lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <1309593173.20090709121947@Zoller.lu>
Date: Thu, 9 Jul 2009 12:19:47 +0200
From: Thierry Zoller <Thierry@...ler.lu>
To: bugtraq <bugtraq@...urityfocus.com>,
	full-disclosure <full-disclosure@...ts.grok.org.uk>,
	<info@...cl.etat.lu>, <vuln@...unia.com>, <cert@...t.org>,
	<nvd@...t.gov>, <cve@...re.org>
Subject: Update: [TZO-27-2009] Firefox Denial of Service (Keygen)


Update
------
Unfortunately the Denial of Service condition has not been fixed
with the new versions/builds and according to tickets filled
under the bugzilla ID the impact of this bug has changed since
version 3.5. [1]

Hence the list of affected products now is :
- All versions below Firefox 3.5

[1]
--- Comment #28 from PBForeman <dufalcon@...oo.com>  2009-07-08 09:14:00 PDT ---
When FF3.5 is open, cpu eventually runs 99%, using over 100,000K of memory.
Closing FF does not stop the cpu or memory usage. Closing with Task Manager is
the only way to exit FF.  Previous versions of FF all ran stable, problem
started with 3.5.  Closing and restarting does not solve the problem. Removing
program and reinstalling clean does not solve anything. Same settings were used
from previous version to install FF3.5. Once cpu maxes out, FF ties up entire computer.




Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ