Buffer overflow in Mozilla Firefox

CVE-2013-0772

The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, Thunderbird before 17.0.3, and SeaMonkey before 2.16 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bou…

Vulnerability class: Buffer Overflow

EPSS: 0.013 (80.0th percentile) — read the EPSS interpretation.

Affected products

Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu_linux — versions 10.04, 11.10, 12.04
Opensuse — versions 11.4, 12.1, 12.2
Redhat Enterprise_linux_aus — versions 5.9
Redhat Enterprise_linux_desktop — versions 5.0, 6.0
Redhat Enterprise_linux_eus — versions 5.9, 6.3
Redhat Enterprise_linux_server — versions 5.0, 6.0
Redhat Enterprise_linux_workstation — versions 5.0, 6.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

security@mozilla.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
USN-1729-1 (x_refsource_UBUNTU, vendor-advisory, Third Party Advisory)
USN-1729-2 (x_refsource_UBUNTU, vendor-advisory, Third Party Advisory)
openSUSE-SU-2013:0324 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
security@mozilla.org (x_refsource_CONFIRM, Patch, Issue Tracking, Vendor Advisory)
openSUSE-SU-2013:0323 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
RHSA-2013:1812 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
oval:org.mitre.oval:def:17159 (x_refsource_OVAL, signature, Third Party Advisory, vdb-entry)