SciLinux: CVE-2008-1380 firefox SL4.x, SL5.x i386/x86_64
Summary
Date: Thu, 17 Apr 2008 14:25:59 -0500Reply-To: Troy DawsonSender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for firefox on SL4.x, SL5.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov" Synopsis: Critical: firefox security updateIssue date: 2008-04-16CVE Names: CVE-2008-1380A flaw was found in the processing of malformed JavaScript content. A webpage containing such malicious content could cause Firefox to crash or,potentially, execute arbitrary code as the user running Firefox.(CVE-2008-1380)SL 4.x SRPMS:firefox-1.5.0.12-0.15.el4.src.rpm i386:firefox-1.5.0.12-0.15.el4.i386.rpm x86_64:firefox-1.5.0.12-0.15.el4.i386.rpmfirefox-1.5.0.12-0.15.el4.x86_64.rpmSL 5.x SRPMS:firefox-1.5.0.12-15.el5_1.src.rpm i386:firefox-1.5.0.12-15.el5_1.i386.rpmfirefox-devel-1.5.0.12-15.el5_1.i386.rpm x86_64:firefox-1.5.0.12-15.el5_1.i386.rpmfirefox-1.5.0.12-15.el5_1.x86_64.rpmfirefox-devel-1.5.0.12-15.el5_1.i386.rpmfirefox-devel-1.5.0.12-15.el5_1.x86_64.rpm-Connie Sieh-Troy Dawson