[FEDORA-2010-5515] Fedora 11: epiphany-extensions, yelp, google-gadgets, perl-Gtk2-MozEmbed, mozvoikko & 13 more
Severity
High
Affected Packages
18
CVEs
7
Update to new upstream Firefox version 3.5.9 / XULRunner version 1.9.1.9, fixing
multiple security issues detailed in the upstream advisories:
http://www.mozilla.org/security/known-
vulnerabilities/firefox35.html#firefox3.5.9 Update also includes all packages
depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176 CVE-2010-0177
CVE-2010-0178 CVE-2010-0181
- ID
- FEDORA-2010-5515
- Severity
- high
- Severity from
- CVE-2010-0174
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2010-5515
- Published
-
2010-04-01T01:49:04
(14 years ago) - Modified
-
2010-04-01T01:49:04
(14 years ago) - Rights
- Copyright 2010 Red Hat, Inc.
- Other Advisories
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 578154 | Bug #578154 - CVE-2010-0178 Firefox Chrome privilege escalation via forced URL drag and drop | https://bugzilla.redhat.com/show_bug.cgi?id=578154 |
Bugzilla | 578149 | Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection | https://bugzilla.redhat.com/show_bug.cgi?id=578149 |
Bugzilla | 578147 | Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption | https://bugzilla.redhat.com/show_bug.cgi?id=578147 |
Bugzilla | 578150 | Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView | https://bugzilla.redhat.com/show_bug.cgi?id=578150 |
Bugzilla | 578152 | Bug #578152 - CVE-2010-0177 Mozilla Dangling pointer vulnerability in nsPluginArray | https://bugzilla.redhat.com/show_bug.cgi?id=578152 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/yelp?distro=fedora-11 | fedora | yelp | < 2.26.0.12.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/xulrunner?distro=fedora-11 | fedora | xulrunner | < 1.9.1.9.1.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/perl-Gtk2-MozEmbed?distro=fedora-11 | fedora | perl-Gtk2-MozEmbed | < 0.08.6.fc11.10 | fedora-11 | ||
Affected | pkg:rpm/fedora/pcmanx-gtk2?distro=fedora-11 | fedora | pcmanx-gtk2 | < 0.3.9.4.20100222svn.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/mozvoikko?distro=fedora-11 | fedora | mozvoikko | < 0.9.7.0.12.rc1.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/Miro?distro=fedora-11 | fedora | Miro | < 2.5.4.3.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/kazehakase?distro=fedora-11 | fedora | kazehakase | < 0.5.8.5.fc11.1 | fedora-11 | ||
Affected | pkg:rpm/fedora/hulahop?distro=fedora-11 | fedora | hulahop | < 0.4.9.13.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/google-gadgets?distro=fedora-11 | fedora | google-gadgets | < 0.11.1.6.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/gnome-web-photo?distro=fedora-11 | fedora | gnome-web-photo | < 0.7.11.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/gnome-python2-extras?distro=fedora-11 | fedora | gnome-python2-extras | < 2.25.3.12.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/galeon?distro=fedora-11 | fedora | galeon | < 2.0.7.22.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/firefox?distro=fedora-11 | fedora | firefox | < 3.5.9.1.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/evolution-rss?distro=fedora-11 | fedora | evolution-rss | < 0.1.4.11.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/epiphany?distro=fedora-11 | fedora | epiphany | < 2.26.3.9.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/epiphany-extensions?distro=fedora-11 | fedora | epiphany-extensions | < 2.26.1.11.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/chmsee?distro=fedora-11 | fedora | chmsee | < 1.0.1.16.fc11 | fedora-11 | ||
Affected | pkg:rpm/fedora/blam?distro=fedora-11 | fedora | blam | < 1.8.5.19.fc11 | fedora-11 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |