Lucene search
Mozilla FoundationMFSA2012-26HistoryApr 24, 2012 - 12:00 a.m.
WebGL.drawElements may read illegal video memory due to FindMaxUshortElement error — Mozilla
2012-04-2400:00:00
Mozilla Foundation
www.mozilla.org
20
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
73.7%
Mozilla community member Matias Juntunen discovered an error in WebGLBuffer where FindMaxElementInSubArray receives wrong template arguments from FindMaxUshortElement. This bug causes maximum index to be computed incorrectly within WebGL.drawElements, allowing the reading of illegal video memory.
Affected configurations
Node
mozillafirefoxRange<12
ORmozillafirefox_esrRange<10.0.4
ORmozillaseamonkeyRange<2.9
ORmozillathunderbirdRange<12
ORmozillathunderbird_esrRange<10.0.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| firefox | lt | 12 | |
| firefox esr | lt | 10.0.4 | |
| seamonkey | lt | 2.9 | |
| thunderbird | lt | 12 | |
| thunderbird esr | lt | 10.0.4 |
Related
openvas
openvas
Mozilla Firefox Security Advisory (MFSA2012-26) - Linux
2021-11-11 00:00:00
Ubuntu: Security Advisory (USN-1430-2)
2012-04-30 00:00:00
CentOS Update for firefox CESA-2012:0515 centos5
2012-07-30 00:00:00
ubuntucve
ubuntucve
CVE-2012-0473
2012-04-25 00:00:00
nvd
nvd
CVE-2012-0473
2012-04-25 10:10:17
cve
cve
CVE-2012-0473
2012-04-25 10:10:17
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:09:10
prion
prion
Design/Logic Flaw
2012-04-25 10:10:00
cvelist
cvelist
CVE-2012-0473
2012-04-25 10:00:00
nessus
nessus
Mozilla Thunderbird 10.0.x < 10.0.4 Multiple Vulnerabilities
2012-04-27 00:00:00
Thunderbird 10.0.x < 10.0.4 Multiple Vulnerabilities (Mac OS X)
2012-04-27 00:00:00
Firefox < 10.0.4 Multiple Vulnerabilities (Mac OS X)
2012-04-27 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2012-04-25 00:00:00
firefox security update
2012-04-25 00:00:00
redhat
redhat
(RHSA-2012:0515) Critical: firefox security update
2012-04-24 00:00:00
(RHSA-2012:0516) Critical: thunderbird security update
2012-04-24 00:00:00
centos
centos
firefox, xulrunner security update
2012-04-25 01:27:20
thunderbird security update
2012-04-25 01:30:17
ubuntu
ubuntu
Firefox vulnerabilities
2012-04-27 00:00:00
ubufox update
2012-04-27 00:00:00
Thunderbird vulnerabilities
2012-05-04 00:00:00
suse
suse
Security update for MozillaFirefox (important)
2012-06-02 02:08:30
Security update for Mozilla Firefox (important)
2012-05-02 19:08:16
Firefox update to 31.1esr (important)
2014-09-09 18:04:16
freebsd
freebsd
mozilla -- multiple vulnerabilities
2012-04-24 00:00:00
securityvulns
securityvulns
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2012-05-09 00:00:00
gentoo
gentoo
Mozilla Products: Multiple vulnerabilities
2013-01-08 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.004 Low
EPSS
Percentile
73.7%
Related for MFSA2012-26