Secunia Logo  
 Vulnerability IntelligenceVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Debian update for mozilla-firefox
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Debian update for mozilla-firefox
Secunia Advisory: SA22849
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2006-11-14
Popularity: 6,122 views

Critical:
Highly critical
Impact: Security Bypass
Spoofing
DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.1
Debian GNU/Linux unstable alias sid
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2006-2788
CVE-2006-4340
CVE-2006-4565
CVE-2006-4566
CVE-2006-4568
CVE-2006-4571
Description:
Debian has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing and DoS (Denial of Service) attacks, bypass certain security restrictions and potentially compromise a user's system.

For more information:
SA21906

Solution:
Apply updated packages.

-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updat...ox/mozilla-firefox_1.0.4-2sarge12.dsc
Size/MD5 checksum: 1003 751f0df80be8491ac3b24e902da6e3cb
http://security.debian.org/pool/updat...ozilla-firefox_1.0.4-2sarge12.diff.gz
Size/MD5 checksum: 441420 8b1078ef98ff79137869c932999d3957
http://security.debian.org/pool/updat...fox/mozilla-firefox_1.0.4.orig.tar.gz
Size/MD5 checksum: 40212297 8e4ba81ad02c7986446d4e54e978409d

Alpha architecture:

http://security.debian.org/pool/updat...illa-firefox_1.0.4-2sarge12_alpha.deb
Size/MD5 checksum: 11181154 771ba85fbf21e6419d87820fc6f19a9a
http://security.debian.org/pool/updat...om-inspector_1.0.4-2sarge12_alpha.deb
Size/MD5 checksum: 170352 f2c75d2fb5ab8684a20ba6fc08585cdb
http://security.debian.org/pool/updat...nome-support_1.0.4-2sarge12_alpha.deb
Size/MD5 checksum: 62166 79fd193ea817fc1f466a57e4a37d74fa

AMD64 architecture:

http://security.debian.org/pool/updat...illa-firefox_1.0.4-2sarge12_amd64.deb
Size/MD5 checksum: 9411492 3c3704ef1014e0d9dc38ece9d16a36d4
http://security.debian.org/pool/updat...om-inspector_1.0.4-2sarge12_amd64.deb
Size/MD5 checksum: 165132 54e7468747e04dc1449faa8ff9c123b4
http://security.debian.org/pool/updat...nome-support_1.0.4-2sarge12_amd64.deb
Size/MD5 checksum: 60700 a8ac42c24a29be9b260a0ec426b83f1c

ARM architecture:

http://security.debian.org/pool/updat...ozilla-firefox_1.0.4-2sarge12_arm.deb
Size/MD5 checksum: 8232340 0d9f98d7a3bc7bcef0d759b98061c79b
http://security.debian.org/pool/updat...-dom-inspector_1.0.4-2sarge12_arm.deb
Size/MD5 checksum: 156586 7b74819b6afa58f7c485fb581ace3501
http://security.debian.org/pool/updat...-gnome-support_1.0.4-2sarge12_arm.deb
Size/MD5 checksum: 55998 08e378fe351fc437422ea242ff83a60c

HP Precision architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_hppa.deb
Size/MD5 checksum: 10285622 0558779439806d577d49c812255c6d0d
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_hppa.deb
Size/MD5 checksum: 168054 cd002591b783ecec56da8995fb75a400
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_hppa.deb
Size/MD5 checksum: 61152 a38e7bca2cbe87bf5bdfd006bc95e448

Intel IA-32 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_i386.deb
Size/MD5 checksum: 8907626 1a353f19735c6339a74fe9d2a2b97fdf
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_i386.deb
Size/MD5 checksum: 160320 e833f8887c1b541d8f6ef4b7552a70c7
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_i386.deb
Size/MD5 checksum: 57550 00e2dc72d2a8af56650004ac095eee06

Intel IA-64 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_ia64.deb
Size/MD5 checksum: 11644736 049ecdd937bff15ed7e12f1282599a98
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_ia64.deb
Size/MD5 checksum: 170668 f3298445d8884cf133bcb837cc049240
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_ia64.deb
Size/MD5 checksum: 65358 134710ff8c57f8e02e113b5af1df6662

Motorola 680x0 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_m68k.deb
Size/MD5 checksum: 8184660 b0103cf8b425bb76d91a7873f78d0217
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_m68k.deb
Size/MD5 checksum: 159262 e04d0648d5b817a1b7314e5d77108873
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_m68k.deb
Size/MD5 checksum: 56816 15dc3184acaf65cca897de7092a588ff

Big endian MIPS architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_mips.deb
Size/MD5 checksum: 9942738 846cc617e99976a64ce379ff04822370
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_mips.deb
Size/MD5 checksum: 158130 e8812baecfd3f93a6540a44b7d97a9aa
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_mips.deb
Size/MD5 checksum: 57818 44d481edc96edd5b33c6474064792a76

Little endian MIPS architecture:

http://security.debian.org/pool/updat...lla-firefox_1.0.4-2sarge12_mipsel.deb
Size/MD5 checksum: 9819470 41ecbd5f3543c0b110771e93e2307abc
http://security.debian.org/pool/updat...m-inspector_1.0.4-2sarge12_mipsel.deb
Size/MD5 checksum: 157672 43ca2a353bacf378a2dc7dfa9a7f3a73
http://security.debian.org/pool/updat...ome-support_1.0.4-2sarge12_mipsel.deb
Size/MD5 checksum: 57634 8d16796108c3a7627ab9654e977277a5

PowerPC architecture:

http://security.debian.org/pool/updat...la-firefox_1.0.4-2sarge12_powerpc.deb
Size/MD5 checksum: 8579128 b673ec3ded27be02020cc1e532b80740
http://security.debian.org/pool/updat...-inspector_1.0.4-2sarge12_powerpc.deb
Size/MD5 checksum: 158740 8c7ef8d61c6753e3474b8867d5356d9b
http://security.debian.org/pool/updat...me-support_1.0.4-2sarge12_powerpc.deb
Size/MD5 checksum: 59932 ead83381ef8abacb712f57d64ab736df

IBM S/390 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_s390.deb
Size/MD5 checksum: 9649760 a4cd1c6d8ee856640fef8b97bee96657
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_s390.deb
Size/MD5 checksum: 165732 197737ac3038ab474cb47e7c30d92374
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_s390.deb
Size/MD5 checksum: 60126 81193293f0e149cfa90e8cd9b71a3e22

Sun Sparc architecture:

http://security.debian.org/pool/updat...illa-firefox_1.0.4-2sarge12_sparc.deb
Size/MD5 checksum: 8671300 f486f39ddab307216a90532093d178b3
http://security.debian.org/pool/updat...om-inspector_1.0.4-2sarge12_sparc.deb
Size/MD5 checksum: 158928 03c9877b5d2151af331509a9c9d191b8
http://security.debian.org/pool/updat...nome-support_1.0.4-2sarge12_sparc.deb
Size/MD5 checksum: 56362 5fb4c5c035b32c5fd1b86b48f1b5cafb

-- Debian GNU/Linux unstable alias sid --
Fixed in version 1.5.dfsg+1.5.0.7-1.

Original Advisory:
http://www.us.debian.org/security/2006/dsa-1210

Other References:
SA21906:
http://secunia.com/advisories/21906

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

8th Jan, 2009
New advisories: 24
New vulnerabilities: 99
Updated advisories: 26

Moderately // 286 views
Drupal Project Module File Upload and Cross-Site Scripting
Less // 298 views
SmbFTPD Long Command Processing Vulnerability
Less // 343 views
Drupal Project Issue Tracking Module Multiple Vulnerabilities
Less // 312 views
PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability
Moderately // 348 views
Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability
Moderately // 293 views
Xdg-utils mailcap Command Execution Security Issue
Less // 326 views
FreeBSD update for lukemftpd
Less // 309 views
tnftpd Long Command Processing Vulnerability
Moderately // 438 views
Cisco Global Site Selector DNS Request Denial of Service
Less // 385 views
NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Lasso OpenSSL "DSA_verify()" Spoofing Vulnerability // 34 views
2. Drupal Project Issue Tracking Module Multiple Vulnerabilities // 32 views
3. Cisco Global Site Selector DNS Request Denial of Service // 30 views
4. Drupal Project Module File Upload and Cross-Site Scripting // 30 views
5. NTP OpenSSL "EVP_VerifyFinal()" Spoofing Vulnerability // 29 views
6. FreeBSD update for openssl // 27 views
7. SmbFTPD Long Command Processing Vulnerability // 26 views
8. tnftpd Long Command Processing Vulnerability // 25 views
9. PHP-Fusion Members CV Module "sortby" SQL Injection Vulnerability // 24 views
10. phpBB "url" bbcode Script Insertion Vulnerability // 24 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2009