Lucene search
Mozilla FoundationMFSA2012-26HistoryApr 24, 2012 - 12:00 a.m.
WebGL.drawElements may read illegal video memory due to FindMaxUshortElement error — Mozilla
2012-04-2400:00:00
Mozilla Foundation
www.mozilla.org
30
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.004
Percentile
73.7%
Mozilla community member Matias Juntunen discovered an error in WebGLBuffer where FindMaxElementInSubArray receives wrong template arguments from FindMaxUshortElement. This bug causes maximum index to be computed incorrectly within WebGL.drawElements, allowing the reading of illegal video memory.
Affected configurations
Node
mozillafirefoxRange<12
ORmozillafirefox_esrRange<10.0.4
ORmozillaseamonkeyRange<2.9
ORmozillathunderbirdRange<12
ORmozillathunderbird_esrRange<10.0.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mozilla | firefox | * | cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* |
| mozilla | firefox_esr | * | cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:* |
| mozilla | seamonkey | * | cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:* |
| mozilla | thunderbird | * | cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:* |
| mozilla | thunderbird_esr | * | cpe:2.3:a:mozilla:thunderbird_esr:*:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2012-0473
2012-04-25 00:00:00
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2012-26) - Linux
2021-11-11 00:00:00
Ubuntu: Security Advisory (USN-1430-2)
2012-04-30 00:00:00
RedHat Update for firefox RHSA-2012:0515-01
2012-04-26 00:00:00
nvd
nvd
CVE-2012-0473
2012-04-25 10:10:17
cvelist
cvelist
CVE-2012-0473
2012-04-25 10:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:09:10
prion
prion
Design/Logic Flaw
2012-04-25 10:10:00
cve
cve
CVE-2012-0473
2012-04-25 10:10:17
nessus
nessus
Firefox < 10.0.4 Multiple Vulnerabilities (Mac OS X)
2012-04-27 00:00:00
Thunderbird 10.0.x < 10.0.4 Multiple Vulnerabilities (Mac OS X)
2012-04-27 00:00:00
Mozilla Thunderbird 10.0.x < 10.0.4 Multiple Vulnerabilities
2012-04-27 00:00:00
oraclelinux
oraclelinux
firefox security update
2012-04-25 00:00:00
thunderbird security update
2012-04-25 00:00:00
redhat
redhat
(RHSA-2012:0516) Critical: thunderbird security update
2012-04-24 00:00:00
(RHSA-2012:0515) Critical: firefox security update
2012-04-24 00:00:00
centos
centos
thunderbird security update
2012-04-25 01:30:17
firefox, xulrunner security update
2012-04-25 01:27:20
ubuntu
ubuntu
ubufox update
2012-04-27 00:00:00
Thunderbird vulnerabilities
2012-05-04 00:00:00
Firefox vulnerabilities
2012-04-27 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2012-05-02 19:08:16
Security update for MozillaFirefox (important)
2012-06-02 02:08:30
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-04-24 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-05-09 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
osv
osv
MozillaThunderbird-45.5.1-1.1 on GA media
2024-06-15 00:00:00
MozillaFirefox-50.1.0-1.1 on GA media
2024-06-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.004
Percentile
73.7%
Related for MFSA2012-26