openSUSE 11.4: 2011:0957-2 Important Update for MozillaFirefox
opensuse
August 29, 2011
An update that fixes 10 vulnerabilities is now available
Description
Mozilla Firefox was updated to version 6.
It brings new features, fixes bugs and security issues.
Following security issues were fixed:
https://www.mozilla.org/en-US/security/advisories/mfsa2011-29/ Mozilla Foundation Security Advisory 2011-29 (MFSA
2011-29)
* Miscellaneous memory safety hazards: Mozilla identified
and fixed several memory safety bugs in the browser
engine used in Firefox 4, Firefox 5 and other
Mozilla-based products. Some of these bugs showed
evidence of memory corruption under certain
circumstances, and we presume that with enough effort at
least some of these could be exploited to run arbitrary
code.
Aral Yaman reported a WebGL crash which affected Firefox
4 and Firefox 5. (CVE-2011-2989)
Vivekanand Bolajwar reported a JavaScript crash which
affected Firefox 4 and Firefox 5. (CVE-2011-2991)
Bert Hubert and Theo Snelleman of Fox-IT reported a crash
in the Ogg reader which affected Firefox 4 and Firefox...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 11.4:
zypper in -t patch MozillaFirefox-5020
To bring your system up-to-date, use "zypper patch".
Package List
- openSUSE 11.4 (i586 x86_64) [New Version: 6.0]:
MozillaFirefox-6.0-2.2.1
MozillaFirefox-branding-upstream-6.0-2.2.1
MozillaFirefox-buildsymbols-6.0-2.2.1
MozillaFirefox-devel-6.0-2.2.1
MozillaFirefox-translations-common-6.0-2.2.1
MozillaFirefox-translations-other-6.0-2.2.1
References
https://www.suse.com/security/cve/CVE-2011-0084.html
https://www.suse.com/security/cve/CVE-2011-2985.html
https://www.suse.com/security/cve/CVE-2011-2986.html
https://www.suse.com/security/cve/CVE-2011-2987.html
https://www.suse.com/security/cve/CVE-2011-2988.html
https://www.suse.com/security/cve/CVE-2011-2989.html
https://www.suse.com/security/cve/CVE-2011-2990.html
https://www.suse.com/security/cve/CVE-2011-2991.html
https://www.suse.com/security/cve/CVE-2011-2992.html
https://www.suse.com/security/cve/CVE-2011-2993.html
--
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2011:0957-2
Rating: important
Affected Products:
openSUSE 11.4
.
It includes one version update.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!