openSUSE 12.x: 2013:0630-1 Important: Mozilla Firefox Security Threats
opensuse
April 5, 2013
An update that fixes 10 vulnerabilities is now available
Description
The Mozilla suite received security and bugfix updates:
Mozilla Firefox was updated to version 20.0. Mozilla
Thunderbird was updated to version 17.0.5. Mozilla
Seamonkey was updated to version 17.0.5. Mozilla XULRunner
was updated to version 17.0.5. mozilla-nss was updated to
version 3.14.3. mozilla-nspr was updated to version 4.9.6.
mozilla-nspr was updated to version 4.9.6:
* aarch64 support
* added PL_SizeOfArenaPoolExcludingPool function
(bmo#807883)
* Auto detect android api version for x86 (bmo#782214)
* Initialize Windows CRITICAL_SECTIONs without debug info
and with nonzero spin count (bmo#812085) Previous update
to version 4.9.5
* bmo#634793: define NSPR's exact-width integer types
PRInt{N} and PRUint{N} types to match the
exact-width integer types int{N}_t and uint{N}_t.
* bmo#782815: passing 'int *' to parameter of type
'unsigned int *' in setsockopt().
* bmo#822932: Port bmo#802527 (NDK r8b support for x86)...
Read the Full Advisory
Patch
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 12.3:
zypper in -t patch openSUSE-2013-309
- openSUSE 12.2:
zypper in -t patch openSUSE-2013-309
- openSUSE 12.1:
zypper in -t patch openSUSE-2013-309
To bring your system up-to-date, use "zypper patch".
Package List
- openSUSE 12.3 (i586 x86_64):
MozillaFirefox-20.0-1.8.3
MozillaFirefox-branding-upstream-20.0-1.8.3
MozillaFirefox-buildsymbols-20.0-1.8.3
MozillaFirefox-debuginfo-20.0-1.8.3
MozillaFirefox-debugsource-20.0-1.8.3
MozillaFirefox-devel-20.0-1.8.3
MozillaFirefox-translations-common-20.0-1.8.3
MozillaFirefox-translations-other-20.0-1.8.3
MozillaThunderbird-17.0.5-61.9.4
MozillaThunderbird-buildsymbols-17.0.5-61.9.4
MozillaThunderbird-debuginfo-17.0.5-61.9.4
MozillaThunderbird-debugsource-17.0.5-61.9.4
MozillaThunderbird-devel-17.0.5-61.9.4
MozillaThunderbird-devel-debuginfo-17.0.5-61.9.4
MozillaThunderbird-translations-common-17.0.5-61.9.4
MozillaThunderbird-translations-other-17.0.5-61.9.4
enigmail-1.5.1+17.0.5-61.9.4
enigmail-debuginfo-1.5.1+17.0.5-61.9.4
libfreebl3-3.14.3-1.8.1
libfreebl3-debuginfo-3.14.3-1.8.1
libsoftokn3-3.14.3-1.8.1
libsoftokn3-debuginfo-3.14.3-1.8.1
mozilla-js-17.0.5-1.8.3
mozilla-js-debuginfo-17.0.5-1.8.3
mozilla-nspr-4.9.6-1.4.1
mozilla-nspr-debuginfo-4.9.6-1.4.1
mozilla-nspr-debugsource-4...
Read the Full AdvisoryReferences
https://www.suse.com/security/cve/CVE-2013-0788.html
https://www.suse.com/security/cve/CVE-2013-0789.html
https://www.suse.com/security/cve/CVE-2013-0791.html
https://www.suse.com/security/cve/CVE-2013-0792.html
https://www.suse.com/security/cve/CVE-2013-0793.html
https://www.suse.com/security/cve/CVE-2013-0794.html
https://www.suse.com/security/cve/CVE-2013-0795.html
https://www.suse.com/security/cve/CVE-2013-0796.html
https://www.suse.com/security/cve/CVE-2013-0800.html
https://www.suse.com/security/cve/CVE-2013-1620.html
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: openSUSE-SU-2013:0630-1
Rating: important
Affected Products:
openSUSE 12.3
openSUSE 12.2
openSUSE 12.1
.
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!