Alerts This Week
Warning Icon 1 1,146
Alerts This Week
Warning Icon 1 1,146

SciLinux: CVE-2012-4194 Critical: Firefox Update on SL5.x, SL6.x

Scientific Large Esm H446
Critical: firefox security update
Date: Tue, 30 Oct 2012 13:06:54 -0500
Reply-To: Pat Riehecky 
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Organization: Fermilab
Subject: Security ERRATA Critical: firefox on SL5.x, SL6.x i386/x86_64
MIME-Version: 1.0

Synopsis: Critical: firefox security update
Issue Date: 2012-10-26
CVE Numbers: CVE-2012-4194
 CVE-2012-4195
 CVE-2012-4196
--
Multiple flaws were found in the location object implementation in Firefox.
Malicious content could be used to perform cross-site scripting attacks,
bypass the same-origin policy, or cause Firefox to execute arbitrary code.
(CVE-2012-4194, CVE-2012-4195, CVE-2012-4196)

For technical details regarding these flaws, refer to the Mozilla security
advisories for Firefox 10.0.10 ESR.

After installing the update, Firefox must be restarted for the changes to
take effect.
--

SL5
 x86_64
 firefox-10.0.10-1.el5_8.i386.rpm
 firefox-10.0.10-1.el5_8.x86_64.rpm
 xulrunner-10.0.10-1.el5_8.i386.rpm
 xulrunner-10.0.10-1.el5_8.x86_64.rpm
 xulrunner-devel-10.0.10-1.el5_8.i386.rpm
 xulrunner-devel-10.0.10-1.el5_8.x86_64.rpm
 i386
 firefox-10.0.10-1.el5_8.i386.rpm
 xulrunner-10.0.10-1.el5_8.i386.rpm
 xulrunner-devel-10.0.10-1.el5_8.i386.rpm
SL6
 x86_64
 firefox-10.0.10-1.el6_3.i686.rpm
 firefox-10.0.10-1.el6_3.x86_64.rpm
 xulrunner-10.0.10-1.el6_3.i686.rpm
 xulrunner-10.0.10-1.el6_3.x86_64.rpm
 xulrunner-devel-10.0.10-1.el6_3.i686.rpm
 xulrunner-devel-10.0.10-1.el6_3.x86_64.rpm
 i386
 firefox-10.0.10-1.el6_3.i686.rpm
 xulrunner-10.0.10-1.el6_3.i686.rpm
 xulrunner-devel-10.0.10-1.el6_3.i686.rpm

- Scientific Linux Development Team
Your message here