CVE-2013-1728

Publication date 17 September 2013

Last updated 24 July 2024

The IonMonkey JavaScript engine in Mozilla Firefox before 24.0, Thunderbird before 24.0, and SeaMonkey before 2.21, when Valgrind mode is used, does not properly initialize memory, which makes it easier for remote attackers to obtain sensitive information via unspecified vectors.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
firefox	13.04 raring	Fixed 24.0+build1-0ubuntu0.13.04.1
	12.10 quantal	Fixed 24.0+build1-0ubuntu0.12.10.1
	12.04 LTS precise	Fixed 24.0+build1-0ubuntu0.12.04.1
	10.04 LTS lucid	Ignored
thunderbird	13.04 raring	Fixed 1:24.0+build1-0ubuntu0.13.04.1
	12.10 quantal	Fixed 1:24.0+build1-0ubuntu0.12.10.1
	12.04 LTS precise	Fixed 1:24.0+build1-0ubuntu0.12.04.1
	10.04 LTS lucid	Ignored

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-1952-1
Thunderbird vulnerabilities
18 September 2013

USN-1951-1
Firefox vulnerabilities
17 September 2013

Other references

http://www.mozilla.org/security/announce/2013/mfsa2013-85.html
https://www.cve.org/CVERecord?id=CVE-2013-1728