[Bug 218534] Re: [Needs Packaging] JavaScript vulnerability in Firefox/Thunderbird/SeaMonkey/Xulrunner before 2.0.0.14/1.1.10/1.8.1.14

[Alexander Sack]

** Summary changed:

- [Needs Packaging] JavaScript vulnerability in Firefox/Thunderbird/SeaMonkey before 2.0.0.13/1.1.9
+ [Needs Packaging] JavaScript vulnerability in Firefox/Thunderbird/SeaMonkey/Xulrunner before 2.0.0.14/1.1.10/1.8.1.14

** Description changed:

  Binary package hint: firefox
  
  Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.13,
  Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allow remote
  attackers to cause a denial of service (crash) and possibly execute
  arbitrary code via unknown vectors related to the JavaScript engine.
  (reported as CVE-2008-1237)
  
  This has been fixed in Firefox 2.0.0.14, Thunderbird 2.0.0.14, SeaMonkey
- 1.1.10
+ 1.1.10, xul 1.8.1.14

** Description changed:

- Binary package hint: firefox
- 
- Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.13,
- Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allow remote
- attackers to cause a denial of service (crash) and possibly execute
- arbitrary code via unknown vectors related to the JavaScript engine.
- (reported as CVE-2008-1237)
- 
- This has been fixed in Firefox 2.0.0.14, Thunderbird 2.0.0.14, SeaMonkey
- 1.1.10, xul 1.8.1.14
+ Flaws were discovered in Firefox which could lead to crashes during
+ JavaScript garbage collection. If a user were tricked into opening a
+ malicious web page, an attacker may be able to crash the browser or
+ possibly execute arbitrary code with the user's privileges.
+ (CVE-2008-1380)

-- 
[Needs Packaging] JavaScript vulnerability in Firefox/Thunderbird/SeaMonkey/Xulrunner before 2.0.0.14/1.1.10/1.8.1.14
https://bugs.launchpad.net/bugs/218534
You received this bug notification because you are a member of Mozilla
Bugs, which is a bug assignee.