[FEDORA-2008-1535] Fedora 8: devhelp, blam, chmsee, epiphany-extensions, gnome-web-photo & 11 more
Mozilla Firefox is an open source Web browser. Several flaws were found in
the way Firefox processed certain malformed web content. A webpage containing
malicious content could cause Firefox to crash, or potentially execute arbitrary
code as the user running Firefox. (CVE-2008-0412, CVE-2008-0413, CVE-2008-0415,
CVE-2008-0419) Several flaws were found in the way Firefox displayed
malformed web content. A webpage containing specially-crafted content could
trick a user into surrendering sensitive information. (CVE-2008-0591,
CVE-2008-0593) A flaw was found in the way Firefox stored password data. If a
user saves login information for a malicious website, it could be possible to
corrupt the password database, preventing the user from properly accessing saved
password data. (CVE-2008-0417) A flaw was found in the way Firefox handles
certain chrome URLs. If a user has certain extensions installed, it could allow
a malicious website to steal sensitive session data. Note: this flaw does not
affect a default installation of Firefox. (CVE-2008-0418) A flaw was found in
the way Firefox saves certain text files. If a website offers a file of type
"plain/text", rather than "text/plain", Firefox will not show future
"text/plain" content to the user in the browser, forcing them to save those
files locally to view the content. (CVE-2008-0592) Users of firefox are
advised to upgrade to these updated packages, which contain updated packages to
resolve these issues.
Package | Affected Version |
---|---|
pkg:rpm/fedora/yelp?distro=fedora-8 | < 2.20.0.7.fc8 |
pkg:rpm/fedora/ruby-gnome2?distro=fedora-8 | < 0.16.0.20.fc8 |
pkg:rpm/fedora/openvrml?distro=fedora-8 | < 0.17.5.2.fc8 |
pkg:rpm/fedora/Miro?distro=fedora-8 | < 1.1.3.fc8 |
pkg:rpm/fedora/liferea?distro=fedora-8 | < 1.4.11.2.fc8 |
pkg:rpm/fedora/kazehakase?distro=fedora-8 | < 0.5.2.1.fc8.2 |
pkg:rpm/fedora/gtkmozembedmm?distro=fedora-8 | < 1.4.2.cvs20060817.18.fc8 |
pkg:rpm/fedora/gnome-web-photo?distro=fedora-8 | < 0.3.8.fc8 |
pkg:rpm/fedora/gnome-python2-extras?distro=fedora-8 | < 2.19.1.12.fc8 |
pkg:rpm/fedora/galeon?distro=fedora-8 | < 2.0.4.1.fc8.2 |
pkg:rpm/fedora/firefox?distro=fedora-8 | < 2.0.0.12.1.fc8 |
pkg:rpm/fedora/epiphany?distro=fedora-8 | < 2.20.2.3.fc8 |
pkg:rpm/fedora/epiphany-extensions?distro=fedora-8 | < 2.20.1.5.fc8 |
pkg:rpm/fedora/devhelp?distro=fedora-8 | < 0.16.1.5.fc8 |
pkg:rpm/fedora/chmsee?distro=fedora-8 | < 1.0.0.1.28.fc8 |
pkg:rpm/fedora/blam?distro=fedora-8 | < 1.8.3.13.fc8 |
- ID
- FEDORA-2008-1535
- Severity
- high
- Severity from
- CVE-2008-0412
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2008-1535
- Published
-
2008-02-13T05:04:58
(16 years ago) - Modified
-
2008-02-13T05:04:58
(16 years ago) - Rights
- Copyright 2008 Red Hat, Inc.
- Other Advisories
-
- ELSA-2008-0103
- FEDORA-2007-2725
- FEDORA-2007-2853
- FEDORA-2007-3011
- FEDORA-2007-3253
- FEDORA-2007-3701
- FEDORA-2007-3733
- FEDORA-2007-3792
- FEDORA-2007-3798
- FEDORA-2007-3952
- FEDORA-2007-3962
- FEDORA-2007-4216
- FEDORA-2007-4229
- FEDORA-2008-11551
- FEDORA-2008-1435
- FEDORA-2008-1459
- FEDORA-2008-1669
- FEDORA-2008-2060
- FEDORA-2008-2118
- FEDORA-2008-2662
- FEDORA-2008-2682
- FEDORA-2008-3249
- FEDORA-2008-3283
- FEDORA-2008-6127
- FEDORA-2008-6491
- FEDORA-2008-8399
- FEDORA-2008-9667
- FREEBSD:810A5197-E0D9-11DC-891A-02061B08FC24
- GLSA-200711-12
- GLSA-200712-09
- GLSA-200801-14
- GLSA-200805-18
- RUBYSEC:GTK2-2007-6183
- SSA:2008-061-01
- USN-560-1
- USN-576-1
- USN-582-1
- VU:309608
- VU:879056
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 431748 | Bug #431748 - CVE-2008-0418 Mozilla chrome: directory traversal | https://bugzilla.redhat.com/show_bug.cgi?id=431748 |
Bugzilla | 432040 | Bug #432040 - CVE-2008-0414 mozilla: multiple file input focus stealing vulnerabilities | https://bugzilla.redhat.com/show_bug.cgi?id=432040 |
Bugzilla | 431749 | Bug #431749 - CVE-2008-0419 Mozilla arbitrary code execution | https://bugzilla.redhat.com/show_bug.cgi?id=431749 |
Bugzilla | 431752 | Bug #431752 - CVE-2008-0592 Mozilla text file mishandling | https://bugzilla.redhat.com/show_bug.cgi?id=431752 |
Bugzilla | 431756 | Bug #431756 - CVE-2008-0593 Mozilla URL token stealing flaw | https://bugzilla.redhat.com/show_bug.cgi?id=431756 |
Bugzilla | 431739 | Bug #431739 - CVE-2008-0415 Mozilla arbitrary code execution | https://bugzilla.redhat.com/show_bug.cgi?id=431739 |
Bugzilla | 431732 | Bug #431732 - CVE-2008-0412 Mozilla layout engine crashes | https://bugzilla.redhat.com/show_bug.cgi?id=431732 |
Bugzilla | 432036 | Bug #432036 - CVE-2008-0594 mozilla: web forgery warning may not be displayed | https://bugzilla.redhat.com/show_bug.cgi?id=432036 |
Bugzilla | 431742 | Bug #431742 - CVE-2008-0417 Mozilla arbitrary code execution | https://bugzilla.redhat.com/show_bug.cgi?id=431742 |
Bugzilla | 431733 | Bug #431733 - CVE-2008-0413 Mozilla javascript engine crashes | https://bugzilla.redhat.com/show_bug.cgi?id=431733 |
Bugzilla | 431751 | Bug #431751 - CVE-2008-0591 Mozilla information disclosure flaw | https://bugzilla.redhat.com/show_bug.cgi?id=431751 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/yelp?distro=fedora-8 | fedora | yelp | < 2.20.0.7.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/ruby-gnome2?distro=fedora-8 | fedora | ruby-gnome2 | < 0.16.0.20.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/openvrml?distro=fedora-8 | fedora | openvrml | < 0.17.5.2.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/Miro?distro=fedora-8 | fedora | Miro | < 1.1.3.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/liferea?distro=fedora-8 | fedora | liferea | < 1.4.11.2.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/kazehakase?distro=fedora-8 | fedora | kazehakase | < 0.5.2.1.fc8.2 | fedora-8 | ||
Affected | pkg:rpm/fedora/gtkmozembedmm?distro=fedora-8 | fedora | gtkmozembedmm | < 1.4.2.cvs20060817.18.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/gnome-web-photo?distro=fedora-8 | fedora | gnome-web-photo | < 0.3.8.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/gnome-python2-extras?distro=fedora-8 | fedora | gnome-python2-extras | < 2.19.1.12.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/galeon?distro=fedora-8 | fedora | galeon | < 2.0.4.1.fc8.2 | fedora-8 | ||
Affected | pkg:rpm/fedora/firefox?distro=fedora-8 | fedora | firefox | < 2.0.0.12.1.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/epiphany?distro=fedora-8 | fedora | epiphany | < 2.20.2.3.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/epiphany-extensions?distro=fedora-8 | fedora | epiphany-extensions | < 2.20.1.5.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/devhelp?distro=fedora-8 | fedora | devhelp | < 0.16.1.5.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/chmsee?distro=fedora-8 | fedora | chmsee | < 1.0.0.1.28.fc8 | fedora-8 | ||
Affected | pkg:rpm/fedora/blam?distro=fedora-8 | fedora | blam | < 1.8.3.13.fc8 | fedora-8 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |