Ubuntu
firefox-3.0 package

e.g. crash and remote code execution vulnerability

Bug #298098 reported by Martin Capitanio
254
Affects Status Importance Assigned to Milestone
firefox-3.0 (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: firefox-3.0

apt-show-versions firefox:
firefox/intrepid uptodate 3.0.3+nobinonly-0ubuntu2

( There is no sign for me whether is this fixed or not fixed in ubuntu. )

http://www.mozilla.org/security/known-vulnerabilities/firefox30.html

Fixed in Firefox 3.0.4
MFSA 2008-58 Parsing error in E4X default namespace
MFSA 2008-57 -moz-binding property bypasses security checks on codebase principals
MFSA 2008-56 nsXMLHttpRequest::NotifyEventListeners() same-origin violation
MFSA 2008-55 Crash and remote code execution in nsFrameManager
MFSA 2008-54 Buffer overflow in http-index-format parser
MFSA 2008-53 XSS and JavaScript privilege escalation via session restore
MFSA 2008-52 Crashes with evidence of memory corruption (rv:1.9.0.4/1.8.1.18)
MFSA 2008-51 file: URIs inherit chrome privileges when opened from chrome
MFSA 2008-47 Information stealing via local shortcut files

Revision history for this message
Martin Capitanio (capnm) wrote :

Well, 3.0.3+nobinonly-0ubuntu2 is broken. The html code from

https://bugzilla.mozilla.org/show_bug.cgi?id=456896

crashes firefox immediately and safely ;)

However the test shows that

apt-show-versions seamonkey
seamonkey/intrepid uptodate 1.1.12+nobinonly-0ubuntu1

is _not_ affected.

Revision history for this message
Martin Capitanio (capnm) wrote :

today:
apt-show-versions firefox
firefox/intrepid uptodate 3.0.4+nobinonly-0ubuntu0.8.10.1

Changed in firefox-3.0:
status: New → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.