Closed Bug 496265 (CVE-2009-2044) Opened 11 years ago Closed 11 years ago

firefox crash causing by failing to load gif image as body background. [XError: 'BadAlloc (insufficient resources for operation)']

Categories

(Firefox :: General, defect, critical)

3.0 Branch
All
Linux
defect
Not set
critical

Tracking

()

RESOLVED DUPLICATE of bug 424333

People

(Reporter: y3dips, Unassigned)

References

()

Details

(Keywords: platform-parity, Whiteboard: [sg:dos] x11 only, 1.9.0 branch only)

Attachments

(1 file)

User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.10) Gecko/2009050806 Gentoo Firefox/3.0.10
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.10) Gecko/2009050806 Gentoo Firefox/3.0.10

http://y3dips.echo.or.id/tempe/ff310expl/

detail exploit

<body background="exploit.gif">

while, the exploit.gif are general gif images

Reproducible: Always
Do you have breakpad ids?
Type about:crashes in the url bar and copy paste the breakpad ids you have about this crash into this bug report.
For more info, see:
http://support.mozilla.com/en-US/kb/Mozilla+Crash+Reporter#Viewing_crash_reports
Keywords: pp
Hardware: x86 → All
Summary: firefox rash causing by failing to load gif image as body background. → firefox crash causing by failing to load gif image as body background. [XError: 'BadAlloc (insufficient resources for operation)']
Whiteboard: [sg:dos] x11 only, 1.9.0 branch only
Version: unspecified → 3.0 Branch
Attached file stack
Applying the cairo patch:
http://cgit.freedesktop.org/cairo/commit/?id=2cf82eaf0d08e68b787bb0792da97e73d8d4ce38
and attachment 344529 [details] [diff] [review] in bug 424333 seems to fix it.
I get the same behaviour as 1.9.1 and trunk: not painting the background at all.
Status: UNCONFIRMED → RESOLVED
Closed: 11 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 424333
Alias: CVE-2009-2044
Group: core-security
You need to log in before you can comment on or make changes to this bug.