Upstream information
Description
Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
National Vulnerability Database | |
---|---|
Base Score | 9.3 |
Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Access Vector | Network |
Access Complexity | Medium |
Authentication | None |
Confidentiality Impact | Complete |
Integrity Impact | Complete |
Availability Impact | Complete |
- SUSE-SA:2006:021, published Thu, 20 Apr 2006 09:00:00 +0000
- SUSE-SA:2006:022, published Tue, 25 Apr 2006 15:00:00 +0000
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
SUSE LINUX Retail Solution 8 SuSE Linux Enterprise Server 8 for AMD64 SuSE Linux Enterprise Server 8 for IBM iSeries and IBM pSeries SuSE Linux Enterprise Server 8 for IBM zSeries SuSE Linux Enterprise Server 8 for IPF SuSE Linux Openexchange Server 4 SuSE Linux School Server for i386 SuSE Linux Standard Server 8 UnitedLinux 1.0 |
|
ul1.ppc ul1.x86-64 ul1.s390 slss8.x86 ul1.ia64 YOU Patch Nr: 10951 |
Novell Linux Desktop 9 for x86 Novell Linux Desktop 9 for x86_64 |
|
Builds YOU Patch Nr: 10950 |
SUSE LINUX 10.0 |
| |
SUSE LINUX 9.3 |
| |
SUSE LINUX 10.0 SUSE LINUX 9.1 for IA32 SUSE LINUX 9.1 for x86-64 SUSE LINUX 9.2 SUSE LINUX 9.3 |
| |
Novell Linux Desktop 9 for x86 |
|
core9.s390 core9.x86-64 core9.ia64 core9.x86 core9.ppc YOU Patch Nr: 10953 |
Novell Linux Desktop 9 for x86_64 |
|
core9.s390 core9.x86-64 core9.ia64 core9.x86 core9.ppc YOU Patch Nr: 10953 |
Open Enterprise Server |
|
core9.s390 core9.x86-64 core9.ia64 core9.x86 core9.ppc YOU Patch Nr: 10953 |
SUSE LINUX 10.0 SUSE LINUX 9.2 SUSE LINUX 9.3 |
| |
SUSE LINUX 9.1 for IA32 SUSE LINUX 9.1 for x86-64 |
| |
SuSE Linux Desktop 1.0 |
| Builds |