Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:21741
HistoryApr 28, 2009 - 12:00 a.m.

Mozilla Foundation Security Advisory 2009-23

2009-04-2800:00:00
vulners.com
114

EPSS

0.932

Percentile

99.1%

Mozilla Foundation Security Advisory 2009-23

Title: Crash in nsTextFrame::ClearTextRun()
Impact: Critical
Announced: April 27, 2009
Reporter: Marc Gueury, Daniel Veditz
Products: Firefox

Fixed in: Firefox 3.0.10
Description

One of the security fixes in Firefox 3.0.9 introduced a regression that caused some users to experience frequent crashes. Users of the HTML Validator add-on were particularly affected, but other users also experienced this crash in some situations. In analyzing this crash we discovered that it was due to memory corruption similar to cases that have been identified as security vulnerabilities in the past.
References

* https://bugzilla.mozilla.org/show_bug.cgi?id=489647
* CVE-2009-1313