1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2008-2682

[FEDORA-2008-2682] Fedora 8: Miro, yelp, epiphany, gtkmozembedmm, ruby-gnome2 & 11 more

Severity High
Affected Packages 16
CVEs 11
Info Packages References Vulnerabilities

Mozilla Firefox is an open source Web browser. Several flaws were found in
the processing of some malformed web content. A web page containing such
malicious content could cause Firefox to crash or, potentially, execute
arbitrary code as the user running Firefox. (CVE-2008-1233, CVE-2008-1235,
CVE-2008-1236, CVE-2008-1237) Several flaws were found in the display of
malformed web content. A web page containing specially-crafted content could,
potentially, trick a Firefox user into surrendering sensitive information.
(CVE-2008-1234, CVE-2008-1238, CVE-2008-1241) All Firefox users should
upgrade to these updated packages, which correct these issues, and are rebuilt
against the update Firefox packages.

Package Affected Version
pkg:rpm/fedora/yelp?distro=fedora-8 < 2.20.0.8.fc8
pkg:rpm/fedora/ruby-gnome2?distro=fedora-8 < 0.16.0.21.fc8
pkg:rpm/fedora/openvrml?distro=fedora-8 < 0.17.5.4.fc8
pkg:rpm/fedora/Miro?distro=fedora-8 < 1.1.2.2.fc8
pkg:rpm/fedora/liferea?distro=fedora-8 < 1.4.13.2.fc8
pkg:rpm/fedora/kazehakase?distro=fedora-8 < 0.5.3.5.fc8
pkg:rpm/fedora/gtkmozembedmm?distro=fedora-8 < 1.4.2.cvs20060817.19.fc8
pkg:rpm/fedora/gnome-web-photo?distro=fedora-8 < 0.3.9.fc8
pkg:rpm/fedora/gnome-python2-extras?distro=fedora-8 < 2.19.1.13.fc8
pkg:rpm/fedora/galeon?distro=fedora-8 < 2.0.4.1.fc8.3
pkg:rpm/fedora/firefox?distro=fedora-8 < 2.0.0.13.1.fc8
pkg:rpm/fedora/epiphany?distro=fedora-8 < 2.20.3.2.fc8
pkg:rpm/fedora/epiphany-extensions?distro=fedora-8 < 2.20.1.6.fc8
pkg:rpm/fedora/devhelp?distro=fedora-8 < 0.16.1.6.fc8
pkg:rpm/fedora/chmsee?distro=fedora-8 < 1.0.0.1.30.fc8
pkg:rpm/fedora/blam?distro=fedora-8 < 1.8.3.14.fc8
ID
FEDORA-2008-2682
Severity
high
Severity from
CVE-2008-1235
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2008-2682
Published
2008-03-26T17:14:06
(16 years ago)
Modified
2008-03-26T17:14:06
(16 years ago)
Rights
Copyright 2008 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 438713 Bug #438713 - CVE-2008-1233 Mozilla products XPCNativeWrapper pollution https://bugzilla.redhat.com/show_bug.cgi?id=438713
Bugzilla 438715 Bug #438715 - CVE-2008-1234 universal XSS using event handlers https://bugzilla.redhat.com/show_bug.cgi?id=438715
Bugzilla 438730 Bug #438730 - CVE-2008-1241 XUL popup spoofing https://bugzilla.redhat.com/show_bug.cgi?id=438730
Bugzilla 438718 Bug #438718 - CVE-2008-1236 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=438718
Bugzilla 438724 Bug #438724 - CVE-2008-1238 Referrer spoofing bug https://bugzilla.redhat.com/show_bug.cgi?id=438724
Bugzilla 438717 Bug #438717 - CVE-2008-1235 chrome privilege via wrong principal https://bugzilla.redhat.com/show_bug.cgi?id=438717
Bugzilla 438721 Bug #438721 - CVE-2008-1237 javascript crashes https://bugzilla.redhat.com/show_bug.cgi?id=438721
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/yelp?distro=fedora-8 fedora yelp < 2.20.0.8.fc8 fedora-8
Affected pkg:rpm/fedora/ruby-gnome2?distro=fedora-8 fedora ruby-gnome2 < 0.16.0.21.fc8 fedora-8
Affected pkg:rpm/fedora/openvrml?distro=fedora-8 fedora openvrml < 0.17.5.4.fc8 fedora-8
Affected pkg:rpm/fedora/Miro?distro=fedora-8 fedora Miro < 1.1.2.2.fc8 fedora-8
Affected pkg:rpm/fedora/liferea?distro=fedora-8 fedora liferea < 1.4.13.2.fc8 fedora-8
Affected pkg:rpm/fedora/kazehakase?distro=fedora-8 fedora kazehakase < 0.5.3.5.fc8 fedora-8
Affected pkg:rpm/fedora/gtkmozembedmm?distro=fedora-8 fedora gtkmozembedmm < 1.4.2.cvs20060817.19.fc8 fedora-8
Affected pkg:rpm/fedora/gnome-web-photo?distro=fedora-8 fedora gnome-web-photo < 0.3.9.fc8 fedora-8
Affected pkg:rpm/fedora/gnome-python2-extras?distro=fedora-8 fedora gnome-python2-extras < 2.19.1.13.fc8 fedora-8
Affected pkg:rpm/fedora/galeon?distro=fedora-8 fedora galeon < 2.0.4.1.fc8.3 fedora-8
Affected pkg:rpm/fedora/firefox?distro=fedora-8 fedora firefox < 2.0.0.13.1.fc8 fedora-8
Affected pkg:rpm/fedora/epiphany?distro=fedora-8 fedora epiphany < 2.20.3.2.fc8 fedora-8
Affected pkg:rpm/fedora/epiphany-extensions?distro=fedora-8 fedora epiphany-extensions < 2.20.1.6.fc8 fedora-8
Affected pkg:rpm/fedora/devhelp?distro=fedora-8 fedora devhelp < 0.16.1.6.fc8 fedora-8
Affected pkg:rpm/fedora/chmsee?distro=fedora-8 fedora chmsee < 1.0.0.1.30.fc8 fedora-8
Affected pkg:rpm/fedora/blam?distro=fedora-8 fedora blam < 1.8.3.14.fc8 fedora-8
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date