[FEDORA-2008-2662] Fedora 7: chmsee, devhelp, epiphany, epiphany-extensions, firefox & 9 more
Severity
High
Affected Packages
14
CVEs
10
Mozilla Firefox is an open source Web browser. Several flaws were found in
the processing of some malformed web content. A web page containing such
malicious content could cause Firefox to crash or, potentially, execute
arbitrary code as the user running Firefox. (CVE-2008-1233, CVE-2008-1235,
CVE-2008-1236, CVE-2008-1237) Several flaws were found in the display of
malformed web content. A web page containing specially-crafted content could,
potentially, trick a Firefox user into surrendering sensitive information.
(CVE-2008-1234, CVE-2008-1238, CVE-2008-1241) All Firefox users should
upgrade to these updated packages, which correct these issues, and are rebuilt
against the update Firefox packages.
Package | Affected Version |
---|---|
pkg:rpm/fedora/yelp?distro=fedora-7 | < 2.18.1.10.fc7 |
pkg:rpm/fedora/ruby-gnome2?distro=fedora-7 | < 0.16.0.22.fc7 |
pkg:rpm/fedora/openvrml?distro=fedora-7 | < 0.16.7.4.fc7 |
pkg:rpm/fedora/Miro?distro=fedora-7 | < 1.1.2.2.fc7 |
pkg:rpm/fedora/liferea?distro=fedora-7 | < 1.4.13.2.fc7 |
pkg:rpm/fedora/kazehakase?distro=fedora-7 | < 0.5.3.5.fc7 |
pkg:rpm/fedora/gtkmozembedmm?distro=fedora-7 | < 1.4.2.cvs20060817.16.fc7 |
pkg:rpm/fedora/gnome-python2-extras?distro=fedora-7 | < 2.14.3.9.fc7 |
pkg:rpm/fedora/galeon?distro=fedora-7 | < 2.0.3.16.fc7 |
pkg:rpm/fedora/firefox?distro=fedora-7 | < 2.0.0.13.1.fc7 |
pkg:rpm/fedora/epiphany?distro=fedora-7 | < 2.18.3.8.fc7 |
pkg:rpm/fedora/epiphany-extensions?distro=fedora-7 | < 2.18.3.8 |
pkg:rpm/fedora/devhelp?distro=fedora-7 | < 0.13.15.fc7 |
pkg:rpm/fedora/chmsee?distro=fedora-7 | < 1.0.0.1.30.fc7 |
- ID
- FEDORA-2008-2662
- Severity
- high
- Severity from
- CVE-2008-1235
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2008-2662
- Published
-
2008-03-26T17:11:47
(16 years ago) - Modified
-
2008-03-26T17:11:47
(16 years ago) - Rights
- Copyright 2008 Red Hat, Inc.
- Other Advisories
-
- ELSA-2008-0207
- FEDORA-2007-2725
- FEDORA-2007-2853
- FEDORA-2007-3701
- FEDORA-2007-3733
- FEDORA-2007-4216
- FEDORA-2007-4229
- FEDORA-2008-11551
- FEDORA-2008-1435
- FEDORA-2008-1535
- FEDORA-2008-2682
- FEDORA-2008-3249
- FEDORA-2008-3283
- FEDORA-2008-3519
- FEDORA-2008-3557
- FEDORA-2008-6127
- FEDORA-2008-6491
- FEDORA-2008-8399
- FEDORA-2008-9667
- FREEBSD:12B336C6-FE36-11DC-B09C-001C2514716C
- FREEBSD:67BD39BA-12B5-11DD-BAB7-0016179B2DD5
- GLSA-200712-09
- GLSA-200805-18
- RUBYSEC:GTK2-2007-6183
- SSA:2008-128-02
- USN-592-1
- USN-605-1
- VU:466521
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 438721 | Bug #438721 - CVE-2008-1237 javascript crashes | https://bugzilla.redhat.com/show_bug.cgi?id=438721 |
Bugzilla | 438717 | Bug #438717 - CVE-2008-1235 chrome privilege via wrong principal | https://bugzilla.redhat.com/show_bug.cgi?id=438717 |
Bugzilla | 438724 | Bug #438724 - CVE-2008-1238 Referrer spoofing bug | https://bugzilla.redhat.com/show_bug.cgi?id=438724 |
Bugzilla | 438713 | Bug #438713 - CVE-2008-1233 Mozilla products XPCNativeWrapper pollution | https://bugzilla.redhat.com/show_bug.cgi?id=438713 |
Bugzilla | 438730 | Bug #438730 - CVE-2008-1241 XUL popup spoofing | https://bugzilla.redhat.com/show_bug.cgi?id=438730 |
Bugzilla | 438718 | Bug #438718 - CVE-2008-1236 browser engine crashes | https://bugzilla.redhat.com/show_bug.cgi?id=438718 |
Bugzilla | 438715 | Bug #438715 - CVE-2008-1234 universal XSS using event handlers | https://bugzilla.redhat.com/show_bug.cgi?id=438715 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/yelp?distro=fedora-7 | fedora | yelp | < 2.18.1.10.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/ruby-gnome2?distro=fedora-7 | fedora | ruby-gnome2 | < 0.16.0.22.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/openvrml?distro=fedora-7 | fedora | openvrml | < 0.16.7.4.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/Miro?distro=fedora-7 | fedora | Miro | < 1.1.2.2.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/liferea?distro=fedora-7 | fedora | liferea | < 1.4.13.2.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/kazehakase?distro=fedora-7 | fedora | kazehakase | < 0.5.3.5.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/gtkmozembedmm?distro=fedora-7 | fedora | gtkmozembedmm | < 1.4.2.cvs20060817.16.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/gnome-python2-extras?distro=fedora-7 | fedora | gnome-python2-extras | < 2.14.3.9.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/galeon?distro=fedora-7 | fedora | galeon | < 2.0.3.16.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/firefox?distro=fedora-7 | fedora | firefox | < 2.0.0.13.1.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/epiphany?distro=fedora-7 | fedora | epiphany | < 2.18.3.8.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/epiphany-extensions?distro=fedora-7 | fedora | epiphany-extensions | < 2.18.3.8 | fedora-7 | ||
Affected | pkg:rpm/fedora/devhelp?distro=fedora-7 | fedora | devhelp | < 0.13.15.fc7 | fedora-7 | ||
Affected | pkg:rpm/fedora/chmsee?distro=fedora-7 | fedora | chmsee | < 1.0.0.1.30.fc7 | fedora-7 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |