Launchpad CVE tracker

CVE 2005-0989

The find_replen function in jsstr.c in the Javascript engine for Mozilla Suite 1.7.6, Firefox 1.0.1 and 1.0.2, and Netscape 7.2 allows remote attackers to read portions of heap memory in a Javascript string via the lambda replace method.

Related bugs and status

CVE-2005-0989 (Candidate) is related to these bugs:

Bug #15339: mozilla-thunderbird: FTBFS (gcc-4.0/amd64/ppc64): array type has incomplete element type

Summary				In	Importance	Status
	15339	mozilla-thunderbird: FTBFS (gcc-4.0/amd64/ppc64): array type has incomplete element type		mozilla-thunderbird (Ubuntu)	High	Fix Released
	15339	mozilla-thunderbird: FTBFS (gcc-4.0/amd64/ppc64): array type has incomplete element type		mozilla-thunderbird (Debian)	Unknown	Fix Released

Bug #19078: Multiple vulnerabilities in Thunderbird 1.0.2

Summary				In	Importance	Status
	19078	Multiple vulnerabilities in Thunderbird 1.0.2		mozilla-thunderbird (Ubuntu)	Medium	Fix Released

Bug #20324: mozilla-thunderbird: Multiple security problems (fixed in sarge/sid, not-fixed in etch)

Summary				In	Importance	Status
	20324	mozilla-thunderbird: Multiple security problems (fixed in sarge/sid, not-fixed in etch)		mozilla-thunderbird (Ubuntu)	High	Fix Released
	20324	mozilla-thunderbird: Multiple security problems (fixed in sarge/sid, not-fixed in etch)		mozilla-thunderbird (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2005-0989

References