Lucene search
GoogleOSV:DSA-2528-1HistoryAug 14, 2012 - 12:00 a.m.
icedove - several
2012-08-1400:00:00
Google
osv.dev
15
0.375 Low
EPSS
Percentile
97.2%
Several vulnerabilities were discovered in Icedove, Debian’s version
of the Mozilla Thunderbird mail and news client.
- CVE-2012-1948
Multiple unspecified vulnerabilities in the browser engine
were fixed. - CVE-2012-1950
The underlying browser engine allows address bar spoofing
through drag-and-drop. - CVE-2012-1954
A use-after-free vulnerability in the nsDocument::AdoptNode
function allows remote attackers to cause a denial of service
(heap memory corruption) or possibly execute arbitrary code. - CVE-2012-1967
An error in the implementation of the JavaScript sandbox
allows execution of JavaScript code with improper privileges
using javascript: URLs.
For the stable distribution (squeeze), these problems have been fixed
in version 3.0.11-1+squeeze12.
For the testing distribution (wheezy) and the unstable distribution
(sid), these problems have been fixed in version 10.0.6-1.
We recommend that you upgrade your icedove packages.
References
Related
nessus
nessus
Debian DSA-2528-1 : icedove - several vulnerabilities
2012-08-15 00:00:00
Debian DSA-2513-1 : iceape - several vulnerabilities
2012-07-18 00:00:00
Debian DSA-2514-1 : iceweasel - several vulnerabilities
2012-07-18 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2528-1)
2012-08-30 00:00:00
Debian Security Advisory DSA 2528-1 (icedove)
2012-08-30 00:00:00
Debian Security Advisory DSA 2514-1 (iceweasel)
2012-08-10 00:00:00
debian
debian
[SECURITY] [DSA 2528-1] icedove security update
2012-08-14 19:26:36
[SECURITY] [DSA 2514-1] iceweasel security update
2012-07-17 20:03:42
[SECURITY] [DSA 2513-1] iceape security update
2012-07-17 19:47:49
osv
osv
iceape - several vulnerabilities
2012-07-17 00:00:00
iceweasel - several vulnerabilities
2012-07-17 00:00:00
ubuntucve
ubuntucve
cvelist
cvelist
nvd
nvd
cve
cve
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:54:29
Use-After-Free (UAF)
2019-05-02 04:42:25
Denial Of Service (DoS)
2019-05-02 04:42:25
prion
prion
Memory corruption
2012-07-18 10:26:00
Code injection
2012-07-18 10:26:00
Design/Logic Flaw
2012-07-18 10:26:00
mozilla
mozilla
Code execution through javascript: URLs — Mozilla
2012-07-17 00:00:00
Incorrect URL displayed in addressbar through drag and drop — Mozilla
2012-07-17 00:00:00
Miscellaneous memory safety hazards (rv:14.0/ rv:10.0.6) — Mozilla
2012-07-17 00:00:00
oraclelinux
oraclelinux
firefox security update
2012-07-17 00:00:00
thunderbird security update
2012-07-17 00:00:00
centos
centos
firefox, xulrunner security update
2012-07-17 20:41:16
thunderbird security update
2012-07-17 21:25:02
suse
suse
xulrunner to 14.0.1 (critical)
2012-07-30 17:08:56
Security update for Mozilla Firefox (important)
2012-07-21 01:08:17
MozillaFirefox to 14.0.1 (critical)
2012-07-23 14:08:16
ubuntu
ubuntu
ubufox update
2012-07-18 00:00:00
Firefox vulnerabilities
2012-07-17 00:00:00
Thunderbird vulnerabilities
2012-07-17 00:00:00
redhat
redhat
(RHSA-2012:1088) Critical: firefox security update
2012-07-17 00:00:00
(RHSA-2012:1089) Critical: thunderbird security update
2012-07-17 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-08-13 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-07-17 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00