Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 2 articles for you...
172
security advisoryXSSDoSUbuntu 11.10, USN-1355-2 Moderate: Mozvoikko Update for Firefox
This update provides compatible Mozvoikko packages for the latest Firefox.. =========================================================================Ubuntu Security Notice USN-1355-2 February 03, 2012 mozvoikko update ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.10 - Ubuntu 10.04 LTS Summary: This update provides compatible Mozvoikko packages for the latest Firefox. Software Description: - mozvoikko: Finnish spell-checker extension for Firefox Details: USN-1355-1 fixed vulnerabilities in Firefox. This update provides an updated Mozvoikko package for use with the latest Firefox. Original advisory details: It was discovered that if a user chose to export their Firefox Sync key the "Firefox Recovery Key.html" file is saved with incorrect permissions, making the file contents potentially readable by other users. (CVE-2012-0450) Nicolas Gregoire and Aki Helin discovered that when processing a malformed embedded XSLT stylesheet, Firefox can crash due to memory corruption. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. (CVE-2012-0449) It was discovered that memory corruption could occur during the decoding of Ogg Vorbis files. If the user were tricked into opening a specially crafted file, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. (CVE-2012-0444) Tim Abraldes discovered that when encoding certain images types the resulting data was always a fixed size. There is the possibility of sensitive data from uninitialized memory being appended to these images. (CVE-2012-0447) It was discovered that Firefox didnot properly perform XPConnect security checks. An attacker could exploit this to conduct cross-site scripting (XSS) attacks through web pages and Firefox extensions. With cross-site scripting vulnerabilities, if a user were tricked into viewing a specially crafted page, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. (CVE-2012-0446) It was discovered that Firefox did not properly handle node removal in the DOM. If the user were tricked into opening a specially crafted page, an attacker could exploit this to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. (CVE-2011-3659) Alex Dvorov discovered that Firefox did not properly handle sub-frames in form submissions. An attacker could exploit this to conduct phishing attacks using HTML5 frames. (CVE-2012-0445) Ben Hawkes, Christian Holler, Honza Bombas, Jason Orendorff, Jesse Ruderman, Jan Odvarko, Peter Van Der Beken, Bob Clary, and Bill McCloskey discovered memory safety issues affecting Firefox. If the user were tricked into opening a specially crafted page, an attacker could exploit these to cause a denial of service via application crash, or potentially execute code with the privileges of the user invoking Firefox. (CVE-2012-0442, CVE-2012-0443) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: xul-ext-mozvoikko 2.0.1-0ubuntu0.11.10.1 Ubuntu 11.04: xul-ext-mozvoikko 2.0.1-0ubuntu0.11.04.1 Ubuntu 10.10: xul-ext-mozvoikko 2.0.1-0ubuntu0.10.10.1 Ubuntu 10.04 LTS: xul-ext-mozvoikko 2.0.1-0ubuntu0.10.04.1 After a standard system update you need to restart Firefox to make all the necessary changes. References: https://bugs.launchpad.net/ubuntu/+source/firefox/+bug/923319 Package Information: https://launchpad.net/ubuntu/+source/mozvoikko/2.0.1-0ubuntu0.11.10.1 https://launchpad.net/ubuntu/+source/mozvoikko/2.0.1-0ubuntu0.11.04.1 https://launchpad.net/ubuntu/+source/mozvoikko/2.0.1-0ubuntu0.10.10.1 https://launchpad.net/ubuntu/+source/mozvoikko/2.0.1-0ubuntu0.10.04.1 . Critical notification for users of Mozvoikko on Ubuntu deals with vulnerabilities found in Firefox across various versions. Update immediately.. Mozilla Firefox, security patch, Ubuntu update, plugin vulnerability, spell-checker. . LinuxSecurity.com Team
Feb 03, 2012
Ubuntu
172
security advisoryupdatecode executionUbuntu 11.10: USN-1306-2 Moderate: Ubufox and Mozvoikko Update
This update provides compatible packages for Firefox 9.. =========================================================================Ubuntu Security Notice USN-1306-2 January 06, 2012 mozvoikko, ubufox update ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 11.10 - Ubuntu 11.04 Summary: This update provides compatible packages for Firefox 9. Software Description: - mozvoikko: Finnish spell-checker extension for Firefox (transitional package - ubufox: Ubuntu Firefox specific configuration defaults and apt support Details: USN-1306-1 fixed vulnerabilities in Firefox. This update provides updated Mozvoikko and ubufox packages for use with Firefox 9. Original advisory details: Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Firefox or execute arbitrary code as the user that invoked Firefox. (CVE-2011-3660) Aki Helin discovered a crash in the YARR regular expression library that could be triggered by javascript in web content. (CVE-2011-3661) It was discovered that a flaw in the Mozilla SVG implementation could result in an out-of-bounds memory access if SVG elements were removed during a DOMAttrModified event handler. An attacker could potentially exploit this vulnerability to crash Firefox. (CVE-2011-3658) Mario Heiderich discovered it was possible to use SVG animation accessKey events to detect key strokes even when JavaScript was disabled. A malicious web page could potentially exploit this to trick a user into interacting with a prompt thinking it came from the browser in a context where the user believed scripting was disabled. (CVE-2011-3663) It was discovered that it was possible to crash Firefox when scaling an OGG element to extreme sizes. (CVE-2011-3665) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 11.10: xul-ext-mozvoikko 1.10.0-0ubuntu2.2 xul-ext-ubufox 1.0.2-0ubuntu0.11.10.1 Ubuntu 11.04: xul-ext-mozvoikko 1.10.0-0ubuntu0.11.04.4 xul-ext-ubufox 0.9.3-0ubuntu0.11.04.1 After a standard system update you need to restart Firefox to make all the necessary changes. References: https://bugs.launchpad.net/ubuntu/+source/firefox/+bug/906389 Package Information: https://launchpad.net/ubuntu/+source/mozvoikko/1.10.0-0ubuntu2.2 https://launchpad.net/ubuntu/+source/ubufox/1.0.2-0ubuntu0.11.10.1 https://launchpad.net/ubuntu/+source/mozvoikko/1.10.0-0ubuntu0.11.04.4 https://launchpad.net/ubuntu/+source/ubufox/0.9.3-0ubuntu0.11.04.1 . Patch addresses vulnerabilities in mozvoikko and ubufox to ensure compatibility with Firefox 9 on Ubuntu platforms.. FireFox Update, Ubuntu Notice, mozvoikko Security, ubufox Patch. . LinuxSecurity.com Team
Jan 06, 2012
Ubuntu
89
security advisorymoderatesecurity issueFedora 10 FEDORA-2009-10981 Moderate: Firefox Security Issues
Update to new upstream Firefox version 3.0.15, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-10981 2009-11-04 10:56:11 -------------------------------------------------------------------------------- Name : mozvoikko Product : Fedora 10 Version : 0.9.5 Release : 15.fc10 URL : https://voikko.puimula.org/ Summary : Finnish Voikko spell-checker extension for Mozilla programs Description : This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.0.15, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 27 2009 Jan Horak - 0.9.5-15 - Rebuild against newer gecko * Wed Sep 9 2009 Jan Horak - 0.9.5-14 - Rebuild against newer gecko * Tue Aug 4 2009 Jan Horak - 0.9.5-13 - Rebuild against newer gecko * Tue Jul 21 2009 Jan Horak - 0.9.5-12 - Rebuild against newer gecko * Thu Jun 11 2009 Christopher Aillon - 0.9.5-11 - Rebuild against newer gecko * Mon Apr 27 2009 Christopher Aillon - 0.9.5-10 - Rebuild against newer gecko * Tue Apr 21 2009 Christopher Aillon - 0.9.5-9 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 0.9.5-8 - Rebuild against newer gecko * Fri Mar 6 2009 Jan Horak - 0.9.5-7 - Rebuild against newer gecko * Wed Feb 4 2009Christopher Aillon - 0.9.5-6 - Rebuild against newer gecko * Wed Dec 17 2008 Christopher Aillon - 0.9.5-5 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530567 [ 2 ] Bug #530569 - CVE-2009-3382 Firefox crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=530569 [ 3 ] Bug #530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override https://bugzilla.redhat.com/show_bug.cgi?id=530168 [ 4 ] Bug #530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection() https://bugzilla.redhat.com/show_bug.cgi?id=530167 [ 5 ] Bug #530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion https://bugzilla.redhat.com/show_bug.cgi?id=530162 [ 6 ] Bug #530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS() https://bugzilla.redhat.com/show_bug.cgi?id=530157 [ 7 ] Bug #530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser https://bugzilla.redhat.com/show_bug.cgi?id=530156 [ 8 ] Bug #530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing https://bugzilla.redhat.com/show_bug.cgi?id=530155 [ 9 ] Bug #524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use https://bugzilla.redhat.com/show_bug.cgi?id=524815 [ 10 ] Bug #530151 - CVE-2009-3370 Firefox form history vulnerable to stealing https://bugzilla.redhat.com/show_bug.cgi?id=530151 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mozvoikko' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the FedoraProject GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Nov 04, 2009
•Important
Fedora
89
security advisorysecurity issuecriticalFedora 11: 2009-9505 Critical: Firefox Update Resolves Security Issues
Update to new upstream Firefox version 3.5.3, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-9505 2009-09-11 22:40:07 -------------------------------------------------------------------------------- Name : mozvoikko Product : Fedora 11 Version : 0.9.7 Release : 0.7.rc1.fc11 URL : https://voikko.puimula.org/ Summary : Finnish Voikko spell-checker extension for Mozilla programs Description : This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.3, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 9 2009 Jan Horak - 0.9.7-0.7.rc1 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon - 0.9.7-0.6.rc1 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak - 0.9.7-0.5.rc1 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon - 0.9.7-0.4.rc1 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #521684 - CVE-2009-3069 Firefox 3.5 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521684 [ 2 ] Bug #521686 - CVE-2009-3070 Firefox 3.5 3.0.14 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521686 [ 3] Bug #521687 - CVE-2009-3071 Firefox 3.5.2 3.0.14 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521687 [ 4 ] Bug #521688 - CVE-2009-3072 Firefox 3.5.3 3.0.14 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521688 [ 5 ] Bug #521689 - CVE-2009-3073 Firefox 3.5 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521689 [ 6 ] Bug #521690 - CVE-2009-3074 Firefox 3.5 3.0.14 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521690 [ 7 ] Bug #521691 - CVE-2009-3075 Firefox 3.5.2 3.0.14 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521691 [ 8 ] Bug #521693 - CVE-2009-3077 Firefox 3.5.3 3.0.14 TreeColumns dangling pointer vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=521693 [ 9 ] Bug #521694 - CVE-2009-3078 Firefox 3.5.3 3.0.14 Location bar spoofing via tall line-height Unicode characters https://bugzilla.redhat.com/show_bug.cgi?id=521694 [ 10 ] Bug #521695 - CVE-2009-3079 Firefox 3.5.3 3.0.14 Chrome privilege escalation with FeedWriter https://bugzilla.redhat.com/show_bug.cgi?id=521695 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mozvoikko' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Sep 11, 2009
•Critical
Fedora
89
security advisorymoderatesecurity issueFedora: 2009-8279 Moderate: Firefox Update for Mozvoikko Spell-Checker
Update to new upstream Firefox version 3.5.2, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-8279 2009-08-05 00:00:09 -------------------------------------------------------------------------------- Name : mozvoikko Product : Fedora 11 Version : 0.9.7 Release : 0.6.rc1.fc11 URL : https://voikko.puimula.org/ Summary : Finnish Voikko spell-checker extension for Mozilla programs Description : This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.2, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 3 2009 Christopher Aillon - 0.9.7-0.6.rc1 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak - 0.9.7-0.5.rc1 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon - 0.9.7-0.4.rc1 - Rebuild against newer gecko -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mozvoikko' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Aug 04, 2009
•Important
Fedora
89
security advisorysecurity issuecriticalFedora 10: 2009-7961 Critical: Firefox 3.0.12 Security Flaw
Update to new upstream Firefox version 3.0.12, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-7961 2009-07-23 18:32:19 -------------------------------------------------------------------------------- Name : mozvoikko Product : Fedora 10 Version : 0.9.5 Release : 12.fc10 URL : https://voikko.puimula.org/ Summary : Finnish Voikko spell-checker extension for Mozilla programs Description : This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.0.12, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 21 2009 Jan Horak - 0.9.5-12 - Rebuild against newer gecko * Thu Jun 11 2009 Christopher Aillon - 0.9.5-11 - Rebuild against newer gecko * Mon Apr 27 2009 Christopher Aillon - 0.9.5-10 - Rebuild against newer gecko * Tue Apr 21 2009 Christopher Aillon - 0.9.5-9 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 0.9.5-8 - Rebuild against newer gecko * Fri Mar 6 2009 Jan Horak - 0.9.5-7 - Rebuild against newer gecko * Wed Feb 4 2009 Christopher Aillon - 0.9.5-6 - Rebuild against newer gecko * Wed Dec 17 2008 Christopher Aillon - 0.9.5-5 - Rebuild against newergecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #512131 - CVE-2009-2463 Mozilla Base64 decoding crash https://bugzilla.redhat.com/show_bug.cgi?id=512131 [ 2 ] Bug #512133 - CVE-2009-2464 Mozilla crash with multiple RDFs in XUL tree https://bugzilla.redhat.com/show_bug.cgi?id=512133 [ 3 ] Bug #512135 - CVE-2009-2465 Mozilla double frame construction crashes https://bugzilla.redhat.com/show_bug.cgi?id=512135 [ 4 ] Bug #512128 - CVE-2009-2462 Mozilla Browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=512128 [ 5 ] Bug #512136 - CVE-2009-2466 Mozilla JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=512136 [ 6 ] Bug #512137 - CVE-2009-2467 Mozilla remote code execution during Flash player unloading https://bugzilla.redhat.com/show_bug.cgi?id=512137 [ 7 ] Bug #512142 - CVE-2009-2469 Mozilla remote code execution using watch and __defineSetter__ on SVG element https://bugzilla.redhat.com/show_bug.cgi?id=512142 [ 8 ] Bug #512146 - CVE-2009-2471 Mozilla setTimeout loses XPCNativeWrappers https://bugzilla.redhat.com/show_bug.cgi?id=512146 [ 9 ] Bug #512147 - CVE-2009-2472 Mozilla multiple cross origin wrapper bypasses https://bugzilla.redhat.com/show_bug.cgi?id=512147 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mozvoikko' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailinglist
Jul 23, 2009
•Critical
Fedora
89
security advisoryupdateFedoraFedora 11 Security Advisory: Mozvoikko Critical Fix for Firefox 3.5.1
Update to new upstream Firefox version 3.5.1, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-7898 2009-07-22 20:39:05 -------------------------------------------------------------------------------- Name : mozvoikko Product : Fedora 11 Version : 0.9.7 Release : 0.5.rc1.fc11 URL : https://voikko.puimula.org/ Summary : Finnish Voikko spell-checker extension for Mozilla programs Description : This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.1, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 17 2009 Jan Horak - 0.9.7-0.5.rc1 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon - 0.9.7-0.4.rc1 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #511228 - CVE-2009-2477 CVE-2009-2478 CVE-2009-2479 firefox 3.5 various flaws https://bugzilla.redhat.com/show_bug.cgi?id=511228 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mozvoikko' at the command line. For more information, refer to "Managing Software with yum", available at . Allpackages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Jul 22, 2009
•Critical
Fedora
89
security advisorysecurity issueupdateFedora 10: FEDORA-2009-4083 Moderate: Firefox Security Issue
Update to Firefox 3.0.10 fixing one security issue: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Depending packages rebuilt against new Firefox are also included in this update. Additional bugs fixed in other packages: - totem: Fix YouTube plugin following web site changes. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2009-4083 2009-04-28 00:41:58 -------------------------------------------------------------------------------- Name : mozvoikko Product : Fedora 10 Version : 0.9.5 Release : 10.fc10 URL : https://voikko.puimula.org/ Summary : Finnish Voikko spell-checker extension for Mozilla programs Description : This is mozvoikko, an extension for Mozilla programs for using the Finnish spell-checker Voikko. -------------------------------------------------------------------------------- Update Information: Update to Firefox 3.0.10 fixing one security issue: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.0/ Depending packages rebuilt against new Firefox are also included in this update. Additional bugs fixed in other packages: - totem: Fix YouTube plugin following web site changes -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 27 2009 Christopher Aillon - 0.9.5-10 - Rebuild against newer gecko * Tue Apr 21 2009 Christopher Aillon - 0.9.5-9 - Rebuild against newer gecko * Fri Mar 27 2009 Christopher Aillon - 0.9.5-8 - Rebuild against newer gecko * Fri Mar 6 2009 Jan Horak - 0.9.5-7 - Rebuild against newer gecko * Wed Feb 4 2009 Christopher Aillon - 0.9.5-6 - Rebuild against newer gecko * Wed Dec 17 2008 Christopher Aillon - 0.9.5-5 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #497447 - CVE-2009-1313 Firefox crash in nsTextFrame::ClearTextRun() https://bugzilla.redhat.com/show_bug.cgi?id=497447 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mozvoikko' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ Fedora-package-announce mailing list
Apr 27, 2009
•Important
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!