Red Hat Bugzilla – Bug 1009219
CVE-2013-1738 Mozilla: GC hazard with default compartments and frame chain restoration (MFSA 2013-92)
Last modified: 2013-09-17 22:18:05 EDT
Security researcher Nils reported a potentially exploitable use-after-free in an early test version of Firefox 25. Mozilla developer Bobby Holley found that the cause was an older garbage collection bug that a more recent change made easier to trigger.
Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges Nils as the original reporter.
This issue does not affect the version of firefox and thunderbird as shipped with Red Hat Enterprise Linux 5 and 6