First published: Wed Apr 25 2012(Updated: )
Heap-based buffer overflow in the nsSVGFEDiffuseLightingElement::LightPixel function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allows remote attackers to cause a denial of service (invalid gfxImageSurface free operation) or possibly execute arbitrary code by leveraging the use of "different number systems."
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mozilla Firefox | =4.0 | |
Mozilla Firefox | =4.0-beta1 | |
Mozilla Firefox | =4.0-beta10 | |
Mozilla Firefox | =4.0-beta11 | |
Mozilla Firefox | =4.0-beta12 | |
Mozilla Firefox | =4.0-beta2 | |
Mozilla Firefox | =4.0-beta3 | |
Mozilla Firefox | =4.0-beta4 | |
Mozilla Firefox | =4.0-beta5 | |
Mozilla Firefox | =4.0-beta6 | |
Mozilla Firefox | =4.0-beta7 | |
Mozilla Firefox | =4.0-beta8 | |
Mozilla Firefox | =4.0-beta9 | |
Mozilla Firefox | =4.0.1 | |
Mozilla Firefox | =5.0 | |
Mozilla Firefox | =5.0.1 | |
Mozilla Firefox | =6.0 | |
Mozilla Firefox | =6.0.1 | |
Mozilla Firefox | =6.0.2 | |
Mozilla Firefox | =7.0 | |
Mozilla Firefox | =7.0.1 | |
Mozilla Firefox | =8.0 | |
Mozilla Firefox | =8.0.1 | |
Mozilla Firefox | =9.0 | |
Mozilla Firefox | =9.0.1 | |
Mozilla Firefox | =10.0 | |
Mozilla Firefox | =10.0.1 | |
Mozilla Firefox | =10.0.2 | |
Mozilla Firefox | =11.0 | |
Mozilla Firefox ESR | =10.0 | |
Mozilla Firefox ESR | =10.0.1 | |
Mozilla Firefox ESR | =10.0.2 | |
Mozilla Firefox ESR | =10.0.3 | |
Mozilla Thunderbird | =5.0 | |
Mozilla Thunderbird | =6.0 | |
Mozilla Thunderbird | =6.0.1 | |
Mozilla Thunderbird | =6.0.2 | |
Mozilla Thunderbird | =7.0 | |
Mozilla Thunderbird | =7.0.1 | |
Mozilla Thunderbird | =8.0 | |
Mozilla Thunderbird | =9.0 | |
Mozilla Thunderbird | =9.0.1 | |
Mozilla Thunderbird | =10.0 | |
Mozilla Thunderbird | =10.0.1 | |
Mozilla Thunderbird | =10.0.2 | |
Mozilla Thunderbird | =10.0.3 | |
Mozilla Thunderbird | =10.0.4 | |
Mozilla Thunderbird | =11.0 | |
Mozilla Thunderbird Esr | =10.0 | |
Mozilla Thunderbird Esr | =10.0.1 | |
Mozilla Thunderbird Esr | =10.0.2 | |
Mozilla Thunderbird Esr | =10.0.3 | |
Mozilla Thunderbird Esr | =10.0.4 | |
Mozilla SeaMonkey | <=2.9 | |
Mozilla SeaMonkey | =1.0 | |
Mozilla SeaMonkey | =1.0-alpha | |
Mozilla SeaMonkey | =1.0-beta | |
Mozilla SeaMonkey | =1.0.1 | |
Mozilla SeaMonkey | =1.0.2 | |
Mozilla SeaMonkey | =1.0.3 | |
Mozilla SeaMonkey | =1.0.4 | |
Mozilla SeaMonkey | =1.0.5 | |
Mozilla SeaMonkey | =1.0.6 | |
Mozilla SeaMonkey | =1.0.7 | |
Mozilla SeaMonkey | =1.0.8 | |
Mozilla SeaMonkey | =1.0.9 | |
Mozilla SeaMonkey | =1.1 | |
Mozilla SeaMonkey | =1.1-alpha | |
Mozilla SeaMonkey | =1.1-beta | |
Mozilla SeaMonkey | =1.1.1 | |
Mozilla SeaMonkey | =1.1.2 | |
Mozilla SeaMonkey | =1.1.3 | |
Mozilla SeaMonkey | =1.1.4 | |
Mozilla SeaMonkey | =1.1.5 | |
Mozilla SeaMonkey | =1.1.6 | |
Mozilla SeaMonkey | =1.1.7 | |
Mozilla SeaMonkey | =1.1.8 | |
Mozilla SeaMonkey | =1.1.9 | |
Mozilla SeaMonkey | =1.1.10 | |
Mozilla SeaMonkey | =1.1.11 | |
Mozilla SeaMonkey | =1.1.12 | |
Mozilla SeaMonkey | =1.1.13 | |
Mozilla SeaMonkey | =1.1.14 | |
Mozilla SeaMonkey | =1.1.15 | |
Mozilla SeaMonkey | =1.1.16 | |
Mozilla SeaMonkey | =1.1.17 | |
Mozilla SeaMonkey | =1.1.18 | |
Mozilla SeaMonkey | =1.1.19 | |
Mozilla SeaMonkey | =1.5.0.8 | |
Mozilla SeaMonkey | =1.5.0.9 | |
Mozilla SeaMonkey | =1.5.0.10 | |
Mozilla SeaMonkey | =2.0 | |
Mozilla SeaMonkey | =2.0-alpha_1 | |
Mozilla SeaMonkey | =2.0-alpha_2 | |
Mozilla SeaMonkey | =2.0-alpha_3 | |
Mozilla SeaMonkey | =2.0-beta_1 | |
Mozilla SeaMonkey | =2.0-beta_2 | |
Mozilla SeaMonkey | =2.0-rc1 | |
Mozilla SeaMonkey | =2.0-rc2 | |
Mozilla SeaMonkey | =2.0.1 | |
Mozilla SeaMonkey | =2.0.2 | |
Mozilla SeaMonkey | =2.0.3 | |
Mozilla SeaMonkey | =2.0.4 | |
Mozilla SeaMonkey | =2.0.5 | |
Mozilla SeaMonkey | =2.0.6 | |
Mozilla SeaMonkey | =2.0.7 | |
Mozilla SeaMonkey | =2.0.8 | |
Mozilla SeaMonkey | =2.0.9 | |
Mozilla SeaMonkey | =2.0.10 | |
Mozilla SeaMonkey | =2.0.11 | |
Mozilla SeaMonkey | =2.0.12 | |
Mozilla SeaMonkey | =2.0.13 | |
Mozilla SeaMonkey | =2.0.14 | |
Mozilla SeaMonkey | =2.1 | |
Mozilla SeaMonkey | =2.1-alpha1 | |
Mozilla SeaMonkey | =2.1-alpha2 | |
Mozilla SeaMonkey | =2.1-alpha3 | |
Mozilla SeaMonkey | =2.1-beta1 | |
Mozilla SeaMonkey | =2.1-beta2 | |
Mozilla SeaMonkey | =2.1-beta3 | |
Mozilla SeaMonkey | =2.1-rc1 | |
Mozilla SeaMonkey | =2.1-rc2 | |
Mozilla SeaMonkey | =2.2 | |
Mozilla SeaMonkey | =2.2-beta1 | |
Mozilla SeaMonkey | =2.2-beta2 | |
Mozilla SeaMonkey | =2.2-beta3 | |
Mozilla SeaMonkey | =2.3 | |
Mozilla SeaMonkey | =2.3-beta1 | |
Mozilla SeaMonkey | =2.3-beta2 | |
Mozilla SeaMonkey | =2.3-beta3 | |
Mozilla SeaMonkey | =2.3.1 | |
Mozilla SeaMonkey | =2.3.2 | |
Mozilla SeaMonkey | =2.3.3 | |
Mozilla SeaMonkey | =2.4 | |
Mozilla SeaMonkey | =2.4-beta1 | |
Mozilla SeaMonkey | =2.4-beta2 | |
Mozilla SeaMonkey | =2.4-beta3 | |
Mozilla SeaMonkey | =2.4.1 | |
Mozilla SeaMonkey | =2.5 | |
Mozilla SeaMonkey | =2.5-beta1 | |
Mozilla SeaMonkey | =2.5-beta2 | |
Mozilla SeaMonkey | =2.5-beta3 | |
Mozilla SeaMonkey | =2.5-beta4 | |
Mozilla SeaMonkey | =2.6 | |
Mozilla SeaMonkey | =2.6-beta1 | |
Mozilla SeaMonkey | =2.6-beta2 | |
Mozilla SeaMonkey | =2.6-beta3 | |
Mozilla SeaMonkey | =2.6-beta4 | |
Mozilla SeaMonkey | =2.6.1 | |
Mozilla SeaMonkey | =2.7 | |
Mozilla SeaMonkey | =2.7-beta1 | |
Mozilla SeaMonkey | =2.7-beta2 | |
Mozilla SeaMonkey | =2.7-beta3 | |
Mozilla SeaMonkey | =2.7-beta4 | |
Mozilla SeaMonkey | =2.7-beta5 | |
Mozilla SeaMonkey | =2.7.1 | |
Mozilla SeaMonkey | =2.7.2 | |
Mozilla SeaMonkey | =2.8 | |
Mozilla SeaMonkey | =2.8-beta1 | |
Mozilla SeaMonkey | =2.8-beta2 | |
Mozilla SeaMonkey | =2.8-beta3 | |
Mozilla SeaMonkey | =2.8-beta4 | |
Mozilla SeaMonkey | =2.8-beta5 | |
Mozilla SeaMonkey | =2.8-beta6 | |
Mozilla SeaMonkey | =2.9-beta1 | |
Mozilla SeaMonkey | =2.9-beta2 | |
Mozilla Firefox | =10.0.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.