Secunia - Stay Secure
Home Corporate Website Jobs Updated Mailing Lists RSS Blog  Online Shop Advertise
Software Inspectors
  Scan Online
  Personal (PSI)
  Network (NSI 2.0)

Solutions For
  Security Professionals
  Security Vendors

Free Solutions For
  Open Communities
  Journalists & Media

Secunia Advisories
  Search
  Historic Advisories
  Listed By Product
  Listed By Vendor
  Statistics / Graphs
  Secunia Research
  Report Vulnerability
  About Advisories

Virus Information
  Chronological List
  Last 10 Virus Alerts
  About Virus Information

Secunia Customers
  Customer Area


Debian opdatering til iceweasel Advisory Available in English  Advisory Available in German 

Secunia Advisory: SA26151  
Udsendt: 2007-07-24

Kritisk:
Meget kritisk
Betydning: Cross Site Scripting
Forfalskning
Afsløring af følsomme oplysninger
DoS
Systemadgang
Hvor: Fra Internet
Løsning Status: Producent Patch

OS:Debian GNU/Linux 4.0
Debian GNU/Linux unstable alias sid


CVE reference:CVE-2007-3089 (Secunia mirror)
CVE-2007-3656 (Secunia mirror)
CVE-2007-3734 (Secunia mirror)
CVE-2007-3735 (Secunia mirror)
CVE-2007-3736 (Secunia mirror)
CVE-2007-3737 (Secunia mirror)
CVE-2007-3738 (Secunia mirror)
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS!


Beskrivelse:
Debian har udgivet en opdatering til iceweasel. Denne retter nogle sårbarheder, som kan udnyttes af ondsindede personer til at få kendskab til følsom information, udføre cross-site scripting og spoofing-angreb samt potentielt kompromittere en brugers system.

Yderligere information:
SA25990
SA26095

Løsning:
Installér opdaterede pakker.

-- Debian GNU/Linux 4.0 alias etch --

Source archives:

http://security.debian.org/pool/updat...ceweasel/iceweasel_2.0.0.5-0etch1.dsc
Size/MD5 checksum: 1286 59238f560ecb32cdbc56a63ddb209e55
http://security.debian.org/pool/updat...asel/iceweasel_2.0.0.5-0etch1.diff.gz
Size/MD5 checksum: 185146 6524cf51c9e4b107d72600123967d6ef
http://security.debian.org/pool/updat...eweasel/iceweasel_2.0.0.5.orig.tar.gz
Size/MD5 checksum: 43667811 06e1bbe4d44d5b3333cabf8584844ca0

Architecture independent components:

http://security.debian.org/pool/updat...-dom-inspector_2.0.0.5-0etch1_all.deb
Size/MD5 checksum: 53580 934bffd016c2040ae56d1701ab9ef8b0
http://security.debian.org/pool/updat...-gnome-support_2.0.0.5-0etch1_all.deb
Size/MD5 checksum: 53548 01ec3b09cb5305f60952e8e7c8ac775f
http://security.debian.org/pool/updat...weasel/firefox_2.0.0.5-0etch1_all.deb
Size/MD5 checksum: 53702 d3ecadf21b84c62c473a658892510d73
http://security.debian.org/pool/updat...-dom-inspector_2.0.0.5-0etch1_all.deb
Size/MD5 checksum: 234160 bcf465cec9f922ad5e28c434cc9bce9a
http://security.debian.org/pool/updat...-dom-inspector_2.0.0.5-0etch1_all.deb
Size/MD5 checksum: 53432 cd14d22874e960c485e4cec1e559ef20
http://security.debian.org/pool/updat...-gnome-support_2.0.0.5-0etch1_all.deb
Size/MD5 checksum: 53428 b2d685e70ff5a9c0be04c24efe8cd660
http://security.debian.org/pool/updat...ozilla-firefox_2.0.0.5-0etch1_all.deb
Size/MD5 checksum: 54232 72be77489c8bc90232f09c3e4a37d2a8

AMD64 architecture:

http://security.debian.org/pool/updat...el/iceweasel_2.0.0.5-0etch1_amd64.deb
Size/MD5 checksum: 10131746 6509776fdd7f65552627b22b7f0e5d5f
http://security.debian.org/pool/updat...ceweasel-dbg_2.0.0.5-0etch1_amd64.deb
Size/MD5 checksum: 50034750 34db9be3f1aacd877fabacf163a716cf
http://security.debian.org/pool/updat...nome-support_2.0.0.5-0etch1_amd64.deb
Size/MD5 checksum: 87376 42ac4a2436251a5023a4122234a9b433

ARM architecture:

http://security.debian.org/pool/updat...asel/iceweasel_2.0.0.5-0etch1_arm.deb
Size/MD5 checksum: 9172536 d5a6afa28d7202a28151791944c6cbe4
http://security.debian.org/pool/updat.../iceweasel-dbg_2.0.0.5-0etch1_arm.deb
Size/MD5 checksum: 49133408 d8bfcda8c8f3675bbf4dfc2f84f88fb0
http://security.debian.org/pool/updat...-gnome-support_2.0.0.5-0etch1_arm.deb
Size/MD5 checksum: 80786 547a41d33735a51c539fd93f8584ca8c

HP Precision architecture:

http://security.debian.org/pool/updat...sel/iceweasel_2.0.0.5-0etch1_hppa.deb
Size/MD5 checksum: 11038942 73a12aae1df5a9ff435fdbf111641271
http://security.debian.org/pool/updat...iceweasel-dbg_2.0.0.5-0etch1_hppa.deb
Size/MD5 checksum: 50416604 d1dd0fa25fac83208fbee1e5016bea40
http://security.debian.org/pool/updat...gnome-support_2.0.0.5-0etch1_hppa.deb
Size/MD5 checksum: 88872 33dce9b617f9772f706ad4d711ccbacf

Intel IA-32 architecture:

http://security.debian.org/pool/updat...sel/iceweasel_2.0.0.5-0etch1_i386.deb
Size/MD5 checksum: 9104036 31bd4e0e97fc842cfb36332222227701
http://security.debian.org/pool/updat...iceweasel-dbg_2.0.0.5-0etch1_i386.deb
Size/MD5 checksum: 49439820 c7760fc3be07338899256b1bf00883e7
http://security.debian.org/pool/updat...gnome-support_2.0.0.5-0etch1_i386.deb
Size/MD5 checksum: 81298 b9479b0ba634c0456301effa7f69ef14

Intel IA-64 architecture:

http://security.debian.org/pool/updat...sel/iceweasel_2.0.0.5-0etch1_ia64.deb
Size/MD5 checksum: 14134080 497b02f80092d16b883a0fe5543e865a
http://security.debian.org/pool/updat...iceweasel-dbg_2.0.0.5-0etch1_ia64.deb
Size/MD5 checksum: 50396004 1eefae991deb0610dfee10f5fc25929a
http://security.debian.org/pool/updat...gnome-support_2.0.0.5-0etch1_ia64.deb
Size/MD5 checksum: 99638 ab6b8c85a7d7f796f6aa83c567d81f7a

Little endian MIPS architecture:

http://security.debian.org/pool/updat...l/iceweasel_2.0.0.5-0etch1_mipsel.deb
Size/MD5 checksum: 10744354 de1cb2892c1a5f2474301c967002db40
http://security.debian.org/pool/updat...eweasel-dbg_2.0.0.5-0etch1_mipsel.deb
Size/MD5 checksum: 52394050 8c57505e91c9ee8137d7f596de85cb20
http://security.debian.org/pool/updat...ome-support_2.0.0.5-0etch1_mipsel.deb
Size/MD5 checksum: 82468 624046892b6bc835db7ad352a58193b1

PowerPC architecture:

http://security.debian.org/pool/updat.../iceweasel_2.0.0.5-0etch1_powerpc.deb
Size/MD5 checksum: 9918324 b55975975e333962fbe7700f394e4efc
http://security.debian.org/pool/updat...weasel-dbg_2.0.0.5-0etch1_powerpc.deb
Size/MD5 checksum: 51849604 a382e26d5f81f3cba80d3c74c803bfba
http://security.debian.org/pool/updat...me-support_2.0.0.5-0etch1_powerpc.deb
Size/MD5 checksum: 82998 5b3f148c7e5115779efb9eab5f7ec085

IBM S/390 architecture:

http://security.debian.org/pool/updat...sel/iceweasel_2.0.0.5-0etch1_s390.deb
Size/MD5 checksum: 10343876 392bd7c3b4498f16a18af4f33433cdec
http://security.debian.org/pool/updat...iceweasel-dbg_2.0.0.5-0etch1_s390.deb
Size/MD5 checksum: 50714240 4fcb5751ac1f74858e77ec55511ebfe3
http://security.debian.org/pool/updat...gnome-support_2.0.0.5-0etch1_s390.deb
Size/MD5 checksum: 87386 78d93550b19df51bb0ecde33117dc657

Sun Sparc architecture:

http://security.debian.org/pool/updat...el/iceweasel_2.0.0.5-0etch1_sparc.deb
Size/MD5 checksum: 9125776 96b405d93d02e5a80933fba0658c18d3
http://security.debian.org/pool/updat...ceweasel-dbg_2.0.0.5-0etch1_sparc.deb
Size/MD5 checksum: 49052276 615dac8bcaeb9a4c5cdb6500fe519f8a
http://security.debian.org/pool/updat...nome-support_2.0.0.5-0etch1_sparc.deb
Size/MD5 checksum: 81150 63d0482567e238eae0d201b43696ca02

-- Debian GNU/Linux unstable alias sid --

Rettet i version 2.0.0.5-1.

Original Advisory:
http://www.debian.org/security/2007/dsa-1338

Andre Kilder:
SA25990:
http://secunia.com/advisories/25990/

SA26095:
http://secunia.com/advisories/26095/


Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

1071 Relaterede Secunia Advisories, displaying 10

1. Debian opdatering til yarssr
2. Debian opdatering til linux-2.6
3. Debian opdatering til libvorbis
4. Debian opdatering til exiv2
5. Debian opdatering til pulseaudio
6. Debian opdatering til gforge
7. Debian opdatering til mysql-dfsg-5.0
8. Debian opdatering til mantis
9. Debian opdatering til tomcat5.5
10. Debian opdatering til flac

Vis alle relaterede advisories


Send Feedback to Secunia

Hvis du har ny information angående dette Secunia advisory eller et produkt i vores database, så send det venligst til os. Du kan sende det til os enten ved at bruge vores web formular eller ved at sende det til vuln@secunia.com.

Ideer, foreslag og andet feedback er også meget velkommen.








Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Do you think it's important to read Setup/User Guides for applications for use within your network?


See Results   


Most Popular Advisories

1.
Opera Multiple Vulnerabilities
2.
Folder Lock Weak Password Encryption Security Issue
3.
vBulletin Private Message Subject Script Insertion
4.
Anzio Web Print Object (WePO) ActiveX Component "mainurl" Buffer Overflow
5.
neon "parse_domain() " Denial of Service Vulnerability
6.
SunShop Shopping Cart class.ajax.php SQL Injection Vulnerabilities
7.
URL Rotator Script "id" SQL Injection Vulnerability
8.
Programs Rating "id" SQL Injection Vulnerability
9.
Short Url & Url Tracker Script "id" SQL Injection Vulnerability
10.
PHP Live Helper Multiple Vulnerabilities





Vulnerability Management - Terms & Conditions - Copyright 2002-2008 Secunia - Compliance - Contact Secunia