CVE-2013-1675
Published: 14 May 2013
Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 do not properly initialize data structures for the nsDOMSVGZoomEvent::mPreviousScale and nsDOMSVGZoomEvent::mNewScale functions, which allows remote attackers to obtain sensitive information from process memory via a crafted web site.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
firefox Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
| precise |
Released
(21.0+build1-0ubuntu0.12.04.3)
|
|
| quantal |
Released
(21.0+build1-0ubuntu0.12.10.2)
|
|
| raring |
Released
(21.0+build1-0ubuntu0.12.04.2)
|
|
| upstream |
Released
(21.0)
|
|
|
seamonkey Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| upstream |
Needs triage
|
|
|
thunderbird Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
| precise |
Released
(17.0.6+build1-0ubuntu0.12.04.1)
|
|
| quantal |
Released
(17.0.6+build1-0ubuntu0.12.10.1)
|
|
| raring |
Released
(17.0.6+build1-0ubuntu0.13.04.1)
|
|
| upstream |
Released
(17.0.6)
|
|
|
xulrunner-1.9.2 Launchpad, Ubuntu, Debian |
lucid |
Ignored
(reached end-of-life)
|
| precise |
Does not exist
|
|
| quantal |
Does not exist
|
|
| raring |
Does not exist
|
|
| upstream |
Needs triage
|