What Are You Looking For?

Sign Up
Date:         Fri, 12 Jun 2009 15:24:12 -0500
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA Critical: seamonkey on SL3.x, SL4.x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Critical: seamonkey security update
Issue date:	2009-06-11
CVE Names:	CVE-2009-1392 CVE-2009-1833 CVE-2009-1835
                 CVE-2009-1838 CVE-2009-1841


Several flaws were found in the processing of malformed web content. A 
web page containing malicious content could cause SeaMonkey to crash or,
potentially, execute arbitrary code as the user running SeaMonkey.
(CVE-2009-1392, CVE-2009-1833, CVE-2009-1838, CVE-2009-1841)

A flaw was found in the processing of malformed, local file content. If 
a user loaded malicious, local content via the file:// URL, it was 
possible for that content to access other local data. (CVE-2009-1835)

After installing the update, SeaMonkey must be restarted for the changes 
to take effect.

SL 3.0.x

      SRPMS:
seamonkey-1.0.9-0.38.el3.src.rpm
      i386:
seamonkey-1.0.9-0.38.el3.i386.rpm
seamonkey-chat-1.0.9-0.38.el3.i386.rpm
seamonkey-devel-1.0.9-0.38.el3.i386.rpm
seamonkey-dom-inspector-1.0.9-0.38.el3.i386.rpm
seamonkey-js-debugger-1.0.9-0.38.el3.i386.rpm
seamonkey-mail-1.0.9-0.38.el3.i386.rpm
seamonkey-nspr-1.0.9-0.38.el3.i386.rpm
seamonkey-nspr-devel-1.0.9-0.38.el3.i386.rpm
seamonkey-nss-1.0.9-0.38.el3.i386.rpm
seamonkey-nss-devel-1.0.9-0.38.el3.i386.rpm
      x86_64:
seamonkey-1.0.9-0.38.el3.i386.rpm
seamonkey-1.0.9-0.38.el3.x86_64.rpm
seamonkey-chat-1.0.9-0.38.el3.i386.rpm
seamonkey-chat-1.0.9-0.38.el3.x86_64.rpm
seamonkey-devel-1.0.9-0.38.el3.x86_64.rpm
seamonkey-dom-inspector-1.0.9-0.38.el3.i386.rpm
seamonkey-dom-inspector-1.0.9-0.38.el3.x86_64.rpm
seamonkey-js-debugger-1.0.9-0.38.el3.i386.rpm
seamonkey-js-debugger-1.0.9-0.38.el3.x86_64.rpm
seamonkey-mail-1.0.9-0.38.el3.i386.rpm
seamonkey-mail-1.0.9-0.38.el3.x86_64.rpm
seamonkey-nspr-1.0.9-0.38.el3.i386.rpm
seamonkey-nspr-1.0.9-0.38.el3.x86_64.rpm
seamonkey-nspr-devel-1.0.9-0.38.el3.x86_64.rpm
seamonkey-nss-1.0.9-0.38.el3.i386.rpm
seamonkey-nss-1.0.9-0.38.el3.x86_64.rpm
seamonkey-nss-devel-1.0.9-0.38.el3.x86_64.rpm

SL 4.x

      SRPMS:
seamonkey-1.0.9-43.el4_8.src.rpm
      i386:
seamonkey-1.0.9-43.el4_8.i386.rpm
seamonkey-chat-1.0.9-43.el4_8.i386.rpm
seamonkey-devel-1.0.9-43.el4_8.i386.rpm
seamonkey-dom-inspector-1.0.9-43.el4_8.i386.rpm
seamonkey-js-debugger-1.0.9-43.el4_8.i386.rpm
seamonkey-mail-1.0.9-43.el4_8.i386.rpm
      x86_64:
seamonkey-1.0.9-43.el4_8.i386.rpm
seamonkey-1.0.9-43.el4_8.x86_64.rpm
seamonkey-chat-1.0.9-43.el4_8.i386.rpm
seamonkey-chat-1.0.9-43.el4_8.x86_64.rpm
seamonkey-devel-1.0.9-43.el4_8.x86_64.rpm
seamonkey-dom-inspector-1.0.9-43.el4_8.i386.rpm
seamonkey-dom-inspector-1.0.9-43.el4_8.x86_64.rpm
seamonkey-js-debugger-1.0.9-43.el4_8.i386.rpm
seamonkey-js-debugger-1.0.9-43.el4_8.x86_64.rpm
seamonkey-mail-1.0.9-43.el4_8.i386.rpm
seamonkey-mail-1.0.9-43.el4_8.x86_64.rpm


-Connie Sieh
-Troy Dawson

SciLinux: CVE-2009-1392 Critical: seamonkey SL3.x, SL4.x i386/x86_64

Critical: seamonkey security update

Summary

Date:         Fri, 12 Jun 2009 15:24:12 -0500Reply-To:     Troy Dawson Sender:       Security Errata for Scientific Linux              From:         Troy Dawson Subject:      Security ERRATA Critical: seamonkey on SL3.x, SL4.x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov"          Synopsis:	Critical: seamonkey security updateIssue date:	2009-06-11CVE Names:	CVE-2009-1392 CVE-2009-1833 CVE-2009-1835                 CVE-2009-1838 CVE-2009-1841Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or,potentially, execute arbitrary code as the user running SeaMonkey.(CVE-2009-1392, CVE-2009-1833, CVE-2009-1838, CVE-2009-1841)A flaw was found in the processing of malformed, local file content. If a user loaded malicious, local content via the file:// URL, it was possible for that content to access other local data. (CVE-2009-1835)After installing the update, SeaMonkey must be restarted for the changes to take effect.SL 3.0.x      SRPMS:seamonkey-1.0.9-0.38.el3.src.rpm      i386:seamonkey-1.0.9-0.38.el3.i386.rpmseamonkey-chat-1.0.9-0.38.el3.i386.rpmseamonkey-devel-1.0.9-0.38.el3.i386.rpmseamonkey-dom-inspector-1.0.9-0.38.el3.i386.rpmseamonkey-js-debugger-1.0.9-0.38.el3.i386.rpmseamonkey-mail-1.0.9-0.38.el3.i386.rpmseamonkey-nspr-1.0.9-0.38.el3.i386.rpmseamonkey-nspr-devel-1.0.9-0.38.el3.i386.rpmseamonkey-nss-1.0.9-0.38.el3.i386.rpmseamonkey-nss-devel-1.0.9-0.38.el3.i386.rpm      x86_64:seamonkey-1.0.9-0.38.el3.i386.rpmseamonkey-1.0.9-0.38.el3.x86_64.rpmseamonkey-chat-1.0.9-0.38.el3.i386.rpmseamonkey-chat-1.0.9-0.38.el3.x86_64.rpmseamonkey-devel-1.0.9-0.38.el3.x86_64.rpmseamonkey-dom-inspector-1.0.9-0.38.el3.i386.rpmseamonkey-dom-inspector-1.0.9-0.38.el3.x86_64.rpmseamonkey-js-debugger-1.0.9-0.38.el3.i386.rpmseamonkey-js-debugger-1.0.9-0.38.el3.x86_64.rpmseamonkey-mail-1.0.9-0.38.el3.i386.rpmseamonkey-mail-1.0.9-0.38.el3.x86_64.rpmseamonkey-nspr-1.0.9-0.38.el3.i386.rpmseamonkey-nspr-1.0.9-0.38.el3.x86_64.rpmseamonkey-nspr-devel-1.0.9-0.38.el3.x86_64.rpmseamonkey-nss-1.0.9-0.38.el3.i386.rpmseamonkey-nss-1.0.9-0.38.el3.x86_64.rpmseamonkey-nss-devel-1.0.9-0.38.el3.x86_64.rpmSL 4.x      SRPMS:seamonkey-1.0.9-43.el4_8.src.rpm      i386:seamonkey-1.0.9-43.el4_8.i386.rpmseamonkey-chat-1.0.9-43.el4_8.i386.rpmseamonkey-devel-1.0.9-43.el4_8.i386.rpmseamonkey-dom-inspector-1.0.9-43.el4_8.i386.rpmseamonkey-js-debugger-1.0.9-43.el4_8.i386.rpmseamonkey-mail-1.0.9-43.el4_8.i386.rpm      x86_64:seamonkey-1.0.9-43.el4_8.i386.rpmseamonkey-1.0.9-43.el4_8.x86_64.rpmseamonkey-chat-1.0.9-43.el4_8.i386.rpmseamonkey-chat-1.0.9-43.el4_8.x86_64.rpmseamonkey-devel-1.0.9-43.el4_8.x86_64.rpmseamonkey-dom-inspector-1.0.9-43.el4_8.i386.rpmseamonkey-dom-inspector-1.0.9-43.el4_8.x86_64.rpmseamonkey-js-debugger-1.0.9-43.el4_8.i386.rpmseamonkey-js-debugger-1.0.9-43.el4_8.x86_64.rpmseamonkey-mail-1.0.9-43.el4_8.i386.rpmseamonkey-mail-1.0.9-43.el4_8.x86_64.rpm-Connie Sieh-Troy Dawson



Security Fixes

Severity

Related News

Security Highlights from KubeCon + CloudNativeCon 2023

Nov 18, 2023

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

LockBit Ransomware Exploiting Critical Citrix Bleed Vulnerability to Break In

Nov 25, 2023

News

Advisories

HOWTOs

Features

A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug
Cyber Law in the Realm of Open-Source Software Security

About Us

Powered By

Footer Logo