Oval Definition:	oval:org.mitre.oval:def:23093
Revision Date: 2014-05-26 Version: 53 Title: ELSA-2012:0387: firefox security and bug fix update (Critical) Description: Use-after-free vulnerability in the browser engine in Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird before 3.1.20 and 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote attackers to execute arbitrary code via vectors involving an empty argument to the array.join function in conjunction with the triggering of garbage collection. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2012-0451 CVE-2012-0455 CVE-2012-0456 CVE-2012-0457 CVE-2012-0458 CVE-2012-0459 CVE-2012-0460 CVE-2012-0461 CVE-2012-0462 CVE-2012-0464 ELSA-2012:0387-01 Platform(s): Oracle Linux 5 Oracle Linux 6 Product(s): firefox xulrunner Definition Synopsis rpm test Oracle Linux 5.x AND rpm test xulrunner-devel is earlier than 0:10.0.3-1.el5_8 OR xulrunner is earlier than 0:10.0.3-1.el5_8 OR firefox is earlier than 0:10.0.3-1.el5_8 OR rpm test Oracle Linux 6.x AND rpm test xulrunner-devel is earlier than 0:10.0.3-1.el6_2 OR xulrunner is earlier than 0:10.0.3-1.el6_2 OR firefox is earlier than 0:10.0.3-1.el6_2
BACK