Oval Definition:oval:org.mitre.oval:def:21392
Revision Date:2014-02-24Version:139
Title:RHSA-2012:0388: thunderbird security update (Critical)
Description:Use-after-free vulnerability in the browser engine in Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote attackers to execute arbitrary code via vectors involving an empty argument to the array.join function in conjunction with the triggering of garbage collection.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2012:0388
CVE-2012-0451
CVE-2012-0455
CVE-2012-0456
CVE-2012-0457
CVE-2012-0458
CVE-2012-0459
CVE-2012-0460
CVE-2012-0461
CVE-2012-0462
CVE-2012-0464
RHSA-2012:0388-01
Platform(s):CentOS Linux 5
CentOS Linux 6
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Product(s):thunderbird
Definition Synopsis
  • Redhat 5 section
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • AND thunderbird is earlier than 0:10.0.3-1.el5_8
  • OR Centos 5 section
  • The operating system installed on the system is CentOS Linux 5.x
  • AND thunderbird is earlier than 0:10.0.3-1.el5.centos
  • OR Redhat 6 section
  • thunderbird is earlier than 0:10.0.3-1.el6_2
  • AND The operating system installed on the system is Red Hat Enterprise Linux 6
  • OR Centos 6 section
  • thunderbird is earlier than 0:10.0.3-1.el6.centos
  • AND The operating system installed on the system is CentOS Linux 6.x
    • BACK