FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2010-0159

This CVE name corresponds to:

Entered	Topic
2010-02-18	mozilla -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2010-0159 at cve.mitre.org

Details

Type	Candidate
Name	CVE-2010-0159
Phase	Assigned(20100106)

Description

The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to the nsBlockFrame::StealFrame function in layout/generic/nsBlockFrame.cpp, and unspecified other vectors.

References

Source	Reference
CONFIRM	http://www.mozilla.org/security/announce/2010/mfsa2010-01.html
CONFIRM	https://bugzilla.mozilla.org/show_bug.cgi?id=467005
CONFIRM	https://bugzilla.mozilla.org/show_bug.cgi?id=501934
CONFIRM	https://bugzilla.mozilla.org/show_bug.cgi?id=527567
CONFIRM	https://bugzilla.mozilla.org/show_bug.cgi?id=528134
CONFIRM	https://bugzilla.mozilla.org/show_bug.cgi?id=528300
CONFIRM	https://bugzilla.mozilla.org/show_bug.cgi?id=530880
CONFIRM	https://bugzilla.mozilla.org/show_bug.cgi?id=534082
DEBIAN	DSA-1999
FEDORA	FEDORA-2010-1727
FEDORA	FEDORA-2010-1932
FEDORA	FEDORA-2010-1936
FEDORA	FEDORA-2010-3230
FEDORA	FEDORA-2010-3267
MANDRIVA	MDVSA-2010:042
REDHAT	RHSA-2010:0112
REDHAT	RHSA-2010:0113
REDHAT	RHSA-2010:0153
REDHAT	RHSA-2010:0154
SUSE	SUSE-SA:2010:015
UBUNTU	USN-895-1
UBUNTU	USN-896-1
OVAL	oval:org.mitre.oval:def:8485
OVAL	oval:org.mitre.oval:def:9590
SECUNIA	37242
SECUNIA	38770
SECUNIA	38772
SECUNIA	38847
VUPEN	ADV-2010-0405
VUPEN	ADV-2010-0650
XF	mozilla-browsereng-code-execution(56359)