Security researcher John Thomson discovered a memory corruption in the Cairo graphics library during font rendering of a PDF file for display. This memory corruption leads to a potentially exploitable crash and to a denial of service (DOS). This issues is not able to be triggered in a default configuration and would require a malicious extension to be installed. External Reference: http://www.mozilla.org/security/announce/2014/mfsa2014-27.html Acknowledgements: Red Hat would like to thank the Mozilla project for reporting this issue. Upstream acknowledges John Thomson as the original reporter.
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Via RHSA-2014:0310 https://rhn.redhat.com/errata/RHSA-2014-0310.html
This issue has been addressed in following products: Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Via RHSA-2014:0316 https://rhn.redhat.com/errata/RHSA-2014-0316.html