[ELSA-2009-1530] firefox security update

Severity Critical

Affected Packages 6

CVEs 11

firefox:

[3.0.15-3.0.1.el5_4]
- Update firstrun and homepage URLs in specfile
- Added patch oracle-firefox-branding.patch
- Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html
and removed the corresponding Red Hat ones

[3.0.15-3]
- Rebuild due to Mozilla's respin

[3.0.15-2]
- Rebuild due to xulrunner changes

[3.0.15-1]
- Update to 3.0.15

nspr:

[4.7.6-1]
- update to 4.7.6

xulrunner:

[1.9.0.15-3.0.1.el5_4]
- Added xulrunner-oracle-default-prefs.js and removed the corresponding
RedHat one.

[1.9.0.15-3]
- Rebuild due to Mozilla's respin

[1.9.0.15-2]
- Added remedy patch

[1.9.0.15-1]
- Update to 1.9.0.15

Package	Affected Version
pkg:rpm/oraclelinux/xulrunner?distro=oraclelinux-5.4	< 1.9.0.15-3.0.1.el5_4
pkg:rpm/oraclelinux/xulrunner-devel?distro=oraclelinux-5.4	< 1.9.0.15-3.0.1.el5_4
pkg:rpm/oraclelinux/xulrunner-devel-unstable?distro=oraclelinux-5.4	< 1.9.0.15-3.0.1.el5_4
pkg:rpm/oraclelinux/nspr?distro=oraclelinux-5.4	< 4.7.6-1.el5_4
pkg:rpm/oraclelinux/nspr-devel?distro=oraclelinux-5.4	< 4.7.6-1.el5_4
pkg:rpm/oraclelinux/firefox?distro=oraclelinux-5.4	< 3.0.15-3.0.1.el5_4

ID

ELSA-2009-1530

Severity

critical

URL

https://linux.oracle.com/errata/ELSA-2009-1530.html

Published

2009-10-28T00:00:00
(15 years ago)

Modified

2009-10-28T00:00:00
(15 years ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2009-1530	http://linux.oracle.com/errata/ELSA-2009-1530.html
CVE	CVE-2009-1563	http://linux.oracle.com/cve/CVE-2009-1563
CVE	CVE-2009-3274	http://linux.oracle.com/cve/CVE-2009-3274
CVE	CVE-2009-3370	http://linux.oracle.com/cve/CVE-2009-3370
CVE	CVE-2009-3372	http://linux.oracle.com/cve/CVE-2009-3372
CVE	CVE-2009-3373	http://linux.oracle.com/cve/CVE-2009-3373
CVE	CVE-2009-3374	http://linux.oracle.com/cve/CVE-2009-3374
CVE	CVE-2009-3375	http://linux.oracle.com/cve/CVE-2009-3375
CVE	CVE-2009-3376	http://linux.oracle.com/cve/CVE-2009-3376
CVE	CVE-2009-3380	http://linux.oracle.com/cve/CVE-2009-3380
CVE	CVE-2009-3382	http://linux.oracle.com/cve/CVE-2009-3382
CVE	CVE-2009-3384	http://linux.oracle.com/cve/CVE-2009-3384

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/xulrunner?distro=oraclelinux-5.4	oraclelinux	xulrunner	< 1.9.0.15-3.0.1.el5_4	oraclelinux-5.4
Affected	pkg:rpm/oraclelinux/xulrunner-devel?distro=oraclelinux-5.4	oraclelinux	xulrunner-devel	< 1.9.0.15-3.0.1.el5_4	oraclelinux-5.4
Affected	pkg:rpm/oraclelinux/xulrunner-devel-unstable?distro=oraclelinux-5.4	oraclelinux	xulrunner-devel-unstable	< 1.9.0.15-3.0.1.el5_4	oraclelinux-5.4
Affected	pkg:rpm/oraclelinux/nspr?distro=oraclelinux-5.4	oraclelinux	nspr	< 4.7.6-1.el5_4	oraclelinux-5.4
Affected	pkg:rpm/oraclelinux/nspr-devel?distro=oraclelinux-5.4	oraclelinux	nspr-devel	< 4.7.6-1.el5_4	oraclelinux-5.4
Affected	pkg:rpm/oraclelinux/firefox?distro=oraclelinux-5.4	oraclelinux	firefox	< 3.0.15-3.0.1.el5_4	oraclelinux-5.4

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date