Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

openSUSE 11.4: 2013:0631-1 Important: Firefox Security Fix

opensuse
Calendar Grey April 5, 2013
Dist Opensuse Esm H88
Crucial update resolves 10 security flaws in Google Chrome and additional applications for openSUSE 12.1 focusing on buffer overflows and cross-site scripting vulnerabilities.
An update that fixes 8 vulnerabilities is now available

Description

The Mozilla suite received security and bugfix updates:

Firefox was updated to version 20.0. Thunderbird was

updated to version 17.0.5. Seamonkey was updated to version

2.17 mozilla-nss was updated to version 3.14.3.

mozilla-nspr was updated to version 4.9.6.

mozilla-nspr was updated to version 4.9.6:

* aarch64 support

* added PL_SizeOfArenaPoolExcludingPool function

(bmo#807883)

* Auto detect android api version for x86 (bmo#782214)

* Initialize Windows CRITICAL_SECTIONs without debug info

and with nonzero spin count (bmo#812085) Previous update

to version 4.9.5

* bmo#634793: define NSPR's exact-width integer types

PRInt{N} and PRUint{N} types to match the

exact-width integer types int{N}_t and uint{N}_t.

* bmo#782815: passing 'int *' to parameter of type

'unsigned int *' in setsockopt().

* bmo#822932: Port bmo#802527 (NDK r8b support for x86) to

NSPR.

* bmo#824742: NSPR shouldn't require librt on Android.

*...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory software update XSS patch memory safety Mozilla Firefox openSUSE

Patch

Patch Instructions:

To install this openSUSE Security Update use YaST online_update.

Alternatively you can run the command listed for your product:

- openSUSE 11.4:

zypper in -t patch 2013-58

To bring your system up-to-date, use "zypper patch".

Package List

- openSUSE 11.4 (i586 x86_64):

MozillaFirefox-20.0-69.1

MozillaFirefox-branding-upstream-20.0-69.1

MozillaFirefox-buildsymbols-20.0-69.1

MozillaFirefox-debuginfo-20.0-69.1

MozillaFirefox-debugsource-20.0-69.1

MozillaFirefox-devel-20.0-69.1

MozillaFirefox-translations-common-20.0-69.1

MozillaFirefox-translations-other-20.0-69.1

MozillaThunderbird-17.0.5-57.1

MozillaThunderbird-buildsymbols-17.0.5-57.1

MozillaThunderbird-debuginfo-17.0.5-57.1

MozillaThunderbird-debugsource-17.0.5-57.1

MozillaThunderbird-devel-17.0.5-57.1

MozillaThunderbird-devel-debuginfo-17.0.5-57.1

MozillaThunderbird-translations-common-17.0.5-57.1

MozillaThunderbird-translations-other-17.0.5-57.1

enigmail-1.5.1+17.0.5-57.1

enigmail-debuginfo-1.5.1+17.0.5-57.1

libfreebl3-3.14.3-58.1

libfreebl3-debuginfo-3.14.3-58.1

libsoftokn3-3.14.3-58.1

libsoftokn3-debuginfo-3.14.3-58.1

mozilla-nspr-4.9.6-24.1

mozilla-nspr-debuginfo-4.9.6-24.1

mozilla-nspr-debugsource-4.9.6-24.1

mozilla-nspr-devel-4.9.6-24.1

mozilla-nss-3.14.3-58.1

mozilla-nss-certs-3.14.3-58.1...

Read the Full Advisory

References

https://www.suse.com/security/cve/CVE-2013-0788.html

https://www.suse.com/security/cve/CVE-2013-0789.html

https://www.suse.com/security/cve/CVE-2013-0792.html

https://www.suse.com/security/cve/CVE-2013-0793.html

https://www.suse.com/security/cve/CVE-2013-0794.html

https://www.suse.com/security/cve/CVE-2013-0795.html

https://www.suse.com/security/cve/CVE-2013-0796.html

https://www.suse.com/security/cve/CVE-2013-0800.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2013:0631-1
Rating: important
Affected Products: openSUSE 11.4 .

Topics%20covered

Topics Covered

security advisory software update XSS patch memory safety Mozilla Firefox openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here