CVE-2013-1720

Publication date 17 September 2013

Last updated 24 July 2024

Ubuntu priority

The nsHtml5TreeBuilder::resetTheInsertionMode function in the HTML5 Tree Builder in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21 does not properly maintain the state of the insertion-mode stack for template elements, which allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer over-read) by triggering use of this stack in its empty state.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
firefox	13.04 raring	Fixed 24.0+build1-0ubuntu0.13.04.1
	12.10 quantal	Fixed 24.0+build1-0ubuntu0.12.10.1
	12.04 LTS precise	Fixed 24.0+build1-0ubuntu0.12.04.1
	10.04 LTS lucid	Ignored end of life
thunderbird	13.04 raring	Fixed 1:24.0+build1-0ubuntu0.13.04.1
	12.10 quantal	Fixed 1:24.0+build1-0ubuntu0.12.10.1
	12.04 LTS precise	Fixed 1:24.0+build1-0ubuntu0.12.04.1
	10.04 LTS lucid	Ignored end of life

References

Related Ubuntu Security Notices (USN)

USN-1952-1
Thunderbird vulnerabilities
18 September 2013

USN-1951-1
Firefox vulnerabilities
17 September 2013

CVE-2013-1720

Status

References

Related Ubuntu Security Notices (USN)

Other references