Fedora 10: 2009-3100 Critical: Firefox Remote Code Execution Risk
fedora
March 28, 2009
A memory corruption flaw was discovered in the way Firefox handles XML files
containing an XSLT transform
Summary
Epiphany Extensions is a collection of extensions for Epiphany, the
GNOME web browser.
A memory corruption flaw was discovered in the way Firefox handles XML files
containing an XSLT transform. A remote attacker could use this flaw to crash
Firefox or, potentially, execute arbitrary code as the user running Firefox.
(CVE-2009-1169) A flaw was discovered in the way Firefox handles certain XUL
garbage collection events. A remote attacker could use this flaw to crash
Firefox or, potentially, execute arbitrary code as the user running Firefox.
(CVE-2009-1044)
* Fri Mar 27 2009 Christopher Aillon
- Rebuild against newer gecko
* Fri Mar 6 2009 Christopher Aillon
- Rebuild against newer gecko
* Wed Feb 4 2009 Christopher Aillon
- Rebuild against newer gecko
* Wed Dec 17 2008 Christopher Aillon
- Rebuild against newer gecko
su -c 'yum update epiphany-extensions' at the command line.
For more information, refer to "Managing Software with yum",
available at .
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/
Change Log
References
Update Instructions
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Product: Fedora 10
Version: 2.24.0
Release: 6.fc10
Summary: Extensions for Epiphany, the GNOME web browser
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!