Mandriva Linux Security Advisory : firefox (MDVSA-2012:017)
High Nessus Plugin ID 57912
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUse-after-free vulnerability in Mozilla Firefox 10.x before 10.0.1, Thunderbird 10.x before 10.0.1, and SeaMonkey 2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger failure of an nsXBLDocumentInfo::ReadPrototypeBindings function call, related to the cycle collector's access to a hash table containing a stale XBL binding (CVE-2012-0452).
SolutionUpdate the affected packages.