Debian update for iceweasel - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Debian update for iceweasel

Secunia Advisory:	SA31176
Release Date:	2008-07-24

Critical:	Highly critical
Impact:	Security Bypass Exposure of sensitive information System access
Where:	From remote
Solution Status:	Vendor Patch

OS:	Debian GNU/Linux 4.0 Debian GNU/Linux unstable alias sid


CVE reference:	CVE-2008-2785 (Secunia mirror) CVE-2008-2933 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: Debian has issued an update for iceweasel. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system. For more information: SA30761 SA31120 Solution: Apply updated packages. -- Debian GNU/Linux 4.0 alias etch -- Source archives: http://security.debian.org/pool/updat...sel/iceweasel_2.0.0.16-0etch1.diff.gz Size/MD5 checksum: 186601 1a6e2029bb1be403464dc05d0d7056f3 http://security.debian.org/pool/updat...weasel/iceweasel_2.0.0.16.orig.tar.gz Size/MD5 checksum: 47244084 838ff458cac5da69ac0f2102c9a4fa43 http://security.debian.org/pool/updat...eweasel/iceweasel_2.0.0.16-0etch1.dsc Size/MD5 checksum: 1289 b20f98b6d9dea662336b8287164b326e Architecture independent packages: http://security.debian.org/pool/updat...dom-inspector_2.0.0.16-0etch1_all.deb Size/MD5 checksum: 54310 13d18b856d4e0a01e7931afef496e3ec http://security.debian.org/pool/updat...dom-inspector_2.0.0.16-0etch1_all.deb Size/MD5 checksum: 54460 dc8582c2f9b6f7be94c881596ce9d191 http://security.debian.org/pool/updat...gnome-support_2.0.0.16-0etch1_all.deb Size/MD5 checksum: 54310 816c6f0fd47121ca9ab87116b631c210 http://security.debian.org/pool/updat...dom-inspector_2.0.0.16-0etch1_all.deb Size/MD5 checksum: 239618 b130c9f2f2e153789d4081b03c1f3ecf http://security.debian.org/pool/updat...zilla-firefox_2.0.0.16-0etch1_all.deb Size/MD5 checksum: 55096 c080b75d5a9b47353c070c8ae018ee93 http://security.debian.org/pool/updat...gnome-support_2.0.0.16-0etch1_all.deb Size/MD5 checksum: 54428 6ef73c9c91f47d9d3b9695b0baba16e0 http://security.debian.org/pool/updat...easel/firefox_2.0.0.16-0etch1_all.deb Size/MD5 checksum: 54572 fc0e196c2ac5634b69c8d393eaa83809 alpha architecture (DEC Alpha) http://security.debian.org/pool/updat...ome-support_2.0.0.16-0etch1_alpha.deb Size/MD5 checksum: 90158 d993f5d5638bf2644992c3a51cb07aaf http://security.debian.org/pool/updat...eweasel-dbg_2.0.0.16-0etch1_alpha.deb Size/MD5 checksum: 51153588 537368b3db70016472e36fa96fa6d45f http://security.debian.org/pool/updat...l/iceweasel_2.0.0.16-0etch1_alpha.deb Size/MD5 checksum: 11577992 dfcf655ebf1ab9f30e2fdd10aee79b77 amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updat...ome-support_2.0.0.16-0etch1_amd64.deb Size/MD5 checksum: 87828 bedb77649ba472190d25054b192b6209 http://security.debian.org/pool/updat...l/iceweasel_2.0.0.16-0etch1_amd64.deb Size/MD5 checksum: 10203870 5de267d5ee71e3847e73ae64872100ad http://security.debian.org/pool/updat...eweasel-dbg_2.0.0.16-0etch1_amd64.deb Size/MD5 checksum: 50156988 105ffac099d3a73aa40be32a44cd7212 hppa architecture (HP PA RISC) http://security.debian.org/pool/updat...nome-support_2.0.0.16-0etch1_hppa.deb Size/MD5 checksum: 89332 ca1481f5414cf4faf8a5a370906d8f64 http://security.debian.org/pool/updat...el/iceweasel_2.0.0.16-0etch1_hppa.deb Size/MD5 checksum: 11108696 06ec3f1f3819d33be04502e5bce656e0 http://security.debian.org/pool/updat...ceweasel-dbg_2.0.0.16-0etch1_hppa.deb Size/MD5 checksum: 50532424 9971def7580d2166292c8547f27dd2b4 i386 architecture (Intel ia32) http://security.debian.org/pool/updat...ceweasel-dbg_2.0.0.16-0etch1_i386.deb Size/MD5 checksum: 49553762 65280e9ae0c54fc73e75a361dbe722fe http://security.debian.org/pool/updat...el/iceweasel_2.0.0.16-0etch1_i386.deb Size/MD5 checksum: 9119010 de6f68bb7acdf4cfdf74030cd2333de8 http://security.debian.org/pool/updat...nome-support_2.0.0.16-0etch1_i386.deb Size/MD5 checksum: 81938 a7eb73d423a318b5901eb3a8a06685b9 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updat.../iceweasel_2.0.0.16-0etch1_mipsel.deb Size/MD5 checksum: 10760324 2c0b072407554c994af92a170313e26d http://security.debian.org/pool/updat...weasel-dbg_2.0.0.16-0etch1_mipsel.deb Size/MD5 checksum: 52504852 d2a9840321f5daf57e6dc31be4d001ec http://security.debian.org/pool/updat...me-support_2.0.0.16-0etch1_mipsel.deb Size/MD5 checksum: 83096 610122542964f56450722b5a1268f9f7 powerpc architecture (PowerPC) http://security.debian.org/pool/updat...iceweasel_2.0.0.16-0etch1_powerpc.deb Size/MD5 checksum: 9935532 8ef7577d3ee21a66ed0f3dd49554228b http://security.debian.org/pool/updat...e-support_2.0.0.16-0etch1_powerpc.deb Size/MD5 checksum: 83658 bb96af576cc431bc5d2395065cc26519 http://security.debian.org/pool/updat...easel-dbg_2.0.0.16-0etch1_powerpc.deb Size/MD5 checksum: 51951260 ce9193a0f59b5f6ebe385a6b99d81082 s390 architecture (IBM S/390) http://security.debian.org/pool/updat...el/iceweasel_2.0.0.16-0etch1_s390.deb Size/MD5 checksum: 10361684 97e6a00b1925964345ab444e08decfd7 http://security.debian.org/pool/updat...ceweasel-dbg_2.0.0.16-0etch1_s390.deb Size/MD5 checksum: 50833158 e7d855931549380a580cca41b16eb132 http://security.debian.org/pool/updat...nome-support_2.0.0.16-0etch1_s390.deb Size/MD5 checksum: 88076 3718818f93134dd2bdbd830839c77cac sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updat...l/iceweasel_2.0.0.16-0etch1_sparc.deb Size/MD5 checksum: 9141294 fbb65f64f8cc4e8580582633b447a9c5 http://security.debian.org/pool/updat...eweasel-dbg_2.0.0.16-0etch1_sparc.deb Size/MD5 checksum: 49164530 d54078908cc2adaecb5f492b13a966eb http://security.debian.org/pool/updat...ome-support_2.0.0.16-0etch1_sparc.deb Size/MD5 checksum: 81782 bb4025ab732da55e1d29d7ade28d10aa -- Debian GNU/Linux unstable alias sid -- Fixed in xulrunner 1.9.0.1-1 and iceweasel 3.0.1-1. Original Advisory: http://lists.debian.org/debian-security-announce/2008/msg00198.html Other References: SA30761: http://secunia.com/advisories/30761/ SA31120: http://secunia.com/advisories/31120/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

1221 Related Secunia Security Advisories, displaying 10

1. Debian update for slash

2. Debian update for wordnet

3. Debian update for tiff

4. Debian update for libxml2

5. Debian update for linux-2.6

6. Debian update for postfix

7. Debian update for pdns

8. Debian update for httracker

9. Debian update for opensc

10. Debian update for cupsys

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	3Com Wireless 8760 Access Point HTTP Request Processing Denial of Service

2.	CS-Cart "cs_cookies" SQL Injection Vulnerability

3.	Drupal Content Construction Kit Script Insertion Vulnerabilities

4.	HP OpenView Select Identity Connectors Information Disclosure

5.	Gentoo update for mysql

6.	Cisco ASA and PIX Security Appliances Multiple Vulnerabilities

7.	rPath update for libtiff

8.	Gentoo update for yelp

9.	Gentoo update for dnsmasq

10.	Gentoo update for realplayer