Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 10: 2009-3893 Critical: Miro Internet TV Player Issue

fedora
Calendar Grey April 24, 2009
Dist Fedora Esm H88
Crucial information regarding Miro within Fedora 10, focusing on resolving identified vulnerabilities and introducing improvements.
https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/

Summary

Miro is a free application that turns your computer into an

internet TV video player. This release is still a beta version, which means

that there are some bugs, but we're moving quickly to fix them and will be

releasing bug fixes on a regular basis.

Update Information:

https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/

Topics%20covered

Topics Covered

security advisory critical software update Fedora software patch Miro Internet TV player

Change Log

* Tue Apr 21 2009 Christopher Aillon - 2.0.3-3 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 2.0.3-2 - Rebuild against newer gecko * Mon Mar 16 2009 Alex Lancaster - 2.0.3-1 - Update to upstream 2.0.3 - Add patch to disable xine-hack, hopefully fixes #480527 - Use internal 0.14 version of rb_libtorrent for < F-11 (#489755) * Mon Mar 9 2009 Alex Lancaster - 2.0.2-1 - Update to upstream 2.0.2 - Add Requires: gstreamer-python (#489134) - Drop patch for libtorrent 0.13, applied upstream * Fri Mar 6 2009 Jan Horak - 2.0-4 - Rebuild against newer gecko * Fri Feb 27 2009 Alex Lancaster - 2.0-3 - Combine the fhs patches into one, and fix the path to /usr/libexec/xine_extractor (#487442) * Fri Feb 27 2009 Alex Lancaster - 2.0-2 - Add another upstream patch to fix patch on x86_64 (#487442) * Tue Feb 24 2009 Alex Lancaster - 2.0-1 - Update to upstream 2.0. - Add patches to use system libtorrent and fix download directory to ~/Videos/Miro * Wed Feb 4 2009 Christopher Aillon - 1.2.8-2 - Rebuild against newer gecko * Wed Dec 3 2008 Alex Lancaster - 1.2.8-1 - Enable patch for new boost 1.37 for F-11+ - Update to latest upstream (1.2.8)

References


[ 1 ] Bug #496252 - CVE-2009-1302 Firefox 3 Layout engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496252 [ 2 ] Bug #496253 - CVE-2009-1303 Firefox 2 and 3 Layout engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496253 [ 3 ] Bug #496255 - CVE-2009-1304 Firefox 3 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496255 [ 4 ] Bug #496256 - CVE-2009-1305 Firefox 2 and 3 JavaScript engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496256 [ 5 ] Bug #486704 - CVE-2009-0652 firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks) https://bugzilla.redhat.com/show_bug.cgi?id=486704 [ 6 ] Bug #496262 - CVE-2009-1306 Firefox jar: scheme ignores the content-disposition: header on the inner URI https://bugzilla.redhat.com/show_bug.cgi?id=496262 [ 7 ] Bug #496263 - CVE-2009-1307 Firefox Same-origin violati...

Read the Full Advisory

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update Miro' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: Miro
Product: Fedora 10
Version: 2.0.3
Release: 3.fc10
URL: http://www.getmiro.com/
Summary: Miro - Internet TV Player

Topics%20covered

Topics Covered

security advisory critical software update Fedora software patch Miro Internet TV player

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here