icedove - several vulnerabilities

2008-07-2700:00:00

Google

osv.dev

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.448 Medium

EPSS

Percentile

96.9%

JSON

Several remote vulnerabilities have been discovered in the Icedove
mail client, an unbranded version of the Thunderbird client. The Common
Vulnerabilities and Exposures project identifies the following
problems:

CVE-2008-0304

It was discovered that a buffer overflow in MIME decoding can lead
to the execution of arbitrary code.

CVE-2008-2785

It was discovered that missing boundary checks on a reference
counter for CSS objects can lead to the execution of arbitrary code.

CVE-2008-2798

Devon Hubbard, Jesse Ruderman and Martijn Wargers discovered
crashes in the layout engine, which might allow the execution of
arbitrary code.

CVE-2008-2799

Igor Bukanov, Jesse Ruderman and Gary Kwong discovered crashes in
the Javascript engine, which might allow the execution of arbitrary code.

CVE-2008-2802

“moz_bug_r_a4” discovered that XUL documents can escalate
privileges by accessing the pre-compiled “fastload” file.

CVE-2008-2803

“moz_bug_r_a4” discovered that missing input sanitising in the
mozIJSSubScriptLoader.loadSubScript() function could lead to the
execution of arbitrary code. Iceweasel itself is not affected, but
some addons are.

CVE-2008-2807

Daniel Glazman discovered that a programming error in the code for
parsing .properties files could lead to memory content being
exposed to addons, which could lead to information disclosure.

CVE-2008-2809

John G. Myers, Frank Benkstein and Nils Toedtmann discovered that
alternate names on self-signed certificates were handled
insufficiently, which could lead to spoofings secure connections.

CVE-2008-2811

Greg McManus discovered discovered a crash in the block reflow
code, which might allow the execution of arbitrary code.

For the stable distribution (etch), these problems have been fixed in
version 1.5.0.13+1.5.0.15b.dfsg1+prepatch080614d-0etch1.
Packages for s390 are not yet available and will be provided later.

For the unstable distribution (sid), these problems have been fixed in
version 2.0.0.16-1.

We recommend that you upgrade your icedove package.

CPENameOperatorVersion
icedoveeq1.5.0.10.dfsg1-3
icedoveeq1.5.0.12.dfsg1-0etch1
icedoveeq1.5.0.12.dfsg1-0etch1+lenny1
icedoveeq1.5.0.13+1.5.0.14b.dfsg1-0etch1
icedoveeq1.5.0.13+1.5.0.14b.dfsg1-0lenny1
icedoveeq1.5.0.13+1.5.0.15a.dfsg1-0etch1
icedoveeq1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1
icedoveeq1.5.0.13+1.5.0.15b.dfsg1-0etch1
icedoveeq1.5.0.13+1.5.0.15b.dfsg1-0etch2

Name	Operator	Version
icedove	eq	1.5.0.10.dfsg1-3
icedove	eq	1.5.0.12.dfsg1-0etch1
icedove	eq	1.5.0.12.dfsg1-0etch1+lenny1
icedove	eq	1.5.0.13+1.5.0.14b.dfsg1-0etch1
icedove	eq	1.5.0.13+1.5.0.14b.dfsg1-0lenny1
icedove	eq	1.5.0.13+1.5.0.15a.dfsg1-0etch1
icedove	eq	1.5.0.13+1.5.0.15b.dfsg1+prepatch080417a-0etch1
icedove	eq	1.5.0.13+1.5.0.15b.dfsg1-0etch1
icedove	eq	1.5.0.13+1.5.0.15b.dfsg1-0etch2