Integer overflow in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a denial of service (invalid write operation) via crafted data.
oryginał ENAV:N/AC:L/Au:N/C:C/I:C/A:CCanonical Ubuntu
OSCanonical10.0411.1012.0412.10Mozilla Firefox
APPMozilla< 10.0.11< 17.0Mozilla Seamonkey
APPMozilla< 2.14Mozilla Thunderbird
APPMozilla< 17.0Mozilla Thunderbird Esr
APPMozilla< 10.0.11Opensuse
OSOpensuse11.412.112.2Red Hat Enterprise Linux Desktop
OSRedhat5.06.0Red Hat Enterprise Linux Eus
OSRedhat6.3Red Hat Enterprise Linux Server
OSRedhat5.06.0Red Hat Enterprise Linux Workstation
OSRedhat5.06.0SUSE Linux Enterprise Desktop
OSSuse1011SUSE Linux Enterprise Server
OSSuse1011SUSE Linux Enterprise Software Development Kit
OSSuse1011
Powiązane podatności
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
Use-after-free w Animation timelines Firefox/Thunderbird — RCE
An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escap...
It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debia...
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remot...