Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

CVE-2010-0169

Published: 25 March 2010

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to the XUL cache, which might allow remote attackers to modify the browser's font and other CSS attributes, and potentially disrupt rendering of a web page, by forcing the browser to perform this erroneous stylesheet caching.

Priority

Medium

Status

Package Release Status
seamonkey
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy
Released (2.0.8+build1+nobinonly-0ubuntu0.8.04.1)
intrepid Ignored
(end of life, was needed)
jaunty
Released (2.0.8+build1+nobinonly-0ubuntu0.9.04.1)
karmic
Released (2.0.8+build1+nobinonly-0ubuntu0.9.10.1)
lucid
Released (2.0.8+build1+nobinonly-0ubuntu0.10.04.1)
maverick Not vulnerable
(2.0.4+nobinonly-0ubuntu1)
natty Not vulnerable
(2.0.4+nobinonly-0ubuntu1)
upstream
Released (2.0.3)
firefox
Launchpad, Ubuntu, Debian
dapper Ignored
(end of life)
hardy Not vulnerable

intrepid Does not exist

jaunty Does not exist

karmic Does not exist

lucid
Released (3.6.3+nobinonly-0ubuntu2)
maverick
Released (3.6.3+nobinonly-0ubuntu2)
natty
Released (3.6.3+nobinonly-0ubuntu2)
upstream
Released (3.6.2)
thunderbird
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Ignored
(end of life)
jaunty Ignored
(end of life)
karmic Ignored
(end of life)
lucid
Released (3.0.4+nobinonly-0ubuntu1)
maverick
Released (3.0.4+nobinonly-0ubuntu1)
natty
Released (3.0.4+nobinonly-0ubuntu1)
upstream
Released (3.0.2)
xulrunner-1.9
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy
Released (1.9.0.19+nobinonly-0ubuntu0.8.04.1)
intrepid
Released (1.9.0.19+nobinonly-0ubuntu0.8.10.1)
jaunty
Released (1.9.0.19+nobinonly-0ubuntu0.9.04.1)
karmic Does not exist

lucid Does not exist

maverick Does not exist

natty Does not exist

upstream
Released (1.9.0.19)
xulrunner-1.9.1
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Does not exist

intrepid Does not exist

jaunty
Released (1.9.1.9+nobinonly-0ubuntu0.9.04.1)
karmic
Released (1.9.1.9+nobinonly-0ubuntu0.9.10.1)
lucid Does not exist

maverick Does not exist

natty Does not exist

upstream
Released (1.9.1.9)