MDVSA-2012:018 -- Mandriva mozilla-thunderbirdID: oval:org.secpod.oval:def:302833 | Date: (C)2012-11-29 (M)2023-11-19 |
Class: PATCH | Family: unix |
Use-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding .
Platform: |
Mandriva Linux 2011.0 |
Product: |
mozilla-thunderbird |