CVE-2010-2752

Name	CVE-2010-2752
Description	Integer overflow in an array class in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 allows remote attackers to execute arbitrary code by placing many Cascading Style Sheets (CSS) values in an array, related to references to external font resources and an inconsistency between 16-bit and 32-bit integers.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency
iceape	source	lenny	(not affected)
iceape	source	(unstable)	2.0.6-1
icedove	source	lenny	(unfixed)	end-of-life
icedove	source	(unstable)	3.0.6-1
iceweasel	source	lenny	(not affected)
iceweasel	source	(unstable)	3.5.11-2
xulrunner	source	lenny	(not affected)
xulrunner	source	(unstable)	1.9.1.11-1

Notes

[lenny] - xulrunner <not-affected> (Only affects 1.9.1 and above)
[lenny] - iceweasel <not-affected> (Iceweasel in Lenny links against xulrunner)
[lenny] - iceape <not-affected> (Only a stub package)