lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20060801090615.GK5173@piware.de>
Date: Tue, 1 Aug 2006 11:06:15 +0200
From: Martin Pitt <martin.pitt@...onical.com>
To: ubuntu-security-announce@...ts.ubuntu.com
Cc: full-disclosure@...ts.grok.org.uk, bugtraq@...urityfocus.com
Subject: [USN-327-2] firefox regression

=========================================================== 
Ubuntu Security Notice USN-327-2            August 01, 2006
firefox regression
https://bugzilla.mozilla.org/show_bug.cgi?id=346167
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 6.06 LTS

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 6.06 LTS:
  firefox                                  1.5.dfsg+1.5.0.5-0ubuntu6.06.1

After a standard system upgrade you need to restart Firefox to effect
the necessary changes.

Details follow:

USN-327-1 fixed several vulnerabilities in Firefox. Unfortunately the
new version introduced a regression in the handling of streamed media.
Embedded media which were linked with a scheme other than http:// did
not work any more. This update fixes this regression.


Updated packages for Ubuntu 6.06 LTS:

  Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.5-0ubuntu6.06.1.diff.gz
      Size/MD5:   175666 687919fcd46adfbb0d7178b5475305c1
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.5-0ubuntu6.06.1.dsc
      Size/MD5:     1113 e442234ffa0a54f87807c1288e47fa5d
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.5.orig.tar.gz
      Size/MD5: 44067762 749933c002e158576ec15782fc451e43

  Architecture independent packages:

    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-dev_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_all.deb
      Size/MD5:    49298 f514abb6f942165f1fc3d5374bbae15a
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/mozilla-firefox_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_all.deb
      Size/MD5:    50184 a7b0bf4028ede77740dc0662a827dcf0

  amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5: 47269380 3ad3fdf041a077e1fd691138bb9bfeb6
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:  2796780 4d08389abd46a4cfb1ea417a8ad5fa3b
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:   216230 e1d98cf540498d5fc02661a5486db16d
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:    82448 5a283f508971dc233a454789387b4132
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:  9400588 cf74b732b4ba49854c319c00d3d82a4b
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:   218920 9c0d2ee7cf67eeb17e850fd730f3b8fb
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:   161968 57e24fd2d917b17029289f334c04b17c
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:   235846 b3a13148395af99060cd418e9a23705d
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_amd64.deb
      Size/MD5:   757540 3c825373eeda432f0fe8fa4e97d00fec

  i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5: 43837564 d1bb1e8b82e23a0fbf07e57c56eed7af
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:  2796780 49e77e98de42a21d531468df796e2296
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:   209648 500f92b789dc30a7cce74e58c339bbdd
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:    74834 ec2db908691d504cf714a4c4ea5b411e
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:  7916466 272500e32887186917f370dcc09661ee
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:   218924 a80027c5868b295ee9e81d1244ec568e
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:   146678 18754a6f6caa2d3e83114d6971f7ff3a
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:   235800 0ebc9b9ddd1624df7351c888a9ad597f
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_i386.deb
      Size/MD5:   669656 1e4bf8aa2fef808a6eaa00248dd1c602

  powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5: 48648198 9f923bf4ed6ea38bf1a050596fac80ba
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:  2796794 60ac8a2a5612636dcb18eca87627da5b
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:   213088 136b6615471b6534cc67bf9434ee81cd
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:    77990 814f8da56cb35a11334b9b47ec576ced
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:  9019140 3c7e22b56427131aebc6ff373e49b5a5
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:   218924 5b01bb06b02263e9375821a87b1b1d77
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:   159206 a7751fe73e867e8186f7a061742382e2
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:   235840 7688b5a53549f0af5eecb275fdd710c5
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_powerpc.deb
      Size/MD5:   768422 3a735934106b31a280790b31a8c588b2

  sparc architecture (Sun SPARC/UltraSPARC)

    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5: 45235548 0c65d01cfaf7ddcc68f1c3253e8dc6e4
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:  2796822 dc63fcecff2886edacdc0ec13ce63f5c
    http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:   210578 c364e5a088dec391b520667db74583fa
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:    76444 ebc3ec5b4fbe2384925d9665b37ecb44
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:  8411422 17c6cf3dcba9e75b75da8dbb4f41f944
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:   218928 f9c0866dcc283b35745c36f84db4d595
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:   149152 7beacf9f311aba0c67084caf4dd69a57
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:   235844 365427c372b02847c7667f905aca1542
    http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.5-0ubuntu6.06.1_sparc.deb
      Size/MD5:   681710 fbef3d2ba1b7d40ae3afebbe29d9191f

Download attachment "signature.asc" of type "application/pgp-signature" (190 bytes)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ