CVE-2012-0452

Related Files

Ubuntu Security Notice USN-1369-1

Posted Feb 18, 2012

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1369-1 - Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Thunderbird can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Thunderbird. It was discovered that memory corruption could occur during the decoding of Ogg Vorbis files. If the user were tricked into opening a specially crafted file, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Thunderbird. Various other issues were also addressed.

tags | advisory, denial of service

systems | linux, ubuntu

advisories | CVE-2012-0449, CVE-2012-0444, CVE-2012-0447, CVE-2012-0446, CVE-2011-3659, CVE-2012-0445, CVE-2012-0452, CVE-2011-3026, CVE-2011-3659, CVE-2012-0442, CVE-2012-0443, CVE-2012-0444, CVE-2012-0445, CVE-2012-0446, CVE-2012-0447, CVE-2012-0449, CVE-2012-0452

SHA-256 | 828f494e34eb5a1f78ece739fb1b1d40cd48f816fcc1acab7510901c4f61b8a8

Download | Favorite | View

Mandriva Linux Security Advisory 2012-018

Posted Feb 14, 2012

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-018 - Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call.

tags | advisory, remote, denial of service, arbitrary

systems | linux, mandriva

advisories | CVE-2012-0452

SHA-256 | fee32370db3cb22bf05df24c9f737c814793b45ef520854d52975686eaa63177

Download | Favorite | View

Ubuntu Security Notice USN-1360-1

Posted Feb 13, 2012

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 1360-1 - Andrew McCreight and Olli Pettay discovered a use-after-free vulnerability in the XBL bindings. An attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox.

tags | advisory, denial of service

systems | linux, ubuntu

advisories | CVE-2012-0452, CVE-2012-0452

SHA-256 | 6eeb7529319b14c9ed9d8b524c4624c763dce93f196cb4ca9029ffa2c7b54870

Download | Favorite | View

Mandriva Linux Security Advisory 2012-017

Posted Feb 13, 2012

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2012-017 - Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service or possibly execute arbitrary code.

tags | advisory, remote, denial of service, arbitrary

systems | linux, mandriva

advisories | CVE-2012-0452

SHA-256 | 9fe544e356f96313c121a8d13bc803fdabc2d4c3a59ea4e35819f7ad75a8adbe

Download | Favorite | View