e.g. crash and remote code execution vulnerability
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
firefox-3.0 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: firefox-3.0
apt-show-versions firefox:
firefox/intrepid uptodate 3.0.3+nobinonly
( There is no sign for me whether is this fixed or not fixed in ubuntu. )
http://
Fixed in Firefox 3.0.4
MFSA 2008-58 Parsing error in E4X default namespace
MFSA 2008-57 -moz-binding property bypasses security checks on codebase principals
MFSA 2008-56 nsXMLHttpReques
MFSA 2008-55 Crash and remote code execution in nsFrameManager
MFSA 2008-54 Buffer overflow in http-index-format parser
MFSA 2008-53 XSS and JavaScript privilege escalation via session restore
MFSA 2008-52 Crashes with evidence of memory corruption (rv:1.9.
MFSA 2008-51 file: URIs inherit chrome privileges when opened from chrome
MFSA 2008-47 Information stealing via local shortcut files
Well, 3.0.3+nobinonly -0ubuntu2 is broken. The html code from
https:/ /bugzilla. mozilla. org/show_ bug.cgi? id=456896
crashes firefox immediately and safely ;)
However the test shows that
apt-show-versions seamonkey nobinonly- 0ubuntu1
seamonkey/intrepid uptodate 1.1.12+
is _not_ affected.