Revision Date: | 2013-04-29 | Version: | 12 | Title: | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to graphics rendering and (1) handling of a long alert messagebox in the cairo_surface_set_device_offset function, (2) integer overflows when handling animated PNG data in the info_callback function in nsPNGDecoder.cpp, and (3) an integer overflow when handling SVG data in the nsSVGFEGaussianBlurElement::SetupPredivide function in nsSVGFilters.cpp. | Description: | Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to graphics rendering and (1) handling of a long alert messagebox in the cairo_surface_set_device_offset function, (2) integer overflows when handling animated PNG data in the info_callback function in nsPNGDecoder.cpp, and (3) an integer overflow when handling SVG data in the nsSVGFEGaussianBlurElement::SetupPredivide function in nsSVGFilters.cpp. | Family: | unix | Class: | vulnerability | Status: | ACCEPTED | Reference(s): | CVE-2008-4064
| Platform(s): | CentOS Linux 4 CentOS Linux 5 Oracle Linux 4 Oracle Linux 5 Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5
| Product(s): | | Definition Synopsis | OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4
The operating system installed on the system is Red Hat Enterprise Linux 4
OR CentOS Linux 4.x
OR Oracle Linux 4.x
AND firefox is earlier than 0:3.0.2-3.el4
OR OS Section: RHEL5, CentOS5, Oracle Linux 5
RHEL5, CentOS5 or Oracle Linux 5
The operating system installed on the system is Red Hat Enterprise Linux 5
OR The operating system installed on the system is CentOS Linux 5.x
OR Oracle Linux 5.x
AND Configuration section
devhelp-devel is earlier than 0:0.12-19.el5
OR nss-pkcs11-devel is earlier than 0:3.12.1.1-1.el5
OR xulrunner-devel is earlier than 0:1.9.0.2-5.el5
OR nss is earlier than 0:3.12.1.1-1.el5
OR xulrunner is earlier than 0:1.9.0.2-5.el5
OR yelp is earlier than 0:2.16.0-21.el5
OR devhelp is earlier than 0:0.12-19.el5
OR xulrunner-devel-unstable is earlier than 0:1.9.0.2-5.el5
OR firefox is earlier than 0:3.0.2-3.el5
OR nss-devel is earlier than 0:3.12.1.1-1.el5
OR nss-tools is earlier than 0:3.12.1.1-1.el5
|
|