Lucene search

K
debianDebianDEBIAN:BSA-038:680C5
HistoryJul 01, 2011 - 5:25 p.m.

[BSA-038] Security Update for icedove

2011-07-0117:25:25
lists.debian.org
23

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.957 High

EPSS

Percentile

99.4%

Christoph Göhre uploaded new packages for icedove which fixed the following
security problems:

CVE-2011-0083

Use-after-free vulnerability in the nsSVGPathSegList::ReplaceItem function in
the implementation of SVG element lists allows remote attackers to cause a
denial of service (application crash) or possibly execute arbitrary code via
vectors involving a user-supplied callback.

CVE-2011-0085

Use-after-free vulnerability in the nsXULCommandDispatcher function allows
remote attackers to execute arbitrary code via a crafted XUL document that
dequeues the current command updater.

CVE-2011-2362

Icedove do not distinguish between cookies for two domain names that differ
only in a trailing dot, which allows remote web servers to bypass the Same
Origin Policy via Set-Cookie headers.

CVE-2011-2363

Use-after-free vulnerability in the nsSVGPointList::AppendElement function in
the implementation of SVG element lists allows remote attackers to cause a
denial of service (application crash) or possibly execute arbitrary code via
vectors involving a user-supplied callback.

CVE-2011-2364, CVE-2011-2365, CVE-2011-2374, CVE-2011-2376

Unspecified vulnerability allows remote attackers to cause a denial of
service (memory corruption and application crash) or possibly execute
arbitrary code.

CVE-2011-2371

Integer overflow in the Array.reduceRight method allows remote attackers to
execute arbitrary code via vectors involving a long JavaScript Array object.

CVE-2011-2373

Use-after-free vulnerability allows remote attackers to execute arbitrary
code via a crafted XUL document.

CVE-2011-2377

Allow remote attackers to cause a denial of service (memory corruption and
application crash) or possibly execute arbitrary code via a
multipart/x-mixed-replace image.

For the squeeze-backports distribution, this problem have been fixed in
version 3.1.11-1~bpo60+1.

For the testing distribution (wheezy), this problem has been fixed in
version 3.1.11-1.

For the unstable distribution (sid), this problem has been fixed in
version 3.1.11-1.

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.957 High

EPSS

Percentile

99.4%