Mozilla Foundation Security Advisory 2009-63

Mozilla Foundation Security Advisory 2009-63

Title: Upgrade media libraries to fix memory safety bugs
Impact: Critical
Announced: October 27, 2009
Reporter: Mozilla community and developers
Products: Firefox

Fixed in: Firefox 3.5.4
Description

Mozilla upgraded several third party libraries used in media rendering to address multiple memory safety and stability bugs identified by members of the Mozilla community. Some of the bugs discovered could potentially be used by an attacker to crash a victim's browser and execute arbitrary code on their computer. liboggz, libvorbis, and liboggplay were all upgraded to address these issues.

Audio and video capabilities were added in Firefox 3.5 so prior releases of Firefox were not affected.
References

Georgi Guninski reported a crash in liboggz.

* liboggz bugs
* CVE-2009-3377

Lucas Adamski, Matthew Gregan, David Keeler, and Dan Kaminsky reported crashes in libvorbis.

* libvorbis bugs
* CVE-2009-3379

Juan Becerra reported a crash in liboggplay.

* https://bugzilla.mozilla.org/show_bug.cgi?id=500311
* CVE-2009-3378