Secunia Security Advisory - SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system.
ec0dd9e1db8fe72791fd11639d4d594ee163dbf6ffaaaa5df03df6ccbc644191
----------------------------------------------------------------------
Want a new job?
http://secunia.com/secunia_security_specialist/
http://secunia.com/hardcore_disassembler_and_reverse_engineer/
International Partner Manager - Project Sales in the IT-Security
Industry:
http://corporate.secunia.com/about_secunia/64/
----------------------------------------------------------------------
TITLE:
SUSE update for MozillaFirefox
SECUNIA ADVISORY ID:
SA31076
VERIFY ADVISORY:
http://secunia.com/advisories/31076/
CRITICAL:
Highly critical
IMPACT:
Security Bypass, Cross Site Scripting, Spoofing, Exposure of system
information, Exposure of sensitive information, DoS, System access
WHERE:
>From remote
OPERATING SYSTEM:
openSUSE 10.2
http://secunia.com/product/13375/
openSUSE 10.3
http://secunia.com/product/16124/
SUSE Linux Enterprise Server 10
http://secunia.com/product/12192/
DESCRIPTION:
SUSE has issued an update for MozillaFirefox. This fixes some
vulnerabilities, which can be exploited by malicious people to
conduct cross-site scripting and spoofing attacks, bypass certain
security restrictions, disclose sensitive information, or potentially
compromise a user's system.
For more information:
SA30911
SOLUTION:
Apply updated packages.
x86 Platform:
openSUSE 10.3:
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaFirefox-2.0.0.15-0.1.i586.rpm
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaFirefox-translations-2.0.0.15-0.1.i586.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-2.0.0.15-0.1.i586.rpm
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-translations-2.0.0.15-0.1.i586.rpm
Sources:
openSUSE 10.3:
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/MozillaFirefox-2.0.0.15-0.1.src.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/MozillaFirefox-2.0.0.15-0.1.src.rpm
SUSE Linux Enterprise Server 10 SP1
SUSE Linux Enterprise Server 10 SP2
SUSE Linux Enterprise 10 SP2 DEBUGINFO
SUSE Linux Enterprise Desktop 10 SP1
SUSE Linux Enterprise Desktop 10 SP2
http://support.novell.com/techcenter/psdb/0fea55c59743d1e08b7b9ed24c7034fd.html
Security update for MozillaFirefox (ia64)
SUSE Linux Enterprise Server 10 SP1
http://download.novell.com/Download?buildid=CVuQok2_ca8~
Security update for MozillaFirefox (s390x)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=kSaWRPtTvpI~
Security update for MozillaFirefox (ppc)
SUSE Linux Enterprise Server 10 SP1
http://download.novell.com/Download?buildid=gBTkPviDogc~
Security update for MozillaFirefox (s390x)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=ON73zs89fJ4~
Security update for MozillaFirefox (x86)
SUSE Linux Enterprise Desktop 10 SP2
http://download.novell.com/Download?buildid=E4jtdJoGlDQ~
Security update for MozillaFirefox (x86-64)
SUSE Linux Enterprise Desktop 10 SP2
http://download.novell.com/Download?buildid=Na0vK5lQlOM~
Security update for MozillaFirefox (x86)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=CUUO_aCsdMU~
Security update for MozillaFirefox (ppc)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=vXPKUCTzdi0~
Security update for MozillaFirefox (x86-64)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=zei6Hn4O6rQ~
Security update for MozillaFirefox (x86-64)
SUSE Linux Enterprise Server 10 SP1
http://download.novell.com/Download?buildid=sVDMHHBpzl0~
Security update for MozillaFirefox (ppc)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=1X60FN2DSGs~
Security update for MozillaFirefox (x86)
SUSE Linux Enterprise Desktop 10 SP1
http://download.novell.com/Download?buildid=RSBMUOv_HPM~
Security update for MozillaFirefox (ia64)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=HqzYlbrdyk8~
Security update for MozillaFirefox (x86)
SUSE Linux Enterprise Server 10 SP1
http://download.novell.com/Download?buildid=1hzQTKfbJ2I~
Security update for MozillaFirefox (x86)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=VgoVF4vEHkI~
Security update for MozillaFirefox (s390x)
SUSE Linux Enterprise Server 10 SP1
http://download.novell.com/Download?buildid=DcGiWrDCGt8~
Security update for MozillaFirefox (ia64)
SUSE Linux Enterprise Server 10 SP2
http://download.novell.com/Download?buildid=R2FzGF6uSA8~
Security update for MozillaFirefox (x86-64)
SUSE Linux Enterprise Desktop 10 SP1
http://download.novell.com/Download?buildid=Vi4hjt2ZJSE~
ORIGINAL ADVISORY:
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00004.html
OTHER REFERENCES:
SA30911:
http://secunia.com/advisories/30911/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------