Mozilla Foundation Security Advisory 2013-85

Uninitialized data in IonMonkey

Announced
September 17, 2013
Reporter
Dan Gohman
Impact
Moderate
Products
Firefox, SeaMonkey, Thunderbird
Fixed in
  • Firefox 24
  • SeaMonkey 2.21
  • Thunderbird 24

Description

Software developer Dan Gohman of Google reported uninitialized data and variables in the IonMonkey Javascript engine when running the engine in Valgrind mode. This could be combined with additional exploits to allow the reading and use of previously allocated memory in some circumstances.

References