Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

openSUSE 11.4: 2011:0957-1 Critical: Seamonkey Memory Issues

opensuse
Calendar Grey August 26, 2011
Dist Opensuse Esm H88
openSUSE has released a Security Update for SeaMonkey, resolving 10 significant vulnerabilities in version 2.3 while improving the overall consistency and performance.
An update that fixes 10 vulnerabilities is now available

Description

Mozilla Seamonkey suite was updated to version 2.3.

The update fixes bugs and security issues. Following

security issues were fixed:

https://www.mozilla.org/en-US/security/advisories/mfsa2011-33/ Mozilla Foundation Security Advisory 2011-33 (MFSA

2011-33) Mozilla Foundation Security Advisory 2011-33

* Miscellaneous memory safety hazards (rv:4.0) Mozilla

identified and fixed several memory safety bugs in the

browser engine used in SeaMonkey 2.2 and other

Mozilla-based products. Some of these bugs showed

evidence of memory corruption under certain

circumstances, and we presume that with enough effort at

least some of these could be exploited to run arbitrary

code.

Aral Yaman reported a WebGL crash which affected

SeaMonkey 2.2. (CVE-2011-2989)

Vivekanand Bolajwar reported a JavaScript crash which

affected SeaMonkey 2.2. (CVE-2011-2991)

Bert Hubert and Theo Snelleman of Fox-IT reported a crash

in the Ogg reader which affected...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory update critical threat seamonkey memory safety openSUSE

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 11.4:

zypper in -t patch seamonkey-5024

- openSUSE 11.3:

zypper in -t patch seamonkey-5024

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 11.4 (i586 x86_64) [New Version: 2.3]:

seamonkey-2.3-2.2.1

seamonkey-dom-inspector-2.3-2.2.1

seamonkey-irc-2.3-2.2.1

seamonkey-translations-common-2.3-2.2.1

seamonkey-translations-other-2.3-2.2.1

seamonkey-venkman-2.3-2.2.1

- openSUSE 11.3 (i586 x86_64) [New Version: 2.3]:

seamonkey-2.3-2.2.1

seamonkey-dom-inspector-2.3-2.2.1

seamonkey-irc-2.3-2.2.1

seamonkey-translations-common-2.3-2.2.1

seamonkey-translations-other-2.3-2.2.1

seamonkey-venkman-2.3-2.2.1

References

https://www.suse.com/security/cve/CVE-2011-0084.html

https://www.suse.com/security/cve/CVE-2011-2985.html

https://www.suse.com/security/cve/CVE-2011-2986.html

https://www.suse.com/security/cve/CVE-2011-2987.html

https://www.suse.com/security/cve/CVE-2011-2988.html

https://www.suse.com/security/cve/CVE-2011-2989.html

https://www.suse.com/security/cve/CVE-2011-2990.html

https://www.suse.com/security/cve/CVE-2011-2991.html

https://www.suse.com/security/cve/CVE-2011-2992.html

https://www.suse.com/security/cve/CVE-2011-2993.html

Severity
critical
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2011:0957-1
Rating: important
Affected Products: openSUSE 11.4 openSUSE 11.3 . It includes one version update.

Topics%20covered

Topics Covered

security advisory update critical threat seamonkey memory safety openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here