The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors that trigger an assertion failure in jstracer.cpp.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Firefox | Mozilla | 3.6 (including) | 3.6 (including) |
| Firefox | Mozilla | 3.6.2 (including) | 3.6.2 (including) |
| Firefox | Mozilla | 3.6.3 (including) | 3.6.3 (including) |
| Red Hat Enterprise Linux 4 | RedHat | firefox-0:3.6.4-8.el4 | * |
| Red Hat Enterprise Linux 5 | RedHat | devhelp-0:0.12-21.el5 | * |
| Red Hat Enterprise Linux 5 | RedHat | esc-0:1.1.0-12.el5 | * |
| Red Hat Enterprise Linux 5 | RedHat | firefox-0:3.6.4-8.el5 | * |
| Red Hat Enterprise Linux 5 | RedHat | gnome-python2-extras-0:2.14.2-7.el5 | * |
| Red Hat Enterprise Linux 5 | RedHat | totem-0:2.16.7-7.el5 | * |
| Red Hat Enterprise Linux 5 | RedHat | xulrunner-0:1.9.2.4-10.el5 | * |
| Red Hat Enterprise Linux 5 | RedHat | yelp-0:2.16.0-26.el5 | * |
| Firefox | Ubuntu | dapper | * |
| Firefox | Ubuntu | devel | * |
| Firefox | Ubuntu | hardy | * |
| Firefox | Ubuntu | lucid | * |
| Firefox | Ubuntu | maverick | * |
| Firefox | Ubuntu | natty | * |
| Firefox | Ubuntu | oneiric | * |
| Seamonkey | Ubuntu | devel | * |
| Seamonkey | Ubuntu | hardy | * |
| Seamonkey | Ubuntu | jaunty | * |
| Seamonkey | Ubuntu | karmic | * |
| Seamonkey | Ubuntu | lucid | * |
| Seamonkey | Ubuntu | maverick | * |
| Seamonkey | Ubuntu | natty | * |
| Seamonkey | Ubuntu | oneiric | * |
| Thunderbird | Ubuntu | devel | * |
| Thunderbird | Ubuntu | hardy | * |
| Thunderbird | Ubuntu | jaunty | * |
| Thunderbird | Ubuntu | karmic | * |
| Thunderbird | Ubuntu | lucid | * |
| Thunderbird | Ubuntu | maverick | * |
| Thunderbird | Ubuntu | natty | * |
| Thunderbird | Ubuntu | oneiric | * |
| Thunderbird | Ubuntu | upstream | * |
| Xulrunner | Ubuntu | hardy | * |
| Xulrunner | Ubuntu | jaunty | * |
| Xulrunner | Ubuntu | karmic | * |
| Xulrunner-1.9 | Ubuntu | hardy | * |
| Xulrunner-1.9 | Ubuntu | jaunty | * |
| Xulrunner-1.9.1 | Ubuntu | jaunty | * |
| Xulrunner-1.9.1 | Ubuntu | karmic | * |
| Xulrunner-1.9.2 | Ubuntu | hardy | * |
| Xulrunner-1.9.2 | Ubuntu | jaunty | * |
| Xulrunner-1.9.2 | Ubuntu | karmic | * |
| Xulrunner-1.9.2 | Ubuntu | lucid | * |
| Xulrunner-1.9.2 | Ubuntu | maverick | * |
| Xulrunner-1.9.2 | Ubuntu | natty | * |
References
- http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html
- http://secunia.com/advisories/40323
- http://secunia.com/advisories/40326
- http://secunia.com/advisories/40401
- http://secunia.com/advisories/40481
- http://support.avaya.com/css/P8/documents/100091069
- http://ubuntu.com/usn/usn-930-1
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:125
- http://www.mozilla.org/security/announce/2010/mfsa2010-26.html
- http://www.redhat.com/support/errata/RHSA-2010-0500.html
- http://www.redhat.com/support/errata/RHSA-2010-0501.html
- http://www.securityfocus.com/bid/41050
- http://www.securityfocus.com/bid/41099
- http://www.securitytracker.com/id?1024138
- http://www.securitytracker.com/id?1024139
- http://www.ubuntu.com/usn/usn-930-2
- http://www.vupen.com/english/advisories/2010/1551
- http://www.vupen.com/english/advisories/2010/1557
- http://www.vupen.com/english/advisories/2010/1640
- http://www.vupen.com/english/advisories/2010/1773
- https://bugzilla.mozilla.org/show_bug.cgi?id=546611
- https://bugzilla.mozilla.org/show_bug.cgi?id=557946
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59662
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10401
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8317
- http://lists.opensuse.org/opensuse-security-announce/2010-07/msg00005.html
- http://secunia.com/advisories/40323
- http://secunia.com/advisories/40326
- http://secunia.com/advisories/40401
- http://secunia.com/advisories/40481
- http://support.avaya.com/css/P8/documents/100091069
- http://ubuntu.com/usn/usn-930-1
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:125
- http://www.mozilla.org/security/announce/2010/mfsa2010-26.html
- http://www.redhat.com/support/errata/RHSA-2010-0500.html
- http://www.redhat.com/support/errata/RHSA-2010-0501.html
- http://www.securityfocus.com/bid/41050
- http://www.securityfocus.com/bid/41099
- http://www.securitytracker.com/id?1024138
- http://www.securitytracker.com/id?1024139
- http://www.ubuntu.com/usn/usn-930-2
- http://www.vupen.com/english/advisories/2010/1551
- http://www.vupen.com/english/advisories/2010/1557
- http://www.vupen.com/english/advisories/2010/1640
- http://www.vupen.com/english/advisories/2010/1773
- https://bugzilla.mozilla.org/show_bug.cgi?id=546611
- https://bugzilla.mozilla.org/show_bug.cgi?id=557946
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59662
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10401
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8317