Mozilla Foundation Security Advisory 2008-45

XBM image uninitialized memory reading

Announced
September 23, 2008
Reporter
Billy Hoffman
Impact
Low
Products
Firefox, SeaMonkey
Fixed in
  • Firefox 2.0.0.17
  • SeaMonkey 1.1.12

Description

Security researcher Billy Hoffman discovered a bug in the XBM decoder that allowed random small chunks of uninitialized memory to be read. The severity of this bug was low and did not appear to cause any memory corruption.

Firefox 3 is not affected by this issue

References