CVE-2013-5595

NameCVE-2013-5595
DescriptionThe JavaScript engine in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before 2.22 does not properly allocate memory for unspecified functions, which allows remote attackers to conduct buffer overflow attacks via a crafted web page.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-2788-1, DSA-2797-1

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
iceapesourcesqueeze(unfixed)end-of-life
iceapesourcewheezy(unfixed)end-of-life
iceapesource(unstable)(unfixed)
icedovesourcesqueeze(unfixed)end-of-life
icedovesourcewheezy17.0.10-1~deb7u1DSA-2797-1
icedovesource(unstable)17.0.10-1
iceweaselsourcesqueeze(unfixed)end-of-life
iceweaselsourcewheezy17.0.10esr-1~deb7u1DSA-2788-1
iceweaselsource(unstable)24.1.0esr-1

Search for package or bug name: Reporting problems