CVE-2009-1313
Published: 30 April 2009
The nsTextFrame::ClearTextRun function in layout/generic/nsTextFrameThebes.cpp in Mozilla Firefox 3.0.9 allows remote attackers to cause a denial of service (memory corruption) and probably execute arbitrary code via unspecified vectors. NOTE: this vulnerability reportedly exists because of an incorrect fix for CVE-2009-1302.
Notes
Author | Note |
---|---|
jdstrand | introduced in 3.0.9 |
Priority
Status
Package | Release | Status |
---|---|---|
firefox-3.0 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
hardy |
Released
(3.0.10+nobinonly-0ubuntu0.8.04.1)
|
|
intrepid |
Released
(3.0.10+nobinonly-0ubuntu0.8.10.1)
|
|
jaunty |
Released
(3.0.10+nobinonly-0ubuntu0.9.04.1)
|
|
upstream |
Released
(3.0.10)
|