We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
The browser engine in Mozilla Firefox 3.x before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors related to (1) nsAsyncInstantiateEvent::Run, (2) nsStyleContext::Destroy, (3) nsComputedDOMStyle::GetWidth, (4) the xslt_attributeset_ImportSameName.html test case for the XSLT stylesheet compiler, (5) nsXULDocument::SynchronizeBroadcastListener, (6) IsBindingAncestor, (7) PL_DHashTableOperate and nsEditor::EndUpdateViewBatch, and (8) gfxSkipCharsIterator::SetOffsets, and other vectors.
Reserved 2009-04-16 | Published 2009-04-22 | Updated 2024-08-07 | Assigner redhatwww.mandriva.com/security/advisories?name=MDVSA-2009:111 (MDVSA-2009:111)
www.redhat.com/...-package-announce/2009-April/msg00683.html (FEDORA-2009-3875)
secunia.com/advisories/34894 (34894)
www.vupen.com/english/advisories/2009/1125 (ADV-2009-1125)
www.slackware.com/...rity&y=2009&m=slackware-security.454275 (SSA:2009-178-01)
www.debian.org/security/2009/dsa-1830 (DSA-1830)
secunia.com/advisories/34758 (34758)
bugzilla.mozilla.org/show_bug.cgi?id=461053
secunia.com/advisories/35602 (35602)
oval.cisecurity.org/...finition/oval:org.mitre.oval:def:5527 (oval:org.mitre.oval:def:5527)
oval.cisecurity.org/...finition/oval:org.mitre.oval:def:6070 (oval:org.mitre.oval:def:6070)
bugzilla.mozilla.org/show_bug.cgi?id=454276
oval.cisecurity.org/...inition/oval:org.mitre.oval:def:10106 (oval:org.mitre.oval:def:10106)
bugzilla.mozilla.org/show_bug.cgi?id=483444
bugzilla.mozilla.org/show_bug.cgi?id=432114
oval.cisecurity.org/...finition/oval:org.mitre.oval:def:6170 (oval:org.mitre.oval:def:6170)
secunia.com/advisories/35065 (35065)
bugzilla.mozilla.org/show_bug.cgi?id=477775
bugzilla.mozilla.org/show_bug.cgi?id=431260
usn.ubuntu.com/764-1/ (USN-764-1)
www.mandriva.com/security/advisories?name=MDVSA-2009:141 (MDVSA-2009:141)
lists.opensuse.org/...ecurity-announce/2009-05/msg00000.html (SUSE-SR:2009:010)
secunia.com/advisories/35042 (35042)
www.securityfocus.com/bid/34656 (34656)
bugzilla.mozilla.org/show_bug.cgi?id=467881
bugzilla.mozilla.org/show_bug.cgi?id=462517
oval.cisecurity.org/...finition/oval:org.mitre.oval:def:7030 (oval:org.mitre.oval:def:7030)
secunia.com/advisories/34843 (34843)
www.debian.org/security/2009/dsa-1797 (DSA-1797)
www.redhat.com/support/errata/RHSA-2009-0436.html (RHSA-2009:0436)
secunia.com/advisories/34780 (34780)
sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1 (264308)
bugzilla.mozilla.org/show_bug.cgi?id=428113
www.mozilla.org/security/announce/2009/mfsa2009-14.html
www.securitytracker.com/id?1022090 (1022090)
Support options