Novell Home

CVE-2009-1837

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

CVE-2009-1837 at MITRE

Details

Race condition in the NPObjWrapper_NewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for memory associated with a destroyed Java object.
Novell Bugzilla entry: 505563

SUSE Security Advisories:

Product(s) Fixed package version(s) References
openSUSE 11.0
  • MozillaFirefox-debuginfo >= 3.0.11-0.1
  • MozillaFirefox-debugsource >= 3.0.11-0.1
  • mozilla-xulrunner190-debuginfo >= 1.9.0.11-1.1
  • mozilla-xulrunner190-debugsource >= 1.9.0.11-1.1
 SAT Patch Nr: 1000
openSUSE 11.0
  • MozillaFirefox >= 3.0.11-0.1
  • MozillaFirefox-translations >= 3.0.11-0.1
  • mozilla-xulrunner190 >= 1.9.0.11-1.1
  • mozilla-xulrunner190-32bit >= 1.9.0.11-1.1
  • mozilla-xulrunner190-64bit >= 1.9.0.11-1.1
  • mozilla-xulrunner190-devel >= 1.9.0.11-1.1
  • mozilla-xulrunner190-gnomevfs >= 1.9.0.11-1.1
  • mozilla-xulrunner190-gnomevfs-32bit >= 1.9.0.11-1.1
  • mozilla-xulrunner190-gnomevfs-64bit >= 1.9.0.11-1.1
  • mozilla-xulrunner190-translations >= 1.9.0.11-1.1
  • mozilla-xulrunner190-translations-32bit >= 1.9.0.11-1.1
  • mozilla-xulrunner190-translations-64bit >= 1.9.0.11-1.1
 SAT Patch Nr: 1000
openSUSE 11.1
  • MozillaFirefox-debuginfo >= 3.0.11-0.1.1
  • MozillaFirefox-debugsource >= 3.0.11-0.1.1
  • mozilla-xulrunner190-debuginfo >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-debuginfo-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-debugsource >= 1.9.0.11-1.1.1
 SAT Patch Nr: 1000
openSUSE 11.1
  • MozillaFirefox >= 3.0.11-0.1.1
  • MozillaFirefox-branding-upstream >= 3.0.11-0.1.1
  • MozillaFirefox-translations >= 3.0.11-0.1.1
  • mozilla-xulrunner190 >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-devel >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations-32bit >= 1.9.0.11-1.1.1
  • python-xpcom190 >= 1.9.0.11-1.1.1
 SAT Patch Nr: 1000
SLES 11 DEBUGINFO
  • MozillaFirefox-debuginfo >= 3.0.11-0.1.1
  • MozillaFirefox-debugsource >= 3.0.11-0.1.1
  • mozilla-xulrunner190-debuginfo >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-debugsource >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLES 11 DEBUGINFO
  • MozillaFirefox-debuginfo >= 3.0.11-0.1.1
  • MozillaFirefox-debugsource >= 3.0.11-0.1.1
  • mozilla-xulrunner190-debuginfo >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-debuginfo-x86 >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-debugsource >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLES 11 DEBUGINFO
  • MozillaFirefox-debuginfo >= 3.0.11-0.1.1
  • MozillaFirefox-debugsource >= 3.0.11-0.1.1
  • mozilla-xulrunner190-debuginfo >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-debuginfo-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-debugsource >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLE 11
  • mozilla-xulrunner190-devel >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLE 11
  • mozilla-xulrunner190-devel >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs-x86 >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations-x86 >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLE 11
  • mozilla-xulrunner190-devel >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations-32bit >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLED 11
  • MozillaFirefox >= 3.0.11-0.1.1
  • MozillaFirefox-translations >= 3.0.11-0.1.1
  • mozilla-xulrunner190 >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations-32bit >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLED 11
SLES 11
  • MozillaFirefox >= 3.0.11-0.1.1
  • MozillaFirefox-translations >= 3.0.11-0.1.1
  • mozilla-xulrunner190 >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLES 11
  • MozillaFirefox >= 3.0.11-0.1.1
  • MozillaFirefox-translations >= 3.0.11-0.1.1
  • mozilla-xulrunner190 >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-x86 >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001
SLES 11
  • MozillaFirefox >= 3.0.11-0.1.1
  • MozillaFirefox-translations >= 3.0.11-0.1.1
  • mozilla-xulrunner190 >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-32bit >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-gnomevfs >= 1.9.0.11-1.1.1
  • mozilla-xulrunner190-translations >= 1.9.0.11-1.1.1
 sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. s390x
sle11-debuginfo. x86-64
sle11-debuginfo. x86
sle11-debuginfo. ppc
sle11-debuginfo. x86
sle11-debuginfo. x86-64
sle11-debuginfo. ia64
sle11-debuginfo. ia64
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ppc
sle11-debuginfo. s390x
sle11-debuginfo. ia64
sle11-debuginfo. x86-64
sle11-debuginfo. x86
SAT Patch Nr: 1001

Novell® Making IT Work As One

© 2009 Novell, Inc. All Rights Reserved.