You are here: Security Center > Mozilla Foundation Security Advisories > MFSA 2013-85

Mozilla Foundation Security Advisory 2013-85

Title: Uninitialized data in IonMonkey
Impact: Moderate
Announced: September 17, 2013
Reporter: Dan Gohman
Products: Firefox, Seamonkey

Fixed in: Firefox 24.0
  Thunderbird 24.0
  Seamonkey 2.21

Description

Software developer Dan Gohman of Google reported uninitialized data and variables in the IonMonkey Javascript engine when running the engine in Valgrind mode. This could be combined with additional exploits to allow the reading and use of previously allocated memory in some circumstances.

References