Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27607
HistoryFeb 03, 2012 - 12:00 a.m.

Mozilla Foundation Security Advisory 2012-06

2012-02-0300:00:00
vulners.com
44

Mozilla Foundation Security Advisory 2012-06

Title: Uninitialized memory appended when encoding icon images may cause information disclosure
Impact: High
Announced: January 31, 2012
Reporter: Tim Abraldes
Products: Firefox, Thunderbird, SeaMonkey

Fixed in: Firefox 10.0
Thunderbird 10.0
SeaMonkey 2.7
Description

Mozilla developer Tim Abraldes reported that when encoding images as image/vnd.microsoft.icon the resulting data was always a fixed size, with uninitialized memory appended as padding beyond the size of the actual image. This is the result of mImageBufferSize in the encoder being initialized with a value different than the size of the source image. There is the possibility of sensitive data from uninitialized memory being appended to a PNG image when converted fron an ICO format image. This sensitive data may then be disclosed in the resulting image.

Firefox 3.6 and Thunderbird 3.1 are not affected by this vulnerability

References

image/vnd.microsoft.icon output contains uninitialized bytes
CVE-2012-0447

Related for SECURITYVULNS:DOC:27607