Secunia - Stay Secure
Gartner
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


Debian update for mozilla-firefox Advisory Available in Danish  Advisory Available in German 

Secunia Advisory: SA22849  
Release Date: 2006-11-14

Critical:
Highly critical
Impact: Security Bypass
Spoofing
DoS
System access
Where: From remote
Solution Status: Vendor Patch

OS:Debian GNU/Linux 3.1
Debian GNU/Linux unstable alias sid


CVE reference:CVE-2006-2788 (Secunia mirror)
CVE-2006-4340 (Secunia mirror)
CVE-2006-4565 (Secunia mirror)
CVE-2006-4566 (Secunia mirror)
CVE-2006-4568 (Secunia mirror)
CVE-2006-4571 (Secunia mirror)
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Description:
Debian has issued an update for mozilla-firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct spoofing and DoS (Denial of Service) attacks, bypass certain security restrictions and potentially compromise a user's system.

For more information:
SA21906

Solution:
Apply updated packages.

-- Debian GNU/Linux 3.1 alias sarge --

Source archives:

http://security.debian.org/pool/updat...ox/mozilla-firefox_1.0.4-2sarge12.dsc
Size/MD5 checksum: 1003 751f0df80be8491ac3b24e902da6e3cb
http://security.debian.org/pool/updat...ozilla-firefox_1.0.4-2sarge12.diff.gz
Size/MD5 checksum: 441420 8b1078ef98ff79137869c932999d3957
http://security.debian.org/pool/updat...fox/mozilla-firefox_1.0.4.orig.tar.gz
Size/MD5 checksum: 40212297 8e4ba81ad02c7986446d4e54e978409d

Alpha architecture:

http://security.debian.org/pool/updat...illa-firefox_1.0.4-2sarge12_alpha.deb
Size/MD5 checksum: 11181154 771ba85fbf21e6419d87820fc6f19a9a
http://security.debian.org/pool/updat...om-inspector_1.0.4-2sarge12_alpha.deb
Size/MD5 checksum: 170352 f2c75d2fb5ab8684a20ba6fc08585cdb
http://security.debian.org/pool/updat...nome-support_1.0.4-2sarge12_alpha.deb
Size/MD5 checksum: 62166 79fd193ea817fc1f466a57e4a37d74fa

AMD64 architecture:

http://security.debian.org/pool/updat...illa-firefox_1.0.4-2sarge12_amd64.deb
Size/MD5 checksum: 9411492 3c3704ef1014e0d9dc38ece9d16a36d4
http://security.debian.org/pool/updat...om-inspector_1.0.4-2sarge12_amd64.deb
Size/MD5 checksum: 165132 54e7468747e04dc1449faa8ff9c123b4
http://security.debian.org/pool/updat...nome-support_1.0.4-2sarge12_amd64.deb
Size/MD5 checksum: 60700 a8ac42c24a29be9b260a0ec426b83f1c

ARM architecture:

http://security.debian.org/pool/updat...ozilla-firefox_1.0.4-2sarge12_arm.deb
Size/MD5 checksum: 8232340 0d9f98d7a3bc7bcef0d759b98061c79b
http://security.debian.org/pool/updat...-dom-inspector_1.0.4-2sarge12_arm.deb
Size/MD5 checksum: 156586 7b74819b6afa58f7c485fb581ace3501
http://security.debian.org/pool/updat...-gnome-support_1.0.4-2sarge12_arm.deb
Size/MD5 checksum: 55998 08e378fe351fc437422ea242ff83a60c

HP Precision architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_hppa.deb
Size/MD5 checksum: 10285622 0558779439806d577d49c812255c6d0d
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_hppa.deb
Size/MD5 checksum: 168054 cd002591b783ecec56da8995fb75a400
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_hppa.deb
Size/MD5 checksum: 61152 a38e7bca2cbe87bf5bdfd006bc95e448

Intel IA-32 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_i386.deb
Size/MD5 checksum: 8907626 1a353f19735c6339a74fe9d2a2b97fdf
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_i386.deb
Size/MD5 checksum: 160320 e833f8887c1b541d8f6ef4b7552a70c7
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_i386.deb
Size/MD5 checksum: 57550 00e2dc72d2a8af56650004ac095eee06

Intel IA-64 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_ia64.deb
Size/MD5 checksum: 11644736 049ecdd937bff15ed7e12f1282599a98
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_ia64.deb
Size/MD5 checksum: 170668 f3298445d8884cf133bcb837cc049240
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_ia64.deb
Size/MD5 checksum: 65358 134710ff8c57f8e02e113b5af1df6662

Motorola 680x0 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_m68k.deb
Size/MD5 checksum: 8184660 b0103cf8b425bb76d91a7873f78d0217
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_m68k.deb
Size/MD5 checksum: 159262 e04d0648d5b817a1b7314e5d77108873
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_m68k.deb
Size/MD5 checksum: 56816 15dc3184acaf65cca897de7092a588ff

Big endian MIPS architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_mips.deb
Size/MD5 checksum: 9942738 846cc617e99976a64ce379ff04822370
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_mips.deb
Size/MD5 checksum: 158130 e8812baecfd3f93a6540a44b7d97a9aa
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_mips.deb
Size/MD5 checksum: 57818 44d481edc96edd5b33c6474064792a76

Little endian MIPS architecture:

http://security.debian.org/pool/updat...lla-firefox_1.0.4-2sarge12_mipsel.deb
Size/MD5 checksum: 9819470 41ecbd5f3543c0b110771e93e2307abc
http://security.debian.org/pool/updat...m-inspector_1.0.4-2sarge12_mipsel.deb
Size/MD5 checksum: 157672 43ca2a353bacf378a2dc7dfa9a7f3a73
http://security.debian.org/pool/updat...ome-support_1.0.4-2sarge12_mipsel.deb
Size/MD5 checksum: 57634 8d16796108c3a7627ab9654e977277a5

PowerPC architecture:

http://security.debian.org/pool/updat...la-firefox_1.0.4-2sarge12_powerpc.deb
Size/MD5 checksum: 8579128 b673ec3ded27be02020cc1e532b80740
http://security.debian.org/pool/updat...-inspector_1.0.4-2sarge12_powerpc.deb
Size/MD5 checksum: 158740 8c7ef8d61c6753e3474b8867d5356d9b
http://security.debian.org/pool/updat...me-support_1.0.4-2sarge12_powerpc.deb
Size/MD5 checksum: 59932 ead83381ef8abacb712f57d64ab736df

IBM S/390 architecture:

http://security.debian.org/pool/updat...zilla-firefox_1.0.4-2sarge12_s390.deb
Size/MD5 checksum: 9649760 a4cd1c6d8ee856640fef8b97bee96657
http://security.debian.org/pool/updat...dom-inspector_1.0.4-2sarge12_s390.deb
Size/MD5 checksum: 165732 197737ac3038ab474cb47e7c30d92374
http://security.debian.org/pool/updat...gnome-support_1.0.4-2sarge12_s390.deb
Size/MD5 checksum: 60126 81193293f0e149cfa90e8cd9b71a3e22

Sun Sparc architecture:

http://security.debian.org/pool/updat...illa-firefox_1.0.4-2sarge12_sparc.deb
Size/MD5 checksum: 8671300 f486f39ddab307216a90532093d178b3
http://security.debian.org/pool/updat...om-inspector_1.0.4-2sarge12_sparc.deb
Size/MD5 checksum: 158928 03c9877b5d2151af331509a9c9d191b8
http://security.debian.org/pool/updat...nome-support_1.0.4-2sarge12_sparc.deb
Size/MD5 checksum: 56362 5fb4c5c035b32c5fd1b86b48f1b5cafb

-- Debian GNU/Linux unstable alias sid --
Fixed in version 1.5.dfsg+1.5.0.7-1.

Original Advisory:
http://www.us.debian.org/security/2006/dsa-1210

Other References:
SA21906:
http://secunia.com/advisories/21906


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

1201 Related Secunia Security Advisories, displaying 10

1. Debian update for clamav
2. Debian update for xulrunner
3. Debian update for ruby1.8
4. Debian update for iceweasel
5. Debian update for libgd2
6. Debian update for afuse
7. Debian update for lighttpd
8. Debian update for poppler
9. Debian update for bind9
10. Debian update for pcre3

Show all related advisories


Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
Red Hat update for vsftpd
2.
Red Hat update for rdesktop
3.
Red Hat update for rdesktop
4.
OpenBSD BIND Query Port DNS Cache Poisoning
5.
Red Hat update for nss_ldap
6.
Red Hat update for coreutils
7.
Linux Kernel LDT Buffer Size Handling Vulnerability
8.
Red Hat update for mysql
9.
Red Hat update for kernel
10.
Debian update for clamav





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia