OVAL Reference oval:com.ubuntu.precise:def:20135607000

Oval Definition:

oval:com.ubuntu.precise:def:20135607000

Revision Date:	2013-11-20	Version:	1
Title:	CVE-2013-5607 on Ubuntu 12.04 LTS (precise) - medium.
Description:	Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable Runtime (NSPR) before 4.10.2, as used in Firefox before 25.0.1, Firefox ESR 17.x before 17.0.11 and 24.x before 24.1.1, and SeaMonkey before 2.22.1, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted X.509 certificate, a related issue to CVE-2013-1741.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2013-5607
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '25.0.1+build1-0ubuntu0.12.04.1'). OR The 'nspr' package in precise was vulnerable but has been fixed (note: '4.9.5-0ubuntu0.12.04.2'). OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '1:24.1.1+build1-0ubuntu0.12.04.1').