Bug 700603 (CVE-2011-0078) - CVE-2011-0078 Mozilla OOM condition arbitrary memory write (MFSA 2011-12)
Summary: CVE-2011-0078 Mozilla OOM condition arbitrary memory write (MFSA 2011-12)
Keywords:
Status: CLOSED ERRATA
Alias: CVE-2011-0078
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2011-04-28 19:03 UTC by Josh Bressers
Modified: 2019-09-29 12:44 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2013-04-12 21:45:49 UTC
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2011:0471 0 normal SHIPPED_LIVE Critical: firefox security update 2011-04-29 03:20:52 UTC
Red Hat Product Errata RHSA-2011:0473 0 normal SHIPPED_LIVE Critical: seamonkey security update 2011-04-29 02:58:22 UTC
Red Hat Product Errata RHSA-2011:0474 0 normal SHIPPED_LIVE Critical: thunderbird security update 2011-04-29 03:20:16 UTC
Red Hat Product Errata RHSA-2011:0475 0 normal SHIPPED_LIVE Critical: thunderbird security update 2011-04-29 03:09:31 UTC

Description Josh Bressers 2011-04-28 19:03:40 UTC 
An arbitrary memory write flaw was found in the way Mozilla products deal
with an out of memory (OOM) condition. If all memory is consumed, it is
possible for arbitrary data to written using array offsets.
Comment 1 Vincent Danen 2011-04-29 00:11:17 UTC 
This is public via:

http://www.mozilla.org/security/announce/2011/mfsa2011-12.html
Comment 2 errata-xmlrpc 2011-04-29 02:58:45 UTC 
This issue has been addressed in following products:

  Red Hat Enterprise Linux 4

Via RHSA-2011:0473 https://rhn.redhat.com/errata/RHSA-2011-0473.html
Comment 3 errata-xmlrpc 2011-04-29 03:09:57 UTC 
This issue has been addressed in following products:

  Red Hat Enterprise Linux 6

Via RHSA-2011:0475 https://rhn.redhat.com/errata/RHSA-2011-0475.html
Comment 4 errata-xmlrpc 2011-04-29 03:20:36 UTC 
This issue has been addressed in following products:

  Red Hat Enterprise Linux 4
  Red Hat Enterprise Linux 5

Via RHSA-2011:0474 https://rhn.redhat.com/errata/RHSA-2011-0474.html
Comment 5 errata-xmlrpc 2011-04-29 03:21:37 UTC 
This issue has been addressed in following products:

  Red Hat Enterprise Linux 5
  Red Hat Enterprise Linux 6
  Red Hat Enterprise Linux 4

Via RHSA-2011:0471 https://rhn.redhat.com/errata/RHSA-2011-0471.html
Note You need to log in before you can comment on or make changes to this bug.