CVE-2012-1953

NameCVE-2012-1953
DescriptionThe ElementAnimations::EnsureStyleRuleFor function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 allows remote attackers to cause a denial of service (buffer over-read, incorrect pointer dereference, and heap-based buffer overflow) or possibly execute arbitrary code via a crafted web site.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
iceapesourcesqueeze(not affected)
iceapesource(unstable)2.7.6-1
icedovesourcesqueeze(not affected)
icedovesource(unstable)10.0.6-1
iceweaselsourcesqueeze(not affected)
iceweaselsource(unstable)10.0.6esr-1

Notes

[squeeze] - iceweasel <not-affected> (Vulnerable code not present)
[squeeze] - icedove <not-affected> (Vulnerable code not present)
[squeeze] - iceape <not-affected> (Vulnerable code not present)

Search for package or bug name: Reporting problems