|
Mandriva update for firefox
|
|
|
|
|
Secunia Advisory:
|
SA24343
|
|
|
Release Date:
|
2007-03-01
|
|
Last Update:
|
2007-03-05
|
|
|
Critical:
|

Highly critical
|
|
Impact:
|
Security Bypass Cross Site Scripting Spoofing Exposure of sensitive information System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Mandriva Linux 2007.0
|
|
| | CVE reference: | CVE-2006-6077 (Secunia mirror) CVE-2007-0008 (Secunia mirror) CVE-2007-0009 (Secunia mirror) CVE-2007-0775 (Secunia mirror) CVE-2007-0777 (Secunia mirror) CVE-2007-0778 (Secunia mirror) CVE-2007-0779 (Secunia mirror) CVE-2007-0780 (Secunia mirror) CVE-2007-0800 (Secunia mirror) CVE-2007-0981 (Secunia mirror) CVE-2007-0995 (Secunia mirror) CVE-2007-0996 (Secunia mirror) CVE-2007-1092 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS! |
|
|
Description: Mandriva has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and spoofing attacks, gain knowledge of sensitive information, and potentially compromise a user's system.
For more information:
SA24205
Solution: Apply updated packages.
Mandriva Linux 2007
411bc0bdd8dc32950a84c77ed3319508 2007.0/i586/libmozilla-firefox1.5.0.10-1.5.0.10-2mdv2007.0.i586.rpm
9ceb031931003fb861882f4455c6648b 2007.0/i586/libmozilla-firefox1.5.0.10-devel-1.5.0.10-2mdv2007.0.i586.rpm
db615eadf763927182c8657d11b1ae54
2007.0/i586/libnspr4-1.5.0.10-2mdv2007.0.i586.rpm
bd7dca3e972f552b5dd347822e17f1e1
2007.0/i586/libnspr4-devel-1.5.0.10-2mdv2007.0.i586.rpm
bb4709aa4bf277e32c25e07d93641802
2007.0/i586/libnspr4-static-devel-1.5.0.10-2mdv2007.0.i586.rpm
babf7d44d0340cd51f45249d3002180e
2007.0/i586/libnss3-1.5.0.10-2mdv2007.0.i586.rpm
19a967982b748b879b1904d5bcea174d
2007.0/i586/libnss3-devel-1.5.0.10-2mdv2007.0.i586.rpm
6333bab7a5d530836fa5a64383bcdd30
2007.0/i586/mozilla-firefox-1.5.0.10-2mdv2007.0.i586.rpm
72672b4bbfcc4f13d5820a4c11bca547
2007.0/SRPMS/mozilla-firefox-1.5.0.10-2mdv2007.0.src.rpm
Mandriva Linux 2007/X86_64
9fe9779d9d02f0aa73d28096cc237d00 2007.0/x86_64/lib64mozilla-firefox1.5.0.10-1.5.0.10-2mdv2007.0.x86_64.rpm
3c0a879b450f5c2569eb81d397a82906 2007.0/x86_64/lib64mozilla-firefox1.5.0.10-devel-1.5.0.10-2mdv2007.0.x86_64.rpm
338d81330e754d5ffd22dea67c2fbfd2 2007.0/x86_64/lib64nspr4-1.5.0.10-2mdv2007.0.x86_64.rpm
0c840ec9a78c48d975db6bca80e53caa 2007.0/x86_64/lib64nspr4-devel-1.5.0.10-2mdv2007.0.x86_64.rpm
3f1ba2da63bf990b3958f184bdf4d96f 2007.0/x86_64/lib64nspr4-static-devel-1.5.0.10-2mdv2007.0.x86_64.rpm
cd9ef9efe9f859467a07bfc20899156d 2007.0/x86_64/lib64nss3-1.5.0.10-2mdv2007.0.x86_64.rpm
d6243e7d7c76a5ff5a418f7304cdcff2 2007.0/x86_64/lib64nss3-devel-1.5.0.10-2mdv2007.0.x86_64.rpm
0fec2d70c6a797521304598b802d03b1 2007.0/x86_64/mozilla-firefox-1.5.0.10-2mdv2007.0.x86_64.rpm
72672b4bbfcc4f13d5820a4c11bca547 2007.0/SRPMS/mozilla-firefox-1.5.0.10-2mdv2007.0.src.rpm
Changelog: 2007-03-05: Updated "Solution" section with new package information due to a regression. Added CVE references and link to revised advisory.
Original Advisory: http://www.mandriva.com/security/advisories?name=MDKSA-2007:050
http://www.mandriva.com/security/advisories?name=MDKSA-2007:050-1
Other References: SA24205:
http://secunia.com/advisories/24205/
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
269 Related Secunia Security Advisories, displaying 10
|
|
|
1. Mandriva update for rsync
|
|
2. Mandriva update for cups
|
|
3. Mandriva update for openssh
|
|
4. Mandriva update for perl-Tk
|
|
5. Mandriva update for sarg
|
|
6. Mandriva update for bzip2
|
|
7. Mandriva update for krb5
|
|
8. Mandriva update for perl-Net-DNS
|
|
9. Mandriva update for unzip
|
|
10. Mandriva update for gcc
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|