Launchpad CVE tracker

CVE 2009-0776

nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to bypass the same-origin policy and read XML data from another domain via a cross-domain redirect.

Related bugs and status

CVE-2009-0776 (Candidate) is related to these bugs:

Bug #152516: kompozer tip dialog does not close, if main dialog is destroyed

Summary				In	Importance	Status
	152516	kompozer tip dialog does not close, if main dialog is destroyed		kompozer (Ubuntu)	Undecided	Fix Released
	152516	kompozer tip dialog does not close, if main dialog is destroyed		KompoZer	Unknown	Unknown

Bug #244227: KompoZer cannot display the right Chinese fonts

Summary				In	Importance	Status
	244227	KompoZer cannot display the right Chinese fonts		kompozer (Ubuntu)	Undecided	Fix Released

Bug #260021: kompozer-bin crashed with SIGSEGV in nsTimerImpl::Fire()

Summary				In	Importance	Status
	260021	kompozer-bin crashed with SIGSEGV in nsTimerImpl::Fire()		kompozer (Ubuntu)	Medium	Fix Released

Bug #263441: kompozer crashes in intrepid when opening the recent files menu

Summary				In	Importance	Status
	263441	kompozer crashes in intrepid when opening the recent files menu		kompozer (Ubuntu)	Undecided	Fix Released
	263441	kompozer crashes in intrepid when opening the recent files menu		Baltix	Undecided	New

Bug #276290: kompozer-bin crashed with SIGSEGV in g_closure_invoke()

Summary				In	Importance	Status
	276290	kompozer-bin crashed with SIGSEGV in g_closure_invoke()		kompozer (Ubuntu)	Medium	Fix Released

Bug #309655: Seamonkey 1.1.14 security upgrade

		In	Importance	Status
309655	Seamonkey 1.1.14 security upgrade	seamonkey (Ubuntu)	Critical	Fix Released
309655	Seamonkey 1.1.14 security upgrade	seamonkey (Ubuntu Hardy)	Critical	Fix Released
309655	Seamonkey 1.1.14 security upgrade	seamonkey (Ubuntu Intrepid)	Critical	Fix Released

Bug #365163: kompozer keeps crashing

Summary				In	Importance	Status
	365163	kompozer keeps crashing		kompozer (Ubuntu)	Undecided	Fix Released

Bug #373986: No selection list when creating a new css style rule

Summary				In	Importance	Status
	373986	No selection list when creating a new css style rule		kompozer (Ubuntu)	Undecided	Fix Released

Bug #375506: Can't open php files, and kompozer is the predeterminate option

Summary				In	Importance	Status
	375506	Can't open php files, and kompozer is the predeterminate option		kompozer (Ubuntu)	Undecided	Fix Released

Bug #428125: [Karmic] kompozer cannot connect via ftp

Summary				In	Importance	Status
	428125	[Karmic] kompozer cannot connect via ftp		kompozer (Ubuntu)	Undecided	Fix Released

Bug #453079: [Update package] KompoZer 0.8b1

Summary				In	Importance	Status
	453079	[Update package] KompoZer 0.8b1		kompozer (Ubuntu)	Undecided	Fix Released

Bug #469752: firefox,3.5/3.6 startup-notification bug

		In	Importance	Status
469752	firefox,3.5/3.6 startup-notification bug	firefox-3.5 (Ubuntu)	Medium	Invalid
469752	firefox,3.5/3.6 startup-notification bug	Mozilla Firefox	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox-3.5 (Suse)	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox (Ubuntu)	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox (Ubuntu Lucid)	Medium	Fix Released
469752	firefox,3.5/3.6 startup-notification bug	firefox-3.5 (Ubuntu Lucid)	Medium	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2009-0776

References