1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2008-2662

[FEDORA-2008-2662] Fedora 7: chmsee, devhelp, epiphany, epiphany-extensions, firefox & 9 more

Severity High
Affected Packages 14
CVEs 10
Info Packages References Vulnerabilities

Mozilla Firefox is an open source Web browser. Several flaws were found in
the processing of some malformed web content. A web page containing such
malicious content could cause Firefox to crash or, potentially, execute
arbitrary code as the user running Firefox. (CVE-2008-1233, CVE-2008-1235,
CVE-2008-1236, CVE-2008-1237) Several flaws were found in the display of
malformed web content. A web page containing specially-crafted content could,
potentially, trick a Firefox user into surrendering sensitive information.
(CVE-2008-1234, CVE-2008-1238, CVE-2008-1241) All Firefox users should
upgrade to these updated packages, which correct these issues, and are rebuilt
against the update Firefox packages.

Package Affected Version
pkg:rpm/fedora/yelp?distro=fedora-7 < 2.18.1.10.fc7
pkg:rpm/fedora/ruby-gnome2?distro=fedora-7 < 0.16.0.22.fc7
pkg:rpm/fedora/openvrml?distro=fedora-7 < 0.16.7.4.fc7
pkg:rpm/fedora/Miro?distro=fedora-7 < 1.1.2.2.fc7
pkg:rpm/fedora/liferea?distro=fedora-7 < 1.4.13.2.fc7
pkg:rpm/fedora/kazehakase?distro=fedora-7 < 0.5.3.5.fc7
pkg:rpm/fedora/gtkmozembedmm?distro=fedora-7 < 1.4.2.cvs20060817.16.fc7
pkg:rpm/fedora/gnome-python2-extras?distro=fedora-7 < 2.14.3.9.fc7
pkg:rpm/fedora/galeon?distro=fedora-7 < 2.0.3.16.fc7
pkg:rpm/fedora/firefox?distro=fedora-7 < 2.0.0.13.1.fc7
pkg:rpm/fedora/epiphany?distro=fedora-7 < 2.18.3.8.fc7
pkg:rpm/fedora/epiphany-extensions?distro=fedora-7 < 2.18.3.8
pkg:rpm/fedora/devhelp?distro=fedora-7 < 0.13.15.fc7
pkg:rpm/fedora/chmsee?distro=fedora-7 < 1.0.0.1.30.fc7
ID
FEDORA-2008-2662
Severity
high
Severity from
CVE-2008-1235
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2008-2662
Published
2008-03-26T17:11:47
(16 years ago)
Modified
2008-03-26T17:11:47
(16 years ago)
Rights
Copyright 2008 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 438721 Bug #438721 - CVE-2008-1237 javascript crashes https://bugzilla.redhat.com/show_bug.cgi?id=438721
Bugzilla 438717 Bug #438717 - CVE-2008-1235 chrome privilege via wrong principal https://bugzilla.redhat.com/show_bug.cgi?id=438717
Bugzilla 438724 Bug #438724 - CVE-2008-1238 Referrer spoofing bug https://bugzilla.redhat.com/show_bug.cgi?id=438724
Bugzilla 438713 Bug #438713 - CVE-2008-1233 Mozilla products XPCNativeWrapper pollution https://bugzilla.redhat.com/show_bug.cgi?id=438713
Bugzilla 438730 Bug #438730 - CVE-2008-1241 XUL popup spoofing https://bugzilla.redhat.com/show_bug.cgi?id=438730
Bugzilla 438718 Bug #438718 - CVE-2008-1236 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=438718
Bugzilla 438715 Bug #438715 - CVE-2008-1234 universal XSS using event handlers https://bugzilla.redhat.com/show_bug.cgi?id=438715
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/yelp?distro=fedora-7 fedora yelp < 2.18.1.10.fc7 fedora-7
Affected pkg:rpm/fedora/ruby-gnome2?distro=fedora-7 fedora ruby-gnome2 < 0.16.0.22.fc7 fedora-7
Affected pkg:rpm/fedora/openvrml?distro=fedora-7 fedora openvrml < 0.16.7.4.fc7 fedora-7
Affected pkg:rpm/fedora/Miro?distro=fedora-7 fedora Miro < 1.1.2.2.fc7 fedora-7
Affected pkg:rpm/fedora/liferea?distro=fedora-7 fedora liferea < 1.4.13.2.fc7 fedora-7
Affected pkg:rpm/fedora/kazehakase?distro=fedora-7 fedora kazehakase < 0.5.3.5.fc7 fedora-7
Affected pkg:rpm/fedora/gtkmozembedmm?distro=fedora-7 fedora gtkmozembedmm < 1.4.2.cvs20060817.16.fc7 fedora-7
Affected pkg:rpm/fedora/gnome-python2-extras?distro=fedora-7 fedora gnome-python2-extras < 2.14.3.9.fc7 fedora-7
Affected pkg:rpm/fedora/galeon?distro=fedora-7 fedora galeon < 2.0.3.16.fc7 fedora-7
Affected pkg:rpm/fedora/firefox?distro=fedora-7 fedora firefox < 2.0.0.13.1.fc7 fedora-7
Affected pkg:rpm/fedora/epiphany?distro=fedora-7 fedora epiphany < 2.18.3.8.fc7 fedora-7
Affected pkg:rpm/fedora/epiphany-extensions?distro=fedora-7 fedora epiphany-extensions < 2.18.3.8 fedora-7
Affected pkg:rpm/fedora/devhelp?distro=fedora-7 fedora devhelp < 0.13.15.fc7 fedora-7
Affected pkg:rpm/fedora/chmsee?distro=fedora-7 fedora chmsee < 1.0.0.1.30.fc7 fedora-7
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date