What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-3875
2009-04-22 19:42:15
--------------------------------------------------------------------------------

Name        : galeon
Product     : Fedora 9
Version     : 2.0.7
Release     : 9.fc9
URL         : https://galeon.sourceforge.net/
Summary     : GNOME2 Web browser based on Mozilla
Description :
Galeon is a web browser built around Gecko (Mozilla's rendering
engine) and Necko (Mozilla's networking engine). It's a GNOME web
browser, designed to take advantage of as many GNOME technologies as
makes sense. Galeon was written to do just one thing - browse the web.

--------------------------------------------------------------------------------
Update Information:

https://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.9
--------------------------------------------------------------------------------
ChangeLog:

* Tue Apr 21 2009 Christopher Aillon  - 2.0.7-9
- Rebuild against newer gecko
* Fri Mar 27 2009 Christopher Aillon  - 2.0.7-8
- Rebuild against newer gecko
* Fri Mar  6 2009 Jan Horak  - 2.0.7-7
- Rebuild against newer gecko
* Sun Feb 15 2009 Denis Leroy  - 2.0.7-6
- Added upstream patch to use Gnome print support 
- Added patch to fix compiler warnings
* Wed Feb  4 2009 Christopher Aillon  - 2.0.7-5
- Rebuild against newer gecko
* Wed Dec 17 2008 Christopher Aillon  - 2.0.7-4
- Rebuild against newer gecko
* Wed Nov 12 2008 Christopher Aillon  - 2.0.7-3
- Rebuild against newer gecko
* Tue Oct  7 2008 Denis Leroy  - 2.0.7-2
- Added patches to fix default font (#212616) and printing (#449806). Yay.
* Sat Sep 27 2008 Denis Leroy  - 2.0.7-1
- Update to upstream 2.0.7, support for libxul-unstable
- Plugin patch cleanup
- Other patches upstreamed
* Wed Sep 24 2008 Christopher Aillon  - 2.0.5-3
- Rebuild against newer gecko
* Wed Jun 18 2008 Denis Leroy  - 2.0.5-2
- Rebuild with xulrunner 1.9
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #496252 - CVE-2009-1302 Firefox 3 Layout engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=496252
  [ 2 ] Bug #496253 - CVE-2009-1303 Firefox 2 and 3 Layout engine crash
        https://bugzilla.redhat.com/show_bug.cgi?id=496253
  [ 3 ] Bug #496255 - CVE-2009-1304 Firefox 3 JavaScript engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=496255
  [ 4 ] Bug #496256 - CVE-2009-1305 Firefox 2 and 3 JavaScript engine crash
        https://bugzilla.redhat.com/show_bug.cgi?id=496256
  [ 5 ] Bug #486704 - CVE-2009-0652 firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks)
        https://bugzilla.redhat.com/show_bug.cgi?id=486704
  [ 6 ] Bug #496262 - CVE-2009-1306 Firefox jar: scheme ignores the content-disposition: header on the inner URI
        https://bugzilla.redhat.com/show_bug.cgi?id=496262
  [ 7 ] Bug #496263 - CVE-2009-1307 Firefox Same-origin violations when Adobe Flash loaded via view-source: protocol
        https://bugzilla.redhat.com/show_bug.cgi?id=496263
  [ 8 ] Bug #496266 - CVE-2009-1308 Firefox XSS hazard using third-party stylesheets and XBL bindings
        https://bugzilla.redhat.com/show_bug.cgi?id=496266
  [ 9 ] Bug #496267 - CVE-2009-1309 Firefox Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString
        https://bugzilla.redhat.com/show_bug.cgi?id=496267
  [ 10 ] Bug #496270 - CVE-2009-1310 Firefox Malicious search plugins can inject code into arbitrary sites
        https://bugzilla.redhat.com/show_bug.cgi?id=496270
  [ 11 ] Bug #496271 - CVE-2009-1311 Firefox POST data sent to wrong site when saving web page with embedded frame
        https://bugzilla.redhat.com/show_bug.cgi?id=496271
  [ 12 ] Bug #496274 - CVE-2009-1312 Firefox allows Refresh header to redirect to javascript: URIs
        https://bugzilla.redhat.com/show_bug.cgi?id=496274
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update galeon' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 9 Update: galeon-2.0.7-9.fc9

April 23, 2009
https://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.9

Summary

Galeon is a web browser built around Gecko (Mozilla's rendering

engine) and Necko (Mozilla's networking engine). It's a GNOME web

browser, designed to take advantage of as many GNOME technologies as

makes sense. Galeon was written to do just one thing - browse the web.

Update Information:

https://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.9

Change Log

* Tue Apr 21 2009 Christopher Aillon - 2.0.7-9 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 2.0.7-8 - Rebuild against newer gecko * Fri Mar 6 2009 Jan Horak - 2.0.7-7 - Rebuild against newer gecko * Sun Feb 15 2009 Denis Leroy - 2.0.7-6 - Added upstream patch to use Gnome print support - Added patch to fix compiler warnings * Wed Feb 4 2009 Christopher Aillon - 2.0.7-5 - Rebuild against newer gecko * Wed Dec 17 2008 Christopher Aillon - 2.0.7-4 - Rebuild against newer gecko * Wed Nov 12 2008 Christopher Aillon - 2.0.7-3 - Rebuild against newer gecko * Tue Oct 7 2008 Denis Leroy - 2.0.7-2 - Added patches to fix default font (#212616) and printing (#449806). Yay. * Sat Sep 27 2008 Denis Leroy - 2.0.7-1 - Update to upstream 2.0.7, support for libxul-unstable - Plugin patch cleanup - Other patches upstreamed * Wed Sep 24 2008 Christopher Aillon - 2.0.5-3 - Rebuild against newer gecko * Wed Jun 18 2008 Denis Leroy - 2.0.5-2 - Rebuild with xulrunner 1.9

References

[ 1 ] Bug #496252 - CVE-2009-1302 Firefox 3 Layout engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496252 [ 2 ] Bug #496253 - CVE-2009-1303 Firefox 2 and 3 Layout engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496253 [ 3 ] Bug #496255 - CVE-2009-1304 Firefox 3 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=496255 [ 4 ] Bug #496256 - CVE-2009-1305 Firefox 2 and 3 JavaScript engine crash https://bugzilla.redhat.com/show_bug.cgi?id=496256 [ 5 ] Bug #486704 - CVE-2009-0652 firefox: does not properly prevent the literal rendering of homoglyph characters in IDN domain names (spoof URLs and conduct phishing attacks) https://bugzilla.redhat.com/show_bug.cgi?id=486704 [ 6 ] Bug #496262 - CVE-2009-1306 Firefox jar: scheme ignores the content-disposition: header on the inner URI https://bugzilla.redhat.com/show_bug.cgi?id=496262 [ 7 ] Bug #496263 - CVE-2009-1307 Firefox Same-origin violations when Adobe Flash loaded via view-source: protocol https://bugzilla.redhat.com/show_bug.cgi?id=496263 [ 8 ] Bug #496266 - CVE-2009-1308 Firefox XSS hazard using third-party stylesheets and XBL bindings https://bugzilla.redhat.com/show_bug.cgi?id=496266 [ 9 ] Bug #496267 - CVE-2009-1309 Firefox Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString https://bugzilla.redhat.com/show_bug.cgi?id=496267 [ 10 ] Bug #496270 - CVE-2009-1310 Firefox Malicious search plugins can inject code into arbitrary sites https://bugzilla.redhat.com/show_bug.cgi?id=496270 [ 11 ] Bug #496271 - CVE-2009-1311 Firefox POST data sent to wrong site when saving web page with embedded frame https://bugzilla.redhat.com/show_bug.cgi?id=496271 [ 12 ] Bug #496274 - CVE-2009-1312 Firefox allows Refresh header to redirect to javascript: URIs https://bugzilla.redhat.com/show_bug.cgi?id=496274

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update galeon' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : galeon
Product : Fedora 9
Version : 2.0.7
Release : 9.fc9
URL : https://galeon.sourceforge.net/
Summary : GNOME2 Web browser based on Mozilla

Related News

Firefox 119 Starts to Roll Out Improved Firefox View Feature, Ramps Up Privacy and Security

Oct 25, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Nov 8, 2023

Alarm Raised Over Mozilla VPN: Wonky Authorization Check Lets Users Cause Havoc

Aug 7, 2023

Firefox 114 Updates Security and Improves DNS over HTTPS Accessibility

Jun 13, 2023

News

Advisories

HOWTOs

Features

Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap

About Us

Powered By

Footer Logo