Download Firefox

Firefox is no longer supported on Windows 8.1 and below.

Please download Firefox ESR (Extended Support Release) to use Firefox.

Firefox is no longer supported on macOS 10.14 and below.

Please download Firefox ESR (Extended Support Release) to use Firefox.

Firefox Privacy Notice

Mozilla Foundation Security Advisory 2008-45

XBM image uninitialized memory reading

Announced
September 23, 2008
Reporter
Billy Hoffman
Impact
Low
Products
Firefox, SeaMonkey
Fixed in
  • Firefox 2.0.0.17
  • SeaMonkey 1.1.12

Description

Security researcher Billy Hoffman discovered a bug in the XBM decoder that allowed random small chunks of uninitialized memory to be read. The severity of this bug was low and did not appear to cause any memory corruption.

Firefox 3 is not affected by this issue

References