Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Ubuntu Security: USN-4567-1 High: Firefox Vulnerabilities Addressed

red hat
Calendar Grey September 22, 2005
Dist Redhat Esm H88
Essential patch resolves several vulnerabilities in Firefox for Red Hat Enterprise Linux 4. Upgrade suggested for enhanced protection.
An updated firefox package that fixes several security bugs is now available for Red Hat Enterprise Linux 4

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

168527 - CAN-2005-2701 Multiple Firefox issues (CAN-2005-2702, CAN-2005-2703, CAN-2005-2704, CAN-2005-2705, CAN-2005-2706, CAN-2005-2707) 168740 - CAN-2005-2968 Firefox improper command line URL sanitization


6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS: b94b77b06cbb9a21eef92abc886b13ff firefox-1.0.7-1.4.1.src.rpm

i386: a8421837182e4ef34df5957de617ce72 firefox-1.0.7-1.4.1.i386.rpm

ia64: 278ea87e1c4988a37317c720e962b48c firefox-1.0.7-1.4.1.ia64.rpm

ppc: 2ec5c55552e66596fd316f70b1f53167 firefox-1.0.7-1.4.1.ppc.rpm

s390: 7a1668a6316e7c6dff35c7bc5e26bdc1 firefox-1.0.7-1.4.1.s390.rpm

s390x: 479aba05e955742bab19dc510c3eae84 firefox-1.0.7-1.4.1.s390x.rpm

x86_64: d3cb63f6cd8593497a926414c874960e firefox-1.0.7-1.4.1.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS: b94b77b06cbb9a21eef92abc886b13ff firefox-1.0.7-1.4.1.src.rpm

i386: a8421837182e4ef34df5957de617ce72 firefox-1.0.7-1.4.1.i386.rpm

x86_64: d3cb63f6cd8593497a926414c874960e firefox-1.0.7-1.4.1.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS: b94b77b06cbb9a21eef92abc886b13ff firefox-1.0.7-1.4.1.src.rpm

i386: a8421837182e4ef34df5957de617ce72 firefox-1.0.7-1.4.1.i386.rpm

ia64: 278ea87e1c4988a37317c720e962b48c firefox-1.0.7-1.4.1.ia64.rpm

x86_64: d3cb63f6cd8593497a926414c874960e firefox-1.0.7-1.4.1.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS: b94b77b06cbb9a21eef92abc886b13ff firefox-1.0.7-1.4.1.src.rpm

i386: a8421837182e4ef34df5957de617ce72 firefox-1.0.7-1.4.1.i386.rpm

ia64: 278ea87e1c4988a37317c720e962b48c firefox-1.0.7-1.4.1.ia64.rpm

x86_64: d3cb63f6cd8593497a926414c874960e firefox-1.0.7-1.4.1.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CAN-2005-2701 https://www.cve.org/CVERecord?id=CAN-2005-2702 https://www.cve.org/CVERecord?id=CAN-2005-2703 https://www.cve.org/CVERecord?id=CAN-2005-2704 https://www.cve.org/CVERecord?id=CAN-2005-2705 https://www.cve.org/CVERecord?id=CAN-2005-2706 https://www.cve.org/CVERecord?id=CAN-2005-2707 https://www.cve.org/CVERecord?id=CAN-2005-2968

Package List


Severity
critical
Lowest
Low
Medium
High
Critical

Advisory ID: RHSA-2005:785-01
Issue date: 2005-09-22
Updated on: 2005-09-22
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Enterprise Linux Desktop version 4 - i386, x86_64

Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here