Debian Security Advisory 1922 xulrunner – Several Vulnerabilities

27
Article Source Debian Security Advisories
October 27, 2009, 5:00 pm

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications, such as the Iceweasel web browser. The Common Vulnerabilities and Exposures project identifies the following problems:

  • CVE-2009-3380

    Vladimir Vukicevic, Jesse Ruderman, Martijn Wargers, Daniel Banchero, David Keeler and Boris Zbarsky reported crashes in layout engine, which might allow the execution of arbitrary code.

  • CVE-2009-3382

    Carsten Book reported a crash in the layout engine, which might allow the execution of arbitrary code…