Lucene search

K
ubuntucveUbuntu.comUB:CVE-2012-5838
HistoryNov 21, 2012 - 12:00 a.m.

CVE-2012-5838

2012-11-2100:00:00
ubuntu.com
ubuntu.com
7

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.021 Low

EPSS

Percentile

89.2%

The copyTexImage2D implementation in the WebGL subsystem in Mozilla Firefox
before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows
remote attackers to execute arbitrary code or cause a denial of service
(memory corruption and application crash) via large image dimensions.

Notes

Author Note
jdstrand xulrunner-1.9.2 unmaintained upstream (see README.mozilla for details)
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchfirefox< 17.0+build2-0ubuntu0.10.04.1UNKNOWN
ubuntu11.10noarchfirefox< 17.0+build2-0ubuntu0.11.10.1UNKNOWN
ubuntu12.04noarchfirefox< 17.0+build2-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchfirefox< 17.0+build2-0ubuntu0.12.10.1UNKNOWN
ubuntu10.04noarchthunderbird< 17.0+build2-0ubuntu0.10.04.1UNKNOWN
ubuntu11.10noarchthunderbird< 17.0+build2-0ubuntu0.11.10.1UNKNOWN
ubuntu12.04noarchthunderbird< 17.0+build2-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchthunderbird< 17.0+build2-0ubuntu0.12.10.1UNKNOWN

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.021 Low

EPSS

Percentile

89.2%