Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 510
Alerts This Week
Warning Icon 1 510

Scientific Linux: CVE-2013-0787 Critical: XULRunner Security Flaw

Scientific Large Esm H446
Critical: xulrunner security update
Date: Fri, 8 Mar 2013 10:38:23 -0600
Reply-To: Pat Riehecky 
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Critical: xulrunner on SL5.x, SL6.x i386/x86_64
MIME-Version: 1.0

Synopsis: Critical: xulrunner security update
Issue Date: 2013-03-08
CVE Numbers: CVE-2013-0787
--

A flaw was found in the way XULRunner handled malformed web content. A web
page containing malicious content could cause an application linked
against XULRunner (such as Mozilla Firefox) to crash or execute arbitrary
code with the privileges of the user running the application.
(CVE-2013-0787)

After installing the update, applications using XULRunner must be
restarted for the changes to take effect.
--

SL5
 x86_64
 xulrunner-17.0.3-2.el5_9.i386.rpm
 xulrunner-17.0.3-2.el5_9.x86_64.rpm
 xulrunner-debuginfo-17.0.3-2.el5_9.i386.rpm
 xulrunner-debuginfo-17.0.3-2.el5_9.x86_64.rpm
 xulrunner-devel-17.0.3-2.el5_9.i386.rpm
 xulrunner-devel-17.0.3-2.el5_9.x86_64.rpm
 i386
 xulrunner-17.0.3-2.el5_9.i386.rpm
 xulrunner-debuginfo-17.0.3-2.el5_9.i386.rpm
 xulrunner-devel-17.0.3-2.el5_9.i386.rpm
SL6
 x86_64
 xulrunner-17.0.3-2.el6_4.i686.rpm
 xulrunner-17.0.3-2.el6_4.x86_64.rpm
 xulrunner-debuginfo-17.0.3-2.el6_4.i686.rpm
 xulrunner-debuginfo-17.0.3-2.el6_4.x86_64.rpm
 xulrunner-devel-17.0.3-2.el6_4.i686.rpm
 xulrunner-devel-17.0.3-2.el6_4.x86_64.rpm
 i386
 xulrunner-17.0.3-2.el6_4.i686.rpm
 xulrunner-debuginfo-17.0.3-2.el6_4.i686.rpm
 xulrunner-devel-17.0.3-2.el6_4.i686.rpm

- Scientific Linux Development Team