CVE-2008-3444

Publication date 4 August 2008

Last updated 24 July 2024

The content layout component in Mozilla Firefox 3.0 and 3.0.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted but well-formed web page that contains "a simple set of legitimate HTML tags."

Status

Show unmaintained releases

Package	Ubuntu Release	Status
firefox	9.04 jaunty	Not in release
	8.10 intrepid	Not in release
	8.04 LTS hardy	Not affected
	7.10 gutsy	Not affected
	7.04 feisty	Not affected
	6.06 LTS dapper	Not affected
firefox-3.0	9.04 jaunty	Fixed 3.0.8+nobinonly-0ubuntu3
	8.10 intrepid	Fixed 3.0.12+build1+nobinonly-0ubuntu0.8.10.1
	8.04 LTS hardy	Fixed 3.0.12+build1+nobinonly-0ubuntu0.8.04.1
	7.10 gutsy	Ignored
	7.04 feisty	Not in release
	6.06 LTS dapper	Not in release
iceweasel	9.04 jaunty	Not in release
	8.10 intrepid	Not in release
	8.04 LTS hardy	Not in release
	7.10 gutsy	Not in release
	7.04 feisty	Not in release
	6.06 LTS dapper	Not in release
xulrunner	9.04 jaunty	Not affected
	8.10 intrepid	Not affected
	8.04 LTS hardy	Not affected
	7.10 gutsy	Not affected
	7.04 feisty	Not affected
	6.06 LTS dapper	Not in release
xulrunner-1.9	9.04 jaunty	Fixed 1.9.0.8+nobinonly-0ubuntu2
	8.10 intrepid	Fixed 1.9.0.12+build1+nobinonly-0ubuntu0.8.10.2
	8.04 LTS hardy	Fixed 1.9.0.12+build1+nobinonly-0ubuntu0.8.04.1
	7.10 gutsy	Ignored
	7.04 feisty	Not in release
	6.06 LTS dapper	Not in release

References

Other references

https://www.cve.org/CVERecord?id=CVE-2008-3444