CVE-2013-0792

Publication date 3 April 2013

Last updated 24 July 2024


Ubuntu priority

Mozilla Firefox before 20.0 and SeaMonkey before 2.17, when gfx.color_management.enablev4 is used, do not properly handle color profiles during PNG rendering, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a grayscale PNG image.

Status

Package Ubuntu Release Status
firefox 13.10 saucy
Fixed 20.0+build1-0ubuntu1
13.04 raring
Fixed 20.0+build1-0ubuntu1
12.10 quantal
Fixed 20.0+build1-0ubuntu0.12.10.3
12.04 LTS precise
Fixed 20.0+build1-0ubuntu0.12.04.3
11.10 oneiric
Fixed 20.0+build1-0ubuntu0.11.10.3
10.04 LTS lucid
Fixed 20.0+build1-0ubuntu0.10.04.3
8.04 LTS hardy Ignored end of life
seamonkey 13.10 saucy Not in release
13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise Not in release
11.10 oneiric Ignored end of life
10.04 LTS lucid Ignored end of life
8.04 LTS hardy Ignored end of life

References

Related Ubuntu Security Notices (USN)

Other references