CVE-2013-1055

Publication date 7 April 2021

Last updated 24 July 2024

Ubuntu priority

Cvss 3 Severity Score

The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an action to the launcher and updating it with new callbacks until the libunity-webapps rate limit was hit. Fixed in 3.0.0+14.04.20140416-0ubuntu1.14.04.1 of unity-firefox-extension and in all versions of libunity-webapps by shipping an empty unity-firefox-extension package, thus disabling the extension entirely and invalidating the attack against the libunity-webapps package.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
unity-firefox-extension	15.10 wily	Not in release
	15.04 vivid	Fixed 3.0.0+14.04.20140416-0ubuntu1.15.04.1
	14.04 LTS trusty	Fixed 3.0.0+14.04.20140416-0ubuntu1.14.04.1
	13.10 saucy	Ignored
	13.04 raring	Ignored
	12.10 quantal	Ignored
	12.04 LTS precise	Not in release
	10.04 LTS lucid	Not in release

Notes

mdeslaur

plugin was disabled by shipping empty packages

Severity score breakdown

Parameter	Value
Base score	4.3 · Medium
Attack vector	Network
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	None
Integrity impact	None
Availability impact	Low
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

References

Other references

https://www.cve.org/CVERecord?id=CVE-2013-1055