[ELSA-2008-1036] firefox security update

Severity Critical

Affected Packages 10

CVEs 11

firefox :
[3.0.5-1.0.1]
- Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html
- Removed the corresponding files of Red Hat.
- Added patch oracle-firefox-branding.patch
- Update firstrun URL in spec file

[3.0.5-1]
- Update to Firefox 3.0.5

nspr:

[4.7.3-2]
- Update to NSPR 4.7.3

nss:

[3.12.2.0-2]
- Update to NSS_3_12_2_RC1
- Use system zlib

xulrunner:

[1.9.0.5-1.0.1]
- Added xulrunner-oracle-default-prefs.js

Package	Affected Version
pkg:rpm/oraclelinux/xulrunner?distro=oraclelinux-5.2	< 1.9.0.5-1.0.1.el5_2
pkg:rpm/oraclelinux/xulrunner-devel?distro=oraclelinux-5.2	< 1.9.0.5-1.0.1.el5_2
pkg:rpm/oraclelinux/xulrunner-devel-unstable?distro=oraclelinux-5.2	< 1.9.0.5-1.0.1.el5_2
pkg:rpm/oraclelinux/nss?distro=oraclelinux-5	< 3.12.2.0-2.el5
pkg:rpm/oraclelinux/nss-tools?distro=oraclelinux-5	< 3.12.2.0-2.el5
pkg:rpm/oraclelinux/nss-pkcs11-devel?distro=oraclelinux-5	< 3.12.2.0-2.el5
pkg:rpm/oraclelinux/nss-devel?distro=oraclelinux-5	< 3.12.2.0-2.el5
pkg:rpm/oraclelinux/nspr?distro=oraclelinux-5	< 4.7.3-2.el5
pkg:rpm/oraclelinux/nspr-devel?distro=oraclelinux-5	< 4.7.3-2.el5
pkg:rpm/oraclelinux/firefox?distro=oraclelinux-5.2	< 3.0.5-1.0.1.el5_2

ID

ELSA-2008-1036

Severity

critical

URL

https://linux.oracle.com/errata/ELSA-2008-1036.html

Published

2008-12-17T00:00:00
(15 years ago)

Modified

2008-12-17T00:00:00
(15 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2008-1036	http://linux.oracle.com/errata/ELSA-2008-1036.html
CVE	CVE-2008-5500	http://linux.oracle.com/cve/CVE-2008-5500
CVE	CVE-2008-5501	http://linux.oracle.com/cve/CVE-2008-5501
CVE	CVE-2008-5502	http://linux.oracle.com/cve/CVE-2008-5502
CVE	CVE-2008-5505	http://linux.oracle.com/cve/CVE-2008-5505
CVE	CVE-2008-5506	http://linux.oracle.com/cve/CVE-2008-5506
CVE	CVE-2008-5507	http://linux.oracle.com/cve/CVE-2008-5507
CVE	CVE-2008-5508	http://linux.oracle.com/cve/CVE-2008-5508
CVE	CVE-2008-5510	http://linux.oracle.com/cve/CVE-2008-5510
CVE	CVE-2008-5511	http://linux.oracle.com/cve/CVE-2008-5511
CVE	CVE-2008-5512	http://linux.oracle.com/cve/CVE-2008-5512
CVE	CVE-2008-5513	http://linux.oracle.com/cve/CVE-2008-5513

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/xulrunner?distro=oraclelinux-5.2	oraclelinux	xulrunner	< 1.9.0.5-1.0.1.el5_2	oraclelinux-5.2
Affected	pkg:rpm/oraclelinux/xulrunner-devel?distro=oraclelinux-5.2	oraclelinux	xulrunner-devel	< 1.9.0.5-1.0.1.el5_2	oraclelinux-5.2
Affected	pkg:rpm/oraclelinux/xulrunner-devel-unstable?distro=oraclelinux-5.2	oraclelinux	xulrunner-devel-unstable	< 1.9.0.5-1.0.1.el5_2	oraclelinux-5.2
Affected	pkg:rpm/oraclelinux/nss?distro=oraclelinux-5	oraclelinux	nss	< 3.12.2.0-2.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nss-tools?distro=oraclelinux-5	oraclelinux	nss-tools	< 3.12.2.0-2.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nss-pkcs11-devel?distro=oraclelinux-5	oraclelinux	nss-pkcs11-devel	< 3.12.2.0-2.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nss-devel?distro=oraclelinux-5	oraclelinux	nss-devel	< 3.12.2.0-2.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nspr?distro=oraclelinux-5	oraclelinux	nspr	< 4.7.3-2.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/nspr-devel?distro=oraclelinux-5	oraclelinux	nspr-devel	< 4.7.3-2.el5	oraclelinux-5
Affected	pkg:rpm/oraclelinux/firefox?distro=oraclelinux-5.2	oraclelinux	firefox	< 3.0.5-1.0.1.el5_2	oraclelinux-5.2

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date