1
Candidate: CVE-2010-3177
3
PublicDateAtUSN: 2010-10-19
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3177
6
https://usn.ubuntu.com/usn/usn-997-1
8
Multiple cross-site scripting (XSS) vulnerabilities in the Gopher parser in
9
Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, and SeaMonkey before
10
2.0.9, allow remote attackers to inject arbitrary web script or HTML via a
11
crafted name of a (1) file or (2) directory on a Gopher server.
14
jdstrand> CVEs in Firefox are tracked in the xulrunner source packages for
15
builds that use the system xulrunner, and firefox source packages for those
16
that use a static build
17
xulrunner (1.8.0): firefox (1.5) - Ubuntu 6.06 LTS (system xul)
18
xulrunner (1.8.1): firefox (2.0) - Ubuntu 6.10 - 8.04 LTS (system xul)
19
xulrunner-1.9: (ignored) reverse dependencies no longer process web content
20
xulrunner-1.9.1: (ignored) reverese dependencies no longer process web content
21
xulrunner-1.9.2: system xul for reverese dependencies that process web content
22
firefox: Ubuntu 6.06 LTS (static build)
23
firefox: Ubuntu 10.04 LTS and higher (static build of 3.6.x or higher)
24
firefox-3.0: Ubuntu 8.04 LTS, 9.04 (static build of 3.6.x)
25
firefox-3.5: Ubuntu 9.04 (ignored, uses system xul 1.9.1. Use 3.0 instead)
26
firefox-3.5: Ubuntu 9.10 (static build of 3.6.x)
30
Assigned-to: chriscoulson
33
upstream_firefox: released (3.6.11)
34
dapper_firefox: ignored (reached end-of-life)
35
hardy_firefox: ignored (uses system xulrunner)
38
lucid_firefox: released (3.6.11+build3+nobinonly-0ubuntu0.10.04.1)
39
maverick_firefox: released (3.6.11+build3+nobinonly-0ubuntu0.10.10.1)
40
devel_firefox: released (3.6.11+build3+nobinonly-0ubuntu0.10.10.1)
43
upstream_firefox-3.0: needs-triage (Ubuntu source uses 3.6.x)
44
dapper_firefox-3.0: DNE
45
hardy_firefox-3.0: released (3.6.11+build3+nobinonly-0ubuntu0.8.04.1)
46
jaunty_firefox-3.0: released (3.6.11+build3+nobinonly-0ubuntu0.9.04.1)
47
karmic_firefox-3.0: DNE
48
lucid_firefox-3.0: DNE
49
maverick_firefox-3.0: DNE
50
devel_firefox-3.0: DNE
53
upstream_firefox-3.5: needs-triage (Ubuntu source uses 3.6.x)
54
dapper_firefox-3.5: DNE
55
hardy_firefox-3.5: DNE
56
jaunty_firefox-3.5: released (3.5.14+build3+nobinonly-0ubuntu0.9.04.1)
57
karmic_firefox-3.5: released (3.6.11+build3+nobinonly-0ubuntu0.9.10.1)
58
lucid_firefox-3.5: DNE
59
maverick_firefox-3.5: DNE
60
devel_firefox-3.5: DNE
63
Patches_xulrunner-1.9.1:
64
upstream_xulrunner-1.9.1: released (1.9.1.14)
65
dapper_xulrunner-1.9.1: DNE
66
hardy_xulrunner-1.9.1: DNE
67
jaunty_xulrunner-1.9.1: released (1.9.1.14+build4+nobinonly-0ubuntu0.9.04.1)
68
karmic_xulrunner-1.9.1: released (1.9.1.14+build4+nobinonly-0ubuntu0.9.10.1)
69
lucid_xulrunner-1.9.1: DNE
70
maverick_xulrunner-1.9.1: DNE
71
devel_xulrunner-1.9.1: DNE
74
Patches_xulrunner-1.9.2:
75
upstream_xulrunner-1.9.2: released (1.9.2.11)
76
dapper_xulrunner-1.9.2: DNE
77
hardy_xulrunner-1.9.2: released (1.9.2.11+build3+nobinonly-0ubuntu0.8.04.1)
78
jaunty_xulrunner-1.9.2: released (1.9.2.11+build3+nobinonly-0ubuntu0.9.04.1)
79
karmic_xulrunner-1.9.2: released (1.9.2.11+build3+nobinonly-0ubuntu0.9.10.1)
80
lucid_xulrunner-1.9.2: released (1.9.2.11+build3+nobinonly-0ubuntu0.10.04.1)
81
maverick_xulrunner-1.9.2: released (1.9.2.11+build3+nobinonly-0ubuntu0.10.10.1)
82
devel_xulrunner-1.9.2: released (1.9.2.11+build3+nobinonly-0ubuntu0.10.10.1)
86
upstream_seamonkey: released (2.0.9)
88
hardy_seamonkey: released (2.0.9+build1+nobinonly-0ubuntu0.8.04.1)
89
jaunty_seamonkey: released (2.0.9+build1+nobinonly-0ubuntu0.9.04.1)
90
karmic_seamonkey: released (2.0.9+build1+nobinonly-0ubuntu0.9.10.1)
91
lucid_seamonkey: released (2.0.9+build1+nobinonly-0ubuntu0.10.04.1)
92
maverick_seamonkey: released (2.0.9+build1+nobinonly-0ubuntu0.10.10.1)
93
devel_seamonkey: released (2.0.9+build1+nobinonly-0ubuntu0.10.10.1)