CVE-2012-0470

Description

Heap-based buffer overflow in the nsSVGFEDiffuseLightingElement::LightPixel function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allows remote attackers to cause a denial of service (invalid gfxImageSurface free operation) or possibly execute arbitrary code by leveraging the use of "different number systems."

Affected products

• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0 – 4.0
• Mozilla / Firefox4.0.1 – 4.0.1
• Mozilla / Firefox5.0 – 5.0
• Mozilla / Firefox5.0.1 – 5.0.1
• Mozilla / Firefox6.0 – 6.0
• Mozilla / Firefox6.0.1 – 6.0.1
• Mozilla / Firefox6.0.2 – 6.0.2
• Mozilla / Firefox7.0 – 7.0
• Mozilla / Firefox7.0.1 – 7.0.1
• Mozilla / Firefox8.0 – 8.0
• Mozilla / Firefox8.0.1 – 8.0.1
• Mozilla / Firefox9.0 – 9.0
• Mozilla / Firefox9.0.1 – 9.0.1
• Mozilla / Firefox10.0 – 10.0
• Mozilla / Firefox10.0.1 – 10.0.1
• Mozilla / Firefox10.0.2 – 10.0.2
• Mozilla / Firefox11.0 – 11.0
• Mozilla / Firefox10.0.3 – 10.0.3
• Mozilla / seamonkey2.9 – 2.9
• Mozilla / seamonkey2.6 – 2.6
• Mozilla / seamonkey2.6 – 2.6
• Mozilla / seamonkey2.6 – 2.6
• Mozilla / seamonkey2.6.1 – 2.6.1
• Mozilla / seamonkey2.7 – 2.7
• Mozilla / seamonkey2.7 – 2.7
• Mozilla / seamonkey2.7 – 2.7
• Mozilla / seamonkey2.7 – 2.7
• Mozilla / seamonkey2.7 – 2.7
• Mozilla / seamonkey2.7 – 2.7
• Mozilla / seamonkey2.7.1 – 2.7.1
• Mozilla / seamonkey2.7.2 – 2.7.2
• Mozilla / seamonkey2.8 – 2.8
• Mozilla / seamonkey2.8 – 2.8
• Mozilla / seamonkey2.8 – 2.8
• Mozilla / seamonkey2.8 – 2.8
• Mozilla / seamonkey2.8 – 2.8
• Mozilla / seamonkey2.8 – 2.8
• Mozilla / seamonkey2.8 – 2.8
• Mozilla / seamonkey2.9 – 2.9
• Mozilla / seamonkey2.9
• Mozilla / seamonkey1.0 – 1.0
• Mozilla / seamonkey1.0 – 1.0
• Mozilla / seamonkey1.0 – 1.0
• Mozilla / seamonkey1.0.1 – 1.0.1
• Mozilla / seamonkey1.0.2 – 1.0.2
• Mozilla / seamonkey1.0.3 – 1.0.3
• Mozilla / seamonkey1.0.4 – 1.0.4
• Mozilla / seamonkey1.0.5 – 1.0.5
• Mozilla / seamonkey1.0.6 – 1.0.6
• Mozilla / seamonkey1.0.7 – 1.0.7
• Mozilla / seamonkey1.0.8 – 1.0.8
• Mozilla / seamonkey1.0.9 – 1.0.9
• Mozilla / seamonkey1.1 – 1.1
• Mozilla / seamonkey1.1 – 1.1
• Mozilla / seamonkey1.1 – 1.1
• Mozilla / seamonkey1.1.1 – 1.1.1
• Mozilla / seamonkey1.1.2 – 1.1.2
• Mozilla / seamonkey1.1.3 – 1.1.3
• Mozilla / seamonkey1.1.4 – 1.1.4
• Mozilla / seamonkey1.1.5 – 1.1.5
• Mozilla / seamonkey1.1.6 – 1.1.6
• Mozilla / seamonkey1.1.7 – 1.1.7
• Mozilla / seamonkey1.1.8 – 1.1.8
• Mozilla / seamonkey1.1.9 – 1.1.9
• Mozilla / seamonkey1.1.10 – 1.1.10
• Mozilla / seamonkey1.1.11 – 1.1.11
• Mozilla / seamonkey1.1.12 – 1.1.12
• Mozilla / seamonkey1.1.13 – 1.1.13
• Mozilla / seamonkey1.1.14 – 1.1.14
• Mozilla / seamonkey1.1.15 – 1.1.15
• Mozilla / seamonkey1.1.16 – 1.1.16
• Mozilla / seamonkey1.1.17 – 1.1.17
• Mozilla / seamonkey1.1.18 – 1.1.18
• Mozilla / seamonkey1.1.19 – 1.1.19
• Mozilla / seamonkey1.5.0.8 – 1.5.0.8
• Mozilla / seamonkey1.5.0.9 – 1.5.0.9
• Mozilla / seamonkey1.5.0.10 – 1.5.0.10
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0 – 2.0
• Mozilla / seamonkey2.0.1 – 2.0.1
• Mozilla / seamonkey2.0.2 – 2.0.2
• Mozilla / seamonkey2.0.3 – 2.0.3
• Mozilla / seamonkey2.0.4 – 2.0.4
• Mozilla / seamonkey2.0.5 – 2.0.5
• Mozilla / seamonkey2.0.6 – 2.0.6
• Mozilla / seamonkey2.0.7 – 2.0.7
• Mozilla / seamonkey2.0.8 – 2.0.8
• Mozilla / seamonkey2.0.9 – 2.0.9
• Mozilla / seamonkey2.0.10 – 2.0.10
• Mozilla / seamonkey2.0.11 – 2.0.11
• Mozilla / seamonkey2.0.12 – 2.0.12
• Mozilla / seamonkey2.0.13 – 2.0.13
• Mozilla / seamonkey2.0.14 – 2.0.14
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.1 – 2.1
• Mozilla / seamonkey2.2 – 2.2
• Mozilla / seamonkey2.2 – 2.2
• Mozilla / seamonkey2.2 – 2.2
• Mozilla / seamonkey2.2 – 2.2
• Mozilla / seamonkey2.3 – 2.3
• Mozilla / seamonkey2.3 – 2.3
• Mozilla / seamonkey2.3 – 2.3
• Mozilla / seamonkey2.3 – 2.3
• Mozilla / seamonkey2.3.1 – 2.3.1
• Mozilla / seamonkey2.3.2 – 2.3.2
• Mozilla / seamonkey2.3.3 – 2.3.3
• Mozilla / seamonkey2.4 – 2.4
• Mozilla / seamonkey2.4 – 2.4
• Mozilla / seamonkey2.4 – 2.4
• Mozilla / seamonkey2.4 – 2.4
• Mozilla / seamonkey2.4.1 – 2.4.1
• Mozilla / seamonkey2.5 – 2.5
• Mozilla / seamonkey2.5 – 2.5
• Mozilla / seamonkey2.5 – 2.5
• Mozilla / seamonkey2.5 – 2.5
• Mozilla / seamonkey2.5 – 2.5
• Mozilla / seamonkey2.6 – 2.6
• Mozilla / seamonkey2.6 – 2.6
• Mozilla / Thunderbird5.0 – 5.0
• Mozilla / Thunderbird6.0.1 – 6.0.1
• Mozilla / Thunderbird6.0.2 – 6.0.2
• Mozilla / Thunderbird7.0 – 7.0
• Mozilla / Thunderbird7.0.1 – 7.0.1
• Mozilla / Thunderbird8.0 – 8.0
• Mozilla / Thunderbird9.0 – 9.0
• Mozilla / Thunderbird9.0.1 – 9.0.1
• Mozilla / Thunderbird10.0 – 10.0
• Mozilla / Thunderbird10.0.1 – 10.0.1
• Mozilla / Thunderbird10.0.2 – 10.0.2
• Mozilla / Thunderbird10.0.3 – 10.0.3
• Mozilla / Thunderbird10.0.4 – 10.0.4
• Mozilla / Thunderbird11.0 – 11.0
• Mozilla / Thunderbird6.0 – 6.0
• Mozilla / Thunderbird ESR10.0.1 – 10.0.1
• Mozilla / Thunderbird ESR10.0.2 – 10.0.2
• Mozilla / Thunderbird ESR10.0.3 – 10.0.3
• Mozilla / Thunderbird ESR10.0.4 – 10.0.4
• Mozilla / Thunderbird ESR10.0 – 10.0

References

• MISChttp://www.mozilla.org/security/announce/2012/mfsa2012-23.html
• VENDOR_ADVISORYhttp://secunia.com/advisories/48922
• MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16989
• MISChttps://bugzilla.mozilla.org/show_bug.cgi?id=734288
• VENDOR_ADVISORYhttp://secunia.com/advisories/49055
• VENDOR_ADVISORYhttp://www.debian.org/security/2012/dsa-2458
• VENDOR_ADVISORYhttp://secunia.com/advisories/48920
• VENDOR_ADVISORYhttp://www.debian.org/security/2012/dsa-2457
• VENDOR_ADVISORYhttp://www.debian.org/security/2012/dsa-2464
• VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDVSA-2012:081
• VENDOR_ADVISORYhttp://secunia.com/advisories/48972
• MISChttp://www.securityfocus.com/bid/53225
• VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDVSA-2012:066
• VENDOR_ADVISORYhttp://secunia.com/advisories/49047