Lucene search
GoogleOSV:DSA-2402-1HistoryFeb 02, 2012 - 12:00 a.m.
iceape - several
2012-02-0200:00:00
Google
osv.dev
18
EPSS
0.885
Percentile
98.8%
Several vulnerabilities have been found in the Iceape internet suite, an
unbranded version of Seamonkey:
- CVE-2011-3670
Gregory Fleischer discovered that IPv6 URLs were incorrectly parsed,
resulting in potential information disclosure. - CVE-2012-0442
Jesse Ruderman and Bob Clary discovered memory corruption bugs, which
may lead to the execution of arbitrary code. - CVE-2012-0444
regenrecht discovered that missing input sanitising in the Ogg Vorbis
parser may lead to the execution of arbitrary code. - CVE-2012-0449
Nicolas Gregoire and Aki Helin discovered that missing input
sanitising in XSLT processing may lead to the execution of arbitrary
code.
For the stable distribution (squeeze), this problem has been fixed in
version 2.0.11-10.
For the unstable distribution (sid), this problem has been fixed in
version 2.0.14-10.
We recommend that you upgrade your iceape packages.
References
Related
openvas
openvas
Debian Security Advisory DSA 2402-1 (iceape)
2012-02-12 00:00:00
Debian: Security Advisory (DSA-2406-1)
2013-09-18 00:00:00
Debian Security Advisory DSA 2400-1 (iceweasel)
2012-02-12 00:00:00
debian
debian
[SECURITY] [DSA 2402-1] iceape security update
2012-02-02 19:53:30
[SECURITY] [DSA 2406-1] icedove security update
2012-02-09 12:07:23
[SECURITY] [DSA 2400-1] iceweasel security update
2012-02-02 19:52:15
osv
osv
iceweasel - several
2012-02-02 00:00:00
icedove - several
2012-02-09 00:00:00
nessus
nessus
Debian DSA-2400-1 : iceweasel - several vulnerabilities
2012-02-03 00:00:00
Debian DSA-2402-1 : iceape - several vulnerabilities
2012-02-03 00:00:00
Debian DSA-2406-1 : icedove - several vulnerabilities
2012-02-10 00:00:00
redhat
redhat
(RHSA-2012:0079) Critical: firefox security update
2012-01-31 00:00:00
(RHSA-2012:0080) Critical: thunderbird security update
2012-01-31 00:00:00
(RHSA-2012:0085) Critical: thunderbird security update
2012-02-01 00:00:00
suse
suse
Security update for Mozilla Firefox (important)
2012-02-09 19:10:22
Security update for Mozilla XULrunner (important)
2012-02-09 19:07:25
MozillaFirefox: Version 10 (important)
2012-02-09 19:10:49
centos
centos
firefox, xulrunner security update
2012-02-01 03:34:27
thunderbird security update
2012-02-01 11:56:07
seamonkey security update
2012-02-01 12:34:44
oraclelinux
oraclelinux
firefox security update
2012-01-31 00:00:00
thunderbird security update
2012-01-31 00:00:00
thunderbird security update
2012-02-01 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2012-02-08 00:00:00
Xulrunnner vulnerabilities
2012-02-08 00:00:00
ubufox and webfav update
2012-02-03 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-02-03 00:00:00
Mozilla Foundation Security Advisory 2012-02
2012-02-03 00:00:00
Mozilla Foundation Security Advisory 2012-02
2012-02-03 00:00:00
cvelist
cvelist
cve
cve
prion
prion
Information disclosure
2012-02-01 16:55:00
Memory corruption
2012-02-01 16:55:00
Memory corruption
2012-02-01 16:55:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:07:21
Information Disclosure
2020-04-10 01:07:18
Arbitrary Code Execution
2020-04-10 01:07:19
ubuntucve
ubuntucve
mozilla
mozilla
Overly permissive IPv6 literal syntax — Mozilla
2012-01-31 00:00:00
Crash with malformed embedded XSLT stylesheets — Mozilla
2012-01-31 00:00:00
nvd
nvd
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-01-31 00:00:00
libtremor -- memory corruption
2012-01-31 00:00:00
checkpoint_advisories
checkpoint_advisories
fedora
fedora
[SECURITY] Fedora 16 Update: libvorbis-1.3.3-1.fc16
2012-02-17 00:57:43
zdi
zdi