[ELSA-2008-0978] firefox security update

Severity Critical

Affected Packages 11

CVEs 12

devhelp:

[0.12-20]
- Rebuild against xulrunner

firefox:

[3.0.4-1.0.1.el5]
- Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html
Removed the corresponding files of Red Hat.
- Added patch oracle-firefox-branding.patch
- Update firstrun URL in spec file

[3.0.4-5]
- Update to Firefox 3.0.4
- Removed firefox-2.0-getstartpage.patch (#454283)

nss:

[3.12.1.1-3]
- Update to NSS_3_12_1_WITH_CKBI_1_72_RTM

xulrunner:

[1.9.0.4-1.0.1]
- Added xulrunner-oracle-default-prefs.js

[1.9.0.4-1]
- Update to 1.9.0.4

[1.9.0.2-6]
- Enabled safe-browsing (#463157)

yelp:

[2.16.0-22]
- rebuild against xulrunner

Package	Affected Version
pkg:rpm/oraclelinux/yelp?distro=oraclelinux-5	< 2.16.0-22.el5
pkg:rpm/oraclelinux/xulrunner?distro=oraclelinux-5	< 1.9.0.4-1.0.1.el5
pkg:rpm/oraclelinux/xulrunner-devel?distro=oraclelinux-5	< 1.9.0.4-1.0.1.el5
pkg:rpm/oraclelinux/xulrunner-devel-unstable?distro=oraclelinux-5	< 1.9.0.4-1.0.1.el5
pkg:rpm/oraclelinux/nss?distro=oraclelinux-5	< 3.12.1.1-3.el5
pkg:rpm/oraclelinux/nss-tools?distro=oraclelinux-5	< 3.12.1.1-3.el5
pkg:rpm/oraclelinux/nss-pkcs11-devel?distro=oraclelinux-5	< 3.12.1.1-3.el5
pkg:rpm/oraclelinux/nss-devel?distro=oraclelinux-5	< 3.12.1.1-3.el5
pkg:rpm/oraclelinux/firefox?distro=oraclelinux-5	< 3.0.4-1.0.1.el5
pkg:rpm/oraclelinux/devhelp?distro=oraclelinux-5	< 0.12-20.el5
pkg:rpm/oraclelinux/devhelp-devel?distro=oraclelinux-5	< 0.12-20.el5

ID

ELSA-2008-0978

Severity

critical

URL

https://linux.oracle.com/errata/ELSA-2008-0978.html

Published

2008-11-13T00:00:00
(16 years ago)

Modified

2008-11-13T00:00:00
(16 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2008-0978	http://linux.oracle.com/errata/ELSA-2008-0978.html
CVE	CVE-2008-0017	http://linux.oracle.com/cve/CVE-2008-0017
CVE	CVE-2008-5014	http://linux.oracle.com/cve/CVE-2008-5014
CVE	CVE-2008-5015	http://linux.oracle.com/cve/CVE-2008-5015
CVE	CVE-2008-5016	http://linux.oracle.com/cve/CVE-2008-5016
CVE	CVE-2008-5017	http://linux.oracle.com/cve/CVE-2008-5017
CVE	CVE-2008-5018	http://linux.oracle.com/cve/CVE-2008-5018
CVE	CVE-2008-5019	http://linux.oracle.com/cve/CVE-2008-5019
CVE	CVE-2008-5021	http://linux.oracle.com/cve/CVE-2008-5021
CVE	CVE-2008-5022	http://linux.oracle.com/cve/CVE-2008-5022
CVE	CVE-2008-5023	http://linux.oracle.com/cve/CVE-2008-5023
CVE	CVE-2008-5024	http://linux.oracle.com/cve/CVE-2008-5024
CVE	CVE-2008-5052	http://linux.oracle.com/cve/CVE-2008-5052

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/yelp?distro=oraclelinux-5	oraclelinux	yelp	< 2.16.0-22.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/xulrunner?distro=oraclelinux-5	oraclelinux	xulrunner	< 1.9.0.4-1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/xulrunner-devel?distro=oraclelinux-5	oraclelinux	xulrunner-devel	< 1.9.0.4-1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/xulrunner-devel-unstable?distro=oraclelinux-5	oraclelinux	xulrunner-devel-unstable	< 1.9.0.4-1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nss?distro=oraclelinux-5	oraclelinux	nss	< 3.12.1.1-3.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nss-tools?distro=oraclelinux-5	oraclelinux	nss-tools	< 3.12.1.1-3.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nss-pkcs11-devel?distro=oraclelinux-5	oraclelinux	nss-pkcs11-devel	< 3.12.1.1-3.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nss-devel?distro=oraclelinux-5	oraclelinux	nss-devel	< 3.12.1.1-3.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/firefox?distro=oraclelinux-5	oraclelinux	firefox	< 3.0.4-1.0.1.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/devhelp?distro=oraclelinux-5	oraclelinux	devhelp	< 0.12-20.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/devhelp-devel?distro=oraclelinux-5	oraclelinux	devhelp-devel	< 0.12-20.el5	oraclelinux-5

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date