---------------------------------------------------------------------- Want a new job? http://secunia.com/secunia_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/ International Partner Manager - Project Sales in the IT-Security Industry: http://corporate.secunia.com/about_secunia/64/ ---------------------------------------------------------------------- TITLE: SUSE update for MozillaFirefox SECUNIA ADVISORY ID: SA31076 VERIFY ADVISORY: http://secunia.com/advisories/31076/ CRITICAL: Highly critical IMPACT: Security Bypass, Cross Site Scripting, Spoofing, Exposure of system information, Exposure of sensitive information, DoS, System access WHERE: >From remote OPERATING SYSTEM: openSUSE 10.2 http://secunia.com/product/13375/ openSUSE 10.3 http://secunia.com/product/16124/ SUSE Linux Enterprise Server 10 http://secunia.com/product/12192/ DESCRIPTION: SUSE has issued an update for MozillaFirefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and spoofing attacks, bypass certain security restrictions, disclose sensitive information, or potentially compromise a user's system. For more information: SA30911 SOLUTION: Apply updated packages. x86 Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaFirefox-2.0.0.15-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaFirefox-translations-2.0.0.15-0.1.i586.rpm openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-2.0.0.15-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-translations-2.0.0.15-0.1.i586.rpm Sources: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/MozillaFirefox-2.0.0.15-0.1.src.rpm openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/MozillaFirefox-2.0.0.15-0.1.src.rpm SUSE Linux Enterprise Server 10 SP1 SUSE Linux Enterprise Server 10 SP2 SUSE Linux Enterprise 10 SP2 DEBUGINFO SUSE Linux Enterprise Desktop 10 SP1 SUSE Linux Enterprise Desktop 10 SP2 http://support.novell.com/techcenter/psdb/0fea55c59743d1e08b7b9ed24c7034fd.html Security update for MozillaFirefox (ia64) SUSE Linux Enterprise Server 10 SP1 http://download.novell.com/Download?buildid=CVuQok2_ca8~ Security update for MozillaFirefox (s390x) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=kSaWRPtTvpI~ Security update for MozillaFirefox (ppc) SUSE Linux Enterprise Server 10 SP1 http://download.novell.com/Download?buildid=gBTkPviDogc~ Security update for MozillaFirefox (s390x) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=ON73zs89fJ4~ Security update for MozillaFirefox (x86) SUSE Linux Enterprise Desktop 10 SP2 http://download.novell.com/Download?buildid=E4jtdJoGlDQ~ Security update for MozillaFirefox (x86-64) SUSE Linux Enterprise Desktop 10 SP2 http://download.novell.com/Download?buildid=Na0vK5lQlOM~ Security update for MozillaFirefox (x86) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=CUUO_aCsdMU~ Security update for MozillaFirefox (ppc) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=vXPKUCTzdi0~ Security update for MozillaFirefox (x86-64) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=zei6Hn4O6rQ~ Security update for MozillaFirefox (x86-64) SUSE Linux Enterprise Server 10 SP1 http://download.novell.com/Download?buildid=sVDMHHBpzl0~ Security update for MozillaFirefox (ppc) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=1X60FN2DSGs~ Security update for MozillaFirefox (x86) SUSE Linux Enterprise Desktop 10 SP1 http://download.novell.com/Download?buildid=RSBMUOv_HPM~ Security update for MozillaFirefox (ia64) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=HqzYlbrdyk8~ Security update for MozillaFirefox (x86) SUSE Linux Enterprise Server 10 SP1 http://download.novell.com/Download?buildid=1hzQTKfbJ2I~ Security update for MozillaFirefox (x86) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=VgoVF4vEHkI~ Security update for MozillaFirefox (s390x) SUSE Linux Enterprise Server 10 SP1 http://download.novell.com/Download?buildid=DcGiWrDCGt8~ Security update for MozillaFirefox (ia64) SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/Download?buildid=R2FzGF6uSA8~ Security update for MozillaFirefox (x86-64) SUSE Linux Enterprise Desktop 10 SP1 http://download.novell.com/Download?buildid=Vi4hjt2ZJSE~ ORIGINAL ADVISORY: http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00004.html OTHER REFERENCES: SA30911: http://secunia.com/advisories/30911/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------