CVE-2009-0771

Published: 05 March 2009

The layout engine in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain vectors that trigger memory corruption and assertion failures.

Priority

Low

Status

Package Release Status
firefox
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

firefox-3.0
Launchpad, Ubuntu, Debian
Upstream
Released (3.0.7)
firefox-3.5
Launchpad, Ubuntu, Debian
Upstream Needs triage

iceape
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

icedove
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

iceweasel
Launchpad, Ubuntu, Debian
Upstream Needs triage

mozilla-thunderbird
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

seamonkey
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

thunderbird
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

xulrunner
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

xulrunner-1.9
Launchpad, Ubuntu, Debian
Upstream Needs triage

xulrunner-1.9.1
Launchpad, Ubuntu, Debian
Upstream Needs triage