.7.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 13.0~b4+build1-0ubuntu1 |
| hardy | ignored | end of life |
| lucid | not-affected | 3.1.x |
| maverick | not-affected | 3.1.x |
| natty | not-affected | 3.1.x |
| oneiric | released | 10.0.1+build1-0ubuntu0.11.10.1 |
| precise | released | 12.0.1+build1-0ubuntu0.12.04.1 |
| upstream | released | 10.0.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | not-affected | |
| maverick | not-affected | |
| natty | not-affected | |
| oneiric | DNE | |
| precise | DNE | |
| upstream | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | DNE | |
| maverick | DNE | |
| natty | ignored | end of life |
| oneiric | DNE | |
| precise | DNE | |
| upstream | not-affected |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding.
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding.
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Th ...
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding.
EPSS
7.5 High
CVSS2