Details
The JavaScript engine in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a splice of an array that contains "some non-set elements," which causes jsarray.cpp to pass an incorrect argument to the ResizeSlots function, which triggers memory corruption; (2) vectors related to js_DecompileValueGenerator, jsopcode.cpp, __defineSetter__, and watch, which triggers an assertion failure or a segmentation fault; and (3) vectors related to gczeal, __defineSetter__, and watch, which triggers a hang.Novell Bugzilla entry: 478625 SUSE Security Advisories:
- SUSE-SA:2009:012, published Mon, 16 Mar 2009 13:00:00 +0000
- SUSE-SA:2009:012 , published Mon, 16 Mar 2009 13:00:00 +0000
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| SLES 11 DEBUGINFO |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLES 11 DEBUGINFO |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLES 11 DEBUGINFO |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLE 11 |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLE 11 |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLE 11 |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLED 11 |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLED 11 SLES 11 |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLES 11 |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| SLES 11 |
| sle11-debuginfo. ia64 sles10-sp2-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. ia64 sle11-debuginfo. x86-64 sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. x86 sles10-sp2-debuginfo. s390x sle11-debuginfo. s390x sle11-debuginfo. ppc sle11-debuginfo. x86-64 sle11-debuginfo. ia64 sle11-debuginfo. s390x sles10-sp2-debuginfo. ppc sle11-debuginfo. x86 sle11-debuginfo. x86 SAT Patch Nr: 656 |
| openSUSE 11.0 |
| SAT Patch Nr: 591 |
| openSUSE 11.0 |
| SAT Patch Nr: 591 |
| openSUSE 11.1 |
| SAT Patch Nr: 591 |
| openSUSE 11.1 |
| SAT Patch Nr: 591 |
| openSUSE 10.3 openSUSE 11.0 |
| ZYPP Patch Nr: 6310 SAT Patch Nr: 1014 |
| openSUSE 11.0 |
| ZYPP Patch Nr: 6310 SAT Patch Nr: 1014 |
| openSUSE 11.1 |
| ZYPP Patch Nr: 6310 SAT Patch Nr: 1014 |
| openSUSE 11.1 |
| ZYPP Patch Nr: 6310 SAT Patch Nr: 1014 |