Alerts This Week
Warning Icon 1 537
Alerts This Week
Warning Icon 1 537

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -6 articles for you...
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity issuecritical

Red Hat Enterprise Linux 5, 6, 7: RHSA-2016:1551-01 Critical Firefox Update

An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Critical: firefox security update Advisory ID: RHSA-2016:1551-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2016:1551.html Issue date: 2016-08-03 CVE Names: CVE-2016-2830 CVE-2016-2836 CVE-2016-2837 CVE-2016-2838 CVE-2016-5252 CVE-2016-5254 CVE-2016-5258 CVE-2016-5259 CVE-2016-5262 CVE-2016-5263 CVE-2016-5264 CVE-2016-5265 ==================================================================== 1. Summary: An update for firefox is now available for Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux (v. 5 server) - i386, ppc, s390x, x86_64 Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) -ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: Mozilla Firefox is an open source web browser. This update upgrades Firefox to version 45.3.0 ESR. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2016-2836, CVE-2016-5258, CVE-2016-5259, CVE-2016-5252, CVE-2016-5263, CVE-2016-2830, CVE-2016-2838, CVE-2016-5254, CVE-2016-5262, CVE-2016-5264, CVE-2016-5265, CVE-2016-2837) Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Looben Yang, Carsten Book, Christian Holler, Gary Kwong, Jesse Ruderman, Andrew McCreight, Phil Ringnalda, Philipp, Toni Huttunen, Georg Koppen, Abhishek Arya, Atte Kettunen, Nils, Nikita Arykov, and Abdulrahman Alqabandi as the original reporters. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 After installing the update, Firefox must be restarted for the changes to take effect. 5. Bugs fixed (https://bugzilla.redhat.com/): 1342897 - CVE-2016-2830 Mozilla: Favicon network connection persists when page is closed (MFSA 2016-62) 1361974 - CVE-2016-2836 Mozilla: Miscellaneous memory safety hazards (rv:45.3) (MFSA 2016-62) 1361976 - CVE-2016-2838 Mozilla: Buffer overflow rendering SVG with bidirectional content (MFSA 2016-64) 1361979 - CVE-2016-5252 Mozilla: Stack underflow during 2D graphics rendering (MFSA 2016-67) 1361980 - CVE-2016-5254 Mozilla: Use-after-free when using alt key and toplevel menus (MFSA 2016-70) 1361982 - CVE-2016-5258Mozilla: Use-after-free in DTLS during WebRTC session shutdown (MFSA 2016-72) 1361984 - CVE-2016-5259 Mozilla: Use-after-free in service workers with nested sync events (MFSA 2016-73) 1361987 - CVE-2016-5262 Mozilla: Scripts on marquee tag can execute in sandboxed iframes (MFSA 2016-76) 1361989 - CVE-2016-2837 Mozilla: Buffer overflow in ClearKey Content Decryption Module (CDM) during video playback (MFSA 2016-77) 1361991 - CVE-2016-5263 Mozilla: Type confusion in display transformation (MFSA 2016-78) 1361992 - CVE-2016-5264 Mozilla: Use-after-free when applying SVG effects (MFSA 2016-79) 1361994 - CVE-2016-5265 Mozilla: Same-origin policy violation using local HTML file and saved shortcut file (MFSA 2016-80) 6. Package List: Red Hat Enterprise Linux Desktop (v. 5 client): Source: firefox-45.3.0-1.el5_11.src.rpm i386: firefox-45.3.0-1.el5_11.i386.rpm firefox-debuginfo-45.3.0-1.el5_11.i386.rpm x86_64: firefox-45.3.0-1.el5_11.i386.rpm firefox-45.3.0-1.el5_11.x86_64.rpm firefox-debuginfo-45.3.0-1.el5_11.i386.rpm firefox-debuginfo-45.3.0-1.el5_11.x86_64.rpm Red Hat Enterprise Linux (v. 5 server): Source: firefox-45.3.0-1.el5_11.src.rpm i386: firefox-45.3.0-1.el5_11.i386.rpm firefox-debuginfo-45.3.0-1.el5_11.i386.rpm ppc: firefox-45.3.0-1.el5_11.ppc64.rpm firefox-debuginfo-45.3.0-1.el5_11.ppc64.rpm s390x: firefox-45.3.0-1.el5_11.s390.rpm firefox-45.3.0-1.el5_11.s390x.rpm firefox-debuginfo-45.3.0-1.el5_11.s390.rpm firefox-debuginfo-45.3.0-1.el5_11.s390x.rpm x86_64: firefox-45.3.0-1.el5_11.i386.rpm firefox-45.3.0-1.el5_11.x86_64.rpm firefox-debuginfo-45.3.0-1.el5_11.i386.rpm firefox-debuginfo-45.3.0-1.el5_11.x86_64.rpm Red Hat Enterprise Linux Desktop (v. 6): Source: firefox-45.3.0-1.el6_8.src.rpm i386: firefox-45.3.0-1.el6_8.i686.rpm firefox-debuginfo-45.3.0-1.el6_8.i686.rpm x86_64: firefox-45.3.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.3.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Desktop Optional (v. 6): x86_64: firefox-45.3.0-1.el6_8.i686.rpm firefox-debuginfo-45.3.0-1.el6_8.i686.rpm Red HatEnterprise Linux HPC Node Optional (v. 6): Source: firefox-45.3.0-1.el6_8.src.rpm x86_64: firefox-45.3.0-1.el6_8.i686.rpm firefox-45.3.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.3.0-1.el6_8.i686.rpm firefox-debuginfo-45.3.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Server (v. 6): Source: firefox-45.3.0-1.el6_8.src.rpm i386: firefox-45.3.0-1.el6_8.i686.rpm firefox-debuginfo-45.3.0-1.el6_8.i686.rpm ppc64: firefox-45.3.0-1.el6_8.ppc64.rpm firefox-debuginfo-45.3.0-1.el6_8.ppc64.rpm s390x: firefox-45.3.0-1.el6_8.s390x.rpm firefox-debuginfo-45.3.0-1.el6_8.s390x.rpm x86_64: firefox-45.3.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.3.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 6): ppc64: firefox-45.3.0-1.el6_8.ppc.rpm firefox-debuginfo-45.3.0-1.el6_8.ppc.rpm s390x: firefox-45.3.0-1.el6_8.s390.rpm firefox-debuginfo-45.3.0-1.el6_8.s390.rpm x86_64: firefox-45.3.0-1.el6_8.i686.rpm firefox-debuginfo-45.3.0-1.el6_8.i686.rpm Red Hat Enterprise Linux Workstation (v. 6): Source: firefox-45.3.0-1.el6_8.src.rpm i386: firefox-45.3.0-1.el6_8.i686.rpm firefox-debuginfo-45.3.0-1.el6_8.i686.rpm x86_64: firefox-45.3.0-1.el6_8.x86_64.rpm firefox-debuginfo-45.3.0-1.el6_8.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 6): x86_64: firefox-45.3.0-1.el6_8.i686.rpm firefox-debuginfo-45.3.0-1.el6_8.i686.rpm Red Hat Enterprise Linux Client (v. 7): Source: firefox-45.3.0-1.el7_2.src.rpm x86_64: firefox-45.3.0-1.el7_2.x86_64.rpm firefox-debuginfo-45.3.0-1.el7_2.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: firefox-45.3.0-1.el7_2.i686.rpm firefox-debuginfo-45.3.0-1.el7_2.i686.rpm Red Hat Enterprise Linux Server (v.7): Source: firefox-45.3.0-1.el7_2.src.rpm ppc64: firefox-45.3.0-1.el7_2.ppc64.rpm firefox-debuginfo-45.3.0-1.el7_2.ppc64.rpm ppc64le: firefox-45.3.0-1.el7_2.ppc64le.rpm firefox-debuginfo-45.3.0-1.el7_2.ppc64le.rpm s390x: firefox-45.3.0-1.el7_2.s390x.rpm firefox-debuginfo-45.3.0-1.el7_2.s390x.rpm x86_64: firefox-45.3.0-1.el7_2.x86_64.rpm firefox-debuginfo-45.3.0-1.el7_2.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: firefox-45.3.0-1.el7_2.ppc.rpm firefox-debuginfo-45.3.0-1.el7_2.ppc.rpm s390x: firefox-45.3.0-1.el7_2.s390.rpm firefox-debuginfo-45.3.0-1.el7_2.s390.rpm x86_64: firefox-45.3.0-1.el7_2.i686.rpm firefox-debuginfo-45.3.0-1.el7_2.i686.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: firefox-45.3.0-1.el7_2.src.rpm x86_64: firefox-45.3.0-1.el7_2.x86_64.rpm firefox-debuginfo-45.3.0-1.el7_2.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: firefox-45.3.0-1.el7_2.i686.rpm firefox-debuginfo-45.3.0-1.el7_2.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2016-2830 https://access.redhat.com/security/cve/CVE-2016-2836 https://access.redhat.com/security/cve/CVE-2016-2837 https://access.redhat.com/security/cve/CVE-2016-2838 https://access.redhat.com/security/cve/CVE-2016-5252 https://access.redhat.com/security/cve/CVE-2016-5254 https://access.redhat.com/security/cve/CVE-2016-5258 https://access.redhat.com/security/cve/CVE-2016-5259 https://access.redhat.com/security/cve/CVE-2016-5262 https://access.redhat.com/security/cve/CVE-2016-5263 https://access.redhat.com/security/cve/CVE-2016-5264 https://access.redhat.com/security/cve/CVE-2016-5265 https://access.redhat.com/security/updates/classification#critical https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-esr/#firefoxesr45.3 8. Contact: The Red Hat security contact is . More contact details athttps://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFXoafWXlSAg2UNWIIRAq+zAKC202d7mW8cxaGZGaVCl/JIzgonIACdHNQJ xq763iFAD8z/5QNF3S/D+Is=Gwhg -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Stay informed about the latest Mozilla Firefox update, which addresses critical vulnerabilities, improves performance, and enhances security across systems. firefox Update, Red Hat Security, Critical Advisory, Red Hat Enterprise, Web Browser Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Aug 03, 2016 Critical Red Hat
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisorysecurity updateRed Hat

Red Hat 6 Chromium-browser Update: RHSA-2016-0638-01 Important Fix

An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: chromium-browser security update Advisory ID: RHSA-2016:0638-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://access.redhat.com/errata/RHSA-2016:0638.html Issue date: 2016-04-18 CVE Names: CVE-2016-1651 CVE-2016-1652 CVE-2016-1653 CVE-2016-1654 CVE-2016-1655 CVE-2016-1656 CVE-2016-1657 CVE-2016-1658 CVE-2016-1659 ==================================================================== 1. Summary: An update for chromium-browser is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Description: Chromium is an open-source web browser, powered by WebKit (Blink). This update upgrades Chromium to version 50.0.2661.75. Security Fix(es): Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose sensitive information when visited by the victim. (CVE-2016-1652, CVE-2016-1653, CVE-2016-1651, CVE-2016-1654, CVE-2016-1655, CVE-2016-1656, CVE-2016-1657,CVE-2016-1658, CVE-2016-1659) 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1327109 - CVE-2016-1652 chromium-browser: universal XSS in extension bindings 1327110 - CVE-2016-1653 chromium-browser: out-of-bounds write in V8 1327111 - CVE-2016-1651 chromium-browser: out-of-bounds read in Pdfium JPEG2000 decoding 1327112 - CVE-2016-1654 chromium-browser: uninitialized memory read in media 1327113 - CVE-2016-1655 chromium-browser: use-after-free related to extensions 1327114 - CVE-2016-1656 chromium-browser: android downloaded file path restriction bypass 1327115 - CVE-2016-1657 chromium-browser: address bar spoofing 1327117 - CVE-2016-1658 chromium-browser: potential leak of sensitive information to malicious extensions 1327120 - CVE-2016-1659 chromium-browser: various fixes from internal audits 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: chromium-browser-50.0.2661.75-1.el6.i686.rpm chromium-browser-debuginfo-50.0.2661.75-1.el6.i686.rpm x86_64: chromium-browser-50.0.2661.75-1.el6.x86_64.rpm chromium-browser-debuginfo-50.0.2661.75-1.el6.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: chromium-browser-50.0.2661.75-1.el6.i686.rpm chromium-browser-debuginfo-50.0.2661.75-1.el6.i686.rpm x86_64: chromium-browser-50.0.2661.75-1.el6.x86_64.rpm chromium-browser-debuginfo-50.0.2661.75-1.el6.x86_64.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: chromium-browser-50.0.2661.75-1.el6.i686.rpm chromium-browser-debuginfo-50.0.2661.75-1.el6.i686.rpm x86_64: chromium-browser-50.0.2661.75-1.el6.x86_64.rpm chromium-browser-debuginfo-50.0.2661.75-1.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2016-1651 https://access.redhat.com/security/cve/CVE-2016-1652 https://access.redhat.com/security/cve/CVE-2016-1653 https://access.redhat.com/security/cve/CVE-2016-1654 https://access.redhat.com/security/cve/CVE-2016-1655 https://access.redhat.com/security/cve/CVE-2016-1656 https://access.redhat.com/security/cve/CVE-2016-1657 https://access.redhat.com/security/cve/CVE-2016-1658 https://access.redhat.com/security/cve/CVE-2016-1659 https://access.redhat.com/security/updates/classification#important https://chromereleases.googleblog.com/2016/04/stable-channel-update_13.html 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFXFI1fXlSAg2UNWIIRApnZAJ0eUY9GCxnHLbxj9uMwwIjc4cNK6ACgpf9N DyK/7gI7S160U4dH4WSkh/8=i9SA -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Important enhancement for chromium-browser on Red Hat-based systems, tackling various vulnerabilities and promoting secure web experiences.. Red Hat Update, Chromium Fix, Security Advisory, Linux Browser Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 18, 2016 Important Red Hat
Banner 4 1028x280 1708121825 1771600306
200
Ls Advisories Scientific Esm H240
Price Tag 1security advisorycritical issuefirefox update

Scientific Linux: Critical Firefox Security Update 3.6.4

Critical: firefox security, bug fix, and enhancement update. Date: Wed, 23 Jun 2010 10:54:44 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA Critical: firefox on SL5.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." Synopsis: Critical: firefox security, bug fix, and enhancement update Issue date: 2010-06-22 CVE Names: CVE-2008-5913 CVE-2010-0182 CVE-2010-1121 CVE-2010-1125 CVE-2010-1196 CVE-2010-1197 CVE-2010-1198 CVE-2010-1199 CVE-2010-1200 CVE-2010-1202 CVE-2010-1203 Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2010-1121, CVE-2010-1200, CVE-2010-1202, CVE-2010-1203) A flaw was found in the way browser plug-ins interact. It was possible for a plug-in to reference the freed memory from a different plug-in, resulting in the execution of arbitrary code with the privileges of the user running Firefox. (CVE-2010-1198) Several integer overflow flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2010-1196, CVE-2010-1199) A focus stealing flaw was found in the way Firefox handled focus changes. A malicious website could use this flaw to steal sensitive data from a user, such as usernames and passwords. (CVE-2010-1125) A flaw was found in the way Firefox handled the "Content-Disposition: attachment" HTTP header when the "Content-Type: multipart" HTTP header was also present. A website that allows arbitrary uploads and relies on the "Content-Disposition: attachment" HTTP header to prevent content from being displayed inline, could be used by an attacker to serve malicious content to users. (CVE-2010-1197) A flaw was found in the Firefox Math.random() function. Thisfunction could be used to identify a browsing session and track a user across different websites. (CVE-2008-5913) A flaw was found in the Firefox XML document loading security checks. Certain security checks were not being called when an XML document was loaded. This could possibly be leveraged later by an attacker to load certain resources that violate the security policies of the browser or its add-ons. Note that this issue cannot be exploited by only loading an XML document. (CVE-2010-0182) This erratum upgrades Firefox from version 3.0.19 to version 3.6.4. Due to the requirements of Firefox 3.6.4, this erratum also provides a number of other updated packages, including esc, totem, and yelp. This erratum also contains multiple bug fixes and numerous enhancements. Space precludes documenting these changes in this advisory. Important: Firefox 3.6.4 is not completely backwards-compatible with all Mozilla Add-ons and Firefox plug-ins that worked with Firefox 3.0.19. Firefox 3.6 checks compatibility on first-launch, and, depending on the individual configuration and the installed Add-ons and plug-ins, may disable said Add-ons and plug-ins, or attempt to check for updates and upgrade them. Add-ons and plug-ins may have to be manually updated. After installing the update, Firefox must be restarted for the changes to take effect. SL 5.x SRPMS: devhelp-0.12-21.el5.src.rpm esc-1.1.0-12.el5.src.rpm firefox-3.6.4-8.el5.src.rpm gnome-python2-extras-2.14.2-7.el5.src.rpm totem-2.16.7-7.el5.src.rpm xulrunner-1.9.2.4-9.el5.src.rpm yelp-2.16.0-26.el5.src.rpm i386: devhelp-0.12-21.el5.i386.rpm devhelp-devel-0.12-21.el5.i386.rpm esc-1.1.0-12.el5.i386.rpm firefox-3.6.4-8.el5.i386.rpm gnome-python2-extras-2.14.2-7.el5.i386.rpm gnome-python2-gtkhtml2-2.14.2-7.el5.i386.rpm gnome-python2-gtkmozembed-2.14.2-7.el5.i386.rpm gnome-python2-gtkspell-2.14.2-7.el5.i386.rpm gnome-python2-libegg-2.14.2-7.el5.i386.rpm totem-2.16.7-7.el5.i386.rpm totem-devel-2.16.7-7.el5.i386.rpm totem-mozplugin-2.16.7-7.el5.i386.rpm xulrunner-1.9.2.4-9.el5.i386.rpm xulrunner-devel-1.9.2.4-9.el5.i386.rpm yelp-2.16.0-26.el5.i386.rpm x86_64: devhelp-0.12-21.el5.i386.rpm devhelp-0.12-21.el5.x86_64.rpm devhelp-devel-0.12-21.el5.i386.rpm devhelp-devel-0.12-21.el5.x86_64.rpm esc-1.1.0-12.el5.x86_64.rpm firefox-3.6.4-8.el5.i386.rpm firefox-3.6.4-8.el5.x86_64.rpm gnome-python2-extras-2.14.2-7.el5.x86_64.rpm gnome-python2-gtkhtml2-2.14.2-7.el5.x86_64.rpm gnome-python2-gtkmozembed-2.14.2-7.el5.x86_64.rpm gnome-python2-gtkspell-2.14.2-7.el5.x86_64.rpm gnome-python2-libegg-2.14.2-7.el5.x86_64.rpm totem-2.16.7-7.el5.i386.rpm totem-2.16.7-7.el5.x86_64.rpm totem-devel-2.16.7-7.el5.i386.rpm totem-devel-2.16.7-7.el5.x86_64.rpm totem-mozplugin-2.16.7-7.el5.x86_64.rpm xulrunner-1.9.2.4-9.el5.i386.rpm xulrunner-1.9.2.4-9.el5.x86_64.rpm xulrunner-devel-1.9.2.4-9.el5.i386.rpm xulrunner-devel-1.9.2.4-9.el5.x86_64.rpm yelp-2.16.0-26.el5.x86_64.rpm -Connie Sieh -Troy Dawson . Uncover essential adjustments in Firefox that tackle numerous vulnerabilities on Scientific Linux, fortifying your system's defenses.. firefox security fix, scientific linux update, firefox vulnerabilities, web browser enhancements. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 23, 2010 Critical Scientific Linux
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":548,"type":"x","order":1,"pct":78.51,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.87,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.32,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here