%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27m15.839%205.293-1.447-2.8a.136.136%200%200%200-.051-.055.144.144%200%200%200-.074-.02h-5.8a.143.143%200%200%200-.091.03.13.13%200%200%200-.034.17.138.138%200%200%200%20.072.06l7.251%202.8a.144.144%200%200%200%20.17-.054.13.13%200%200%200%20.007-.13l-.003-.001ZM11.839%204.945.073.223A.073.073%200%200%200%20.026.221a.07.07%200%200%200-.038.027.065.065%200%200%200%20.007.086l7.962%208.182a.069.069%200%200%200%20.049.022.072.072%200%200%200%20.047-.019l3.805-3.461a.066.066%200%200%200%20.02-.061.065.065%200%200%200-.014-.03.07.07%200%200%200-.028-.02l.003-.002ZM5.382%207.183a.071.071%200%200%200-.062-.022.07.07%200%200%200-.03.011.067.067%200%200%200-.023.025l-4.13%207.696a.065.065%200%200%200-.005.046.068.068%200%200%200%20.027.038.072.072%200%200%200%20.09-.006L7.13%209.18a.066.066%200%200%200%200-.087l-1.75-1.91Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27M1.936%202.592c.668%200%201.21-.515%201.21-1.151S2.604.29%201.936.29C1.267.29.726.805.726%201.44c0%20.637.541%201.152%201.21%201.152ZM14.56.576H3.404a1.587%201.587%200%200%201%20.024%201.69l-.026.04h11.156a.56.56%200%200%200%20.386-.15.518.518%200%200%200%20.16-.369v-.692a.502.502%200%200%200-.16-.369.543.543%200%200%200-.386-.15ZM1.936%206.701c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%204.685H3.404a1.612%201.612%200%200%201%20.242%201.083c-.03.215-.105.421-.219.608l-.026.04h11.157a.56.56%200%200%200%20.386-.15.518.518%200%200%200%20.16-.37v-.692a.5.5%200%200%200-.16-.369.542.542%200%200%200-.386-.15ZM1.936%2010.81c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%208.795H3.404a1.611%201.611%200%200%201%20.243%201.082%201.581%201.581%200%200%201-.245.648h11.156a.559.559%200%200%200%20.386-.15.517.517%200%200%200%20.16-.37v-.692a.502.502%200%200%200-.16-.368.543.543%200%200%200-.386-.15ZM1.936%2014.92c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%2012.904H3.404a1.611%201.611%200%200%201%20.242%201.082%201.58%201.58%200%200%201-.219.608l-.026.04h11.157a.562.562%200%200%200%20.386-.15.517.517%200%200%200%20.16-.37v-.692a.5.5%200%200%200-.16-.369.543.543%200%200%200-.386-.15Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27M9.618.272c-.634%200-1.243.243-1.691.674-.448.43-.7%201.015-.701%201.624v4.221a1.9%201.9%200%200%201%201.362%200v-4.22a.955.955%200%200%201%20.291-.72%201.067%201.067%200%200%201%201.479%200%20.955.955%200%200%201%20.29.719v.962h1.363V2.57c0-.61-.253-1.194-.702-1.625A2.445%202.445%200%200%200%209.618.272ZM9.017%208.433c0%20.21-.065.417-.187.593a1.102%201.102%200%200%201-.499.393c-.203.08-.426.102-.642.06a1.125%201.125%200%200%201-.568-.292%201.055%201.055%200%200%201-.304-.547%201.028%201.028%200%200%201%20.064-.616c.084-.195.226-.362.41-.479a1.143%201.143%200%200%201%201.401.133c.103.1.185.217.24.347.057.129.085.268.085.408ZM2.773%205.855c-.634.001-1.242.244-1.69.674C.633%206.96.381%207.545.38%208.154v4.082a1.901%201.901%200%200%201%201.363%200V8.154a.955.955%200%200%201%20.29-.719%201.067%201.067%200%200%201%201.479%200%20.955.955%200%200%201%20.29.719v.962h1.363v-.962c0-.61-.253-1.194-.702-1.625a2.444%202.444%200%200%200-1.69-.674ZM2.166%2013.878c0%20.21-.065.415-.186.59-.121.174-.294.31-.496.39-.202.08-.424.102-.638.06a1.119%201.119%200%200%201-.565-.29%201.049%201.049%200%200%201-.302-.543c-.043-.206-.02-.42.063-.614.084-.194.225-.36.407-.476a1.136%201.136%200%200%201%201.394.133%201.024%201.024%200%200%201%20.323.75Z%27%2F%3E%3Cpath%20d%3D%27M14.752%204.76a1.789%201.789%200%200%201-.681-.126v2.411a.972.972%200%200%201-.312.682c-.193.179-.45.28-.718.28-.268%200-.526-.101-.718-.28a.972.972%200%200%201-.312-.682V4.32h-1.363v2.726c0%20.61.252%201.195.7%201.626a2.443%202.443%200%200%200%201.692.673c.635%200%201.244-.242%201.692-.673.449-.431.7-1.016.7-1.626v-2.41a1.9%201.9%200%200%201-.68.125ZM15.858%202.822c.037.225%200%20.455-.107.658a1.1%201.1%200%200%201-.49.472%201.161%201.161%200%200%201-1.302-.198%201.04%201.04%200%200%201-.206-1.251%201.1%201.1%200%200%201%20.492-.47%201.161%201.161%200%200%201%201.299.199c.166.16.276.366.314.59ZM7.907%2010.2c-.233%200-.465-.042-.681-.126V12.6a.97.97%200%200%201-.302.7%201.05%201.05%200%200%201-.728.29%201.05%201.05%200%200%201-.728-.29.97.97%200%200%201-.302-.7V9.845H3.804V12.6c0%20.61.252%201.194.7%201.625a2.443%202.443%200%200%200%201.692.674c.634%200%201.243-.243%201.692-.674.448-.43.7-1.015.7-1.625v-2.526a1.887%201.887%200%200%201-.68.127Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
CVE-2008-5511
Publication date 17 December 2008
Last updated 24 July 2024
Ubuntu priority
Mozilla Firefox 3.x before 3.0.5 and 2.x before 2.0.0.19, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to bypass the same origin policy and conduct cross-site scripting (XSS) attacks via an XBL binding to an “unloaded document.”
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| firefox | 11.04 natty |
Fixed 3.0.5+nobinonly-0ubuntu0.8.04.1
|
| 10.10 maverick |
Fixed 3.0.5+nobinonly-0ubuntu0.8.04.1
|
|
| 10.04 LTS lucid |
Fixed 3.0.5+nobinonly-0ubuntu0.8.04.1
|
|
| 9.10 karmic | Not in release | |
| 9.04 jaunty | Not in release | |
| 8.10 intrepid | Not in release | |
| 8.04 LTS hardy |
Fixed 2.0.0.19+nobinonly1-0ubuntu0.8.04.1
|
|
| 7.10 gutsy |
Fixed 2.0.0.19+nobinonly1-0ubuntu0.7.10.1
|
|
| 6.06 LTS dapper |
Fixed 1.5.dfsg+1.5.0.15~prepatch080614i-0ubuntu1
|
|
| firefox-3.0 | 11.04 natty | Not in release |
| 10.10 maverick | Not in release | |
| 10.04 LTS lucid | Not in release | |
| 9.10 karmic | Not in release | |
| 9.04 jaunty |
Fixed 3.0.5+nobinonly-0ubuntu1
|
|
| 8.10 intrepid |
Fixed 3.0.5+nobinonly-0ubuntu0.8.10.1
|
|
| 8.04 LTS hardy |
Fixed 3.0.5+nobinonly-0ubuntu0.8.04.1
|
|
| 7.10 gutsy | Ignored end of life, was needed | |
| 6.06 LTS dapper | Not in release | |
| iceape | 11.04 natty | Not in release |
| 10.10 maverick | Not in release | |
| 10.04 LTS lucid | Not in release | |
| 9.10 karmic | Not in release | |
| 9.04 jaunty | Not in release | |
| 8.10 intrepid | Not in release | |
| 8.04 LTS hardy | Not in release | |
| 7.10 gutsy | Ignored end of life, was needed | |
| 6.06 LTS dapper | Not in release | |
| mozilla-thunderbird | 11.04 natty | Not in release |
| 10.10 maverick | Not in release | |
| 10.04 LTS lucid | Not in release | |
| 9.10 karmic | Not in release | |
| 9.04 jaunty | Not in release | |
| 8.10 intrepid | Not in release | |
| 8.04 LTS hardy | Not in release | |
| 7.10 gutsy | Not in release | |
| 6.06 LTS dapper |
Fixed 1.5.0.13+1.5.0.15~prepatch080614i-0ubuntu0.6.06.1
|
|
| seamonkey | 11.04 natty |
Fixed 1.1.15+nobinonly-0ubuntu2
|
| 10.10 maverick |
Fixed 1.1.15+nobinonly-0ubuntu2
|
|
| 10.04 LTS lucid |
Fixed 1.1.15+nobinonly-0ubuntu2
|
|
| 9.10 karmic |
Fixed 1.1.15+nobinonly-0ubuntu2
|
|
| 9.04 jaunty |
Fixed 1.1.15+nobinonly-0ubuntu2
|
|
| 8.10 intrepid |
Fixed 1.1.15+nobinonly-0ubuntu0.8.10.2
|
|
| 8.04 LTS hardy |
Fixed 1.1.15+nobinonly-0ubuntu0.8.04.2
|
|
| 7.10 gutsy | Not in release | |
| 6.06 LTS dapper | Not in release | |
| thunderbird | 11.04 natty |
Fixed 2.0.0.19+nobinonly-0ubuntu1
|
| 10.10 maverick |
Fixed 2.0.0.19+nobinonly-0ubuntu1
|
|
| 10.04 LTS lucid |
Fixed 2.0.0.19+nobinonly-0ubuntu1
|
|
| 9.10 karmic |
Fixed 2.0.0.19+nobinonly-0ubuntu1
|
|
| 9.04 jaunty |
Fixed 2.0.0.19+nobinonly-0ubuntu1
|
|
| 8.10 intrepid |
Fixed 2.0.0.19+nobinonly-0ubuntu0.8.10.1
|
|
| 8.04 LTS hardy |
Fixed 2.0.0.19+nobinonly-0ubuntu0.8.04.1
|
|
| 7.10 gutsy |
Fixed 2.0.0.19+nobinonly-0ubuntu0.7.10.1
|
|
| 6.06 LTS dapper | Not in release | |
| xulrunner | 11.04 natty | Not in release |
| 10.10 maverick | Not in release | |
| 10.04 LTS lucid | Not in release | |
| 9.10 karmic | Ignored end of life | |
| 9.04 jaunty | Ignored end of life | |
| 8.10 intrepid |
Fixed 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.10.1
|
|
| 8.04 LTS hardy |
Fixed 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.8.04.1
|
|
| 7.10 gutsy |
Fixed 1.8.1.18+nobinonly.b308.cvs20090331t155113-0ubuntu0.7.10.1
|
|
| 6.06 LTS dapper | Not in release | |
| xulrunner-1.9 | 11.04 natty | Not in release |
| 10.10 maverick | Not in release | |
| 10.04 LTS lucid | Not in release | |
| 9.10 karmic | Not in release | |
| 9.04 jaunty |
Fixed 1.9.0.5+nobinonly-0ubuntu1
|
|
| 8.10 intrepid |
Fixed 1.9.0.5+nobinonly-0ubuntu0.8.10.1
|
|
| 8.04 LTS hardy |
Fixed 1.9.0.5+nobinonly-0ubuntu0.8.04.1
|
|
| 7.10 gutsy | Ignored end of life, was needed | |
| 6.06 LTS dapper | Not in release |
References
Related Ubuntu Security Notices (USN)
- USN-690-1
- Firefox and xulrunner vulnerabilities
- 17 December 2008
- USN-690-3
- Firefox vulnerabilities
- 18 December 2008
- USN-690-2
- Firefox vulnerabilities
- 18 December 2008
- USN-701-1
- Thunderbird vulnerabilities
- 6 January 2009
- USN-701-2
- Thunderbird vulnerabilities
- 6 January 2009