Lucene search
Ubuntu.comUB:CVE-2012-4216HistoryNov 21, 2012 - 12:00 a.m.
CVE-2012-4216
2012-11-2100:00:00
ubuntu.com
ubuntu.com
9
0.028 Low
EPSS
Percentile
90.6%
Use-after-free vulnerability in the gfxFont::GetFontEntry function in
Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird
before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14
allows remote attackers to execute arbitrary code or cause a denial of
service (heap memory corruption) via unspecified vectors.
Notes
| Author | Note |
|---|---|
| jdstrand | xulrunner-1.9.2 unmaintained upstream (see README.mozilla for details) |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | firefox | < 17.0+build2-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | firefox | < 17.0+build2-0ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | firefox | < 17.0+build2-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | firefox | < 17.0+build2-0ubuntu0.12.10.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | thunderbird | < 17.0+build2-0ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | thunderbird | < 17.0+build2-0ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | thunderbird | < 17.0+build2-0ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | thunderbird | < 17.0+build2-0ubuntu0.12.10.1 | UNKNOWN |
Related
cve
cve
CVE-2012-4216
2012-11-21 12:55:00
veracode
veracode
Arbitrary Code Execution Or Denial Of Service (DoS)
2019-05-02 04:41:14
Arbitrary Code Execution Or Denial Of Service (DoS)
2019-05-02 04:41:16
Remote Code Execution (RCE)
2019-05-02 04:41:16
prion
prion
Design/Logic Flaw
2012-11-21 12:55:00
cvelist
cvelist
CVE-2012-4216
2012-11-21 11:00:00
nessus
nessus
Debian DSA-2584-1 : iceape - several vulnerabilities
2012-12-09 00:00:00
Debian DSA-2588-1 : icedove - several vulnerabilities
2012-12-17 00:00:00
Debian DSA-2583-1 : iceweasel - several vulnerabilities
2012-12-09 00:00:00
debian
debian
[SECURITY] [DSA 2584-1] iceape security update
2012-12-08 14:05:27
[SECURITY] [DSA 2588-1] icedove security update
2012-12-16 13:09:59
[SECURITY] [DSA 2583-1] iceweasel security update
2012-12-08 12:05:49
openvas
openvas
Debian Security Advisory DSA 2584-1 (iceape - several vulnerabilities)
2013-09-18 00:00:00
Debian Security Advisory DSA 2583-1 (iceweasel - several vulnerabilities)
2013-09-18 00:00:00
Debian: Security Advisory (DSA-2584-1)
2013-09-18 00:00:00
osv
osv
iceweasel - several
2012-12-08 00:00:00
icedove - several
2012-12-16 00:00:00
iceape - several
2012-12-08 00:00:00
mozilla
mozilla
redhat
redhat
(RHSA-2012:1483) Critical: thunderbird security update
2012-11-20 00:00:00
(RHSA-2012:1482) Critical: firefox security update
2012-11-20 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2012-11-20 00:00:00
firefox security update
2012-11-20 00:00:00
centos
centos
thunderbird security update
2012-11-22 02:10:10
firefox, xulrunner security update
2012-11-22 02:03:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2012-11-21 00:00:00
ubufox update
2012-11-21 00:00:00
Firefox vulnerabilities
2012-11-21 00:00:00
suse
suse
security update to Firefox 17.0 and other Mozilla based packages (important)
2013-01-23 14:07:31
Security update for Mozilla Firefox (important)
2012-11-29 01:08:52
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-12-03 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-11-20 00:00:00
ibm
ibm
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00