Mozilla Foundation Security Advisory 2012-62
Title: WebGL use-after-free and memory
Announced: August 28, 2012
Products: Firefox, Thunderbird, SeaMonkey
Fixed in: Firefox 15
Firefox ESR 10.0.7
Thunderbird ESR 10.0.7
Security researcher miaubiz used the Address Sanitizer tool to discover two WebGL issues. The first issue is a use-after-free when WebGL shaders are called after being destroyed. The second issue exposes a problem with Mesa drivers on Linux, leading to a potentially exploitable crash.