TITLE: Fedora update for firefox SECUNIA ADVISORY ID: SA19714 VERIFY ADVISORY: http://secunia.com/advisories/19714/ CRITICAL: Highly critical IMPACT: Security Bypass, Cross Site Scripting, Spoofing, Exposure of sensitive information, DoS, System access WHERE: >From remote OPERATING SYSTEM: Fedora Core 4 http://secunia.com/product/5251/ Fedora Core 5 http://secunia.com/product/8808/ DESCRIPTION: Fedora has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and phishing attacks, bypass certain security restrictions, disclose sensitive information, and potentially compromise a user's system. For more information: SA19631 SOLUTION: Apply updated packages. Fedora Core 4: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/ edc9582da8796f9658ed0478a474a5461c3d2a8f SRPMS/firefox-1.0.8-1.1.fc4.src.rpm 22f31a6966879e2b2a62a30f369c8e99ddcd0e7d ppc/firefox-1.0.8-1.1.fc4.ppc.rpm 8c8b61fcf154efdaf1cb630ecafb3ab1b95dfc03 ppc/debug/firefox-debuginfo-1.0.8-1.1.fc4.ppc.rpm 52ee41a4eefbfa8b0a139476b2d1b8a78d5ddc2b x86_64/firefox-1.0.8-1.1.fc4.x86_64.rpm 46b5a14188582e1760ca3bb4c3bb27be041fdeb1 x86_64/debug/firefox-debuginfo-1.0.8-1.1.fc4.x86_64.rpm 7ea4c55ba11869f85ca89a4b406a712e51c75c34 i386/firefox-1.0.8-1.1.fc4.i386.rpm 9b34e30b7c4ec287b823197e5b039d711fdcd5de i386/debug/firefox-debuginfo-1.0.8-1.1.fc4.i386.rpm Fedora Core 5: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ aba3a17adde822ac4d3bb900c65e87a06a8d331f SRPMS/firefox-1.5.0.2-1.1.fc5.src.rpm 1c80c1fd6561c3cc7f3e54463bc6d25445956e30 ppc/firefox-1.5.0.2-1.1.fc5.ppc.rpm 42b8356caa72dafaa84977bf987c6650c715fd7c ppc/debug/firefox-debuginfo-1.5.0.2-1.1.fc5.ppc.rpm bc79140dc00183aeecf8dccd36565a4f78f6bbcd x86_64/firefox-1.5.0.2-1.1.fc5.x86_64.rpm 95babbc4143fa8164ad71ce9da67469171b4d66f x86_64/debug/firefox-debuginfo-1.5.0.2-1.1.fc5.x86_64.rpm d89a1acecd42915ce7571dc1759661f01985e4f8 i386/firefox-1.5.0.2-1.1.fc5.i386.rpm 4f87d27853e5122b941afbfbb3a1788ffb338b4d i386/debug/firefox-debuginfo-1.5.0.2-1.1.fc5.i386.rpm OTHER REFERENCES: SA19631: http://secunia.com/advisories/19631/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ----------------------------------------------------------------------
