• Security Center
  • Security Advisories
  • Known Vulnerabilities
  • Bug Bounty
  • Security Blog

You are here: Security Center > Mozilla Foundation Security Advisories > MFSA 2012-94

Mozilla Foundation Security Advisory 2012-94

Title: Crash when combining SVG text on path with CSS
Impact: Critical
Announced: November 20, 2012
Reporter: Jonathan Stephens
Products: Firefox, Thunderbird, SeaMonkey

Fixed in: Firefox 17.0
  Thunderbird 17.0
  SeaMonkey 2.14

Description

Security researcher Jonathan Stephens discovered that combining SVG text on a path with the setting of CSS properties could lead to a potentially exploitable crash.

References

• SVG text on path + setting a style crashes Firefox
• CVE-2012-5836