lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Date: Fri, 15 Jun 2007 15:53:22 -0600
From: security@...driva.com
To: full-disclosure@...ts.grok.org.uk
Subject: [ MDKSA-2007:126 ] - Updated Firefox packages fix
 multiple vulnerabilities


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2007:126
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : mozilla-firefox
 Date    : June 15, 2007
 Affected: 2007.1
 _______________________________________________________________________
 
 Problem Description:
 
 A number of security vulnerabilities have been discovered and corrected
 in the latest Mozilla Firefox program, version 2.0.0.4.
 
 This update provides the latest Firefox to correct these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1362
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2867
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2869
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2870
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2871
 http://www.mozilla.org/security/announce/2007/mfsa2007-12.html
 http://www.mozilla.org/security/announce/2007/mfsa2007-13.html
 http://www.mozilla.org/security/announce/2007/mfsa2007-14.html
 http://www.mozilla.org/security/announce/2007/mfsa2007-16.html
 http://www.mozilla.org/security/announce/2007/mfsa2007-17.html
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.1:
 32843ad61e0201f312ea1badda8cc292  2007.1/i586/deskbar-applet-2.18.0-3.1mdv2007.1.i586.rpm
 67c96eefbffe6a76bfdde4bf5f008a52  2007.1/i586/devhelp-0.13-3.1mdv2007.1.i586.rpm
 7b0287df9acbf105bd2615d4f0b2cc88  2007.1/i586/devhelp-plugins-0.13-3.1mdv2007.1.i586.rpm
 7c6c27e2e91fb7beb439545569069ee2  2007.1/i586/eclipse-ecj-3.2.2-3.4.1mdv2007.1.i586.rpm
 a44987036c5f4949e27540501b1b5473  2007.1/i586/eclipse-jdt-3.2.2-3.4.1mdv2007.1.i586.rpm
 0d4200d50fd9b14176272b0ec51ec31d  2007.1/i586/eclipse-jdt-sdk-3.2.2-3.4.1mdv2007.1.i586.rpm
 fe08cc9e315e7b4219c33d1c86f21f07  2007.1/i586/eclipse-pde-3.2.2-3.4.1mdv2007.1.i586.rpm
 101ab07e6f215098b12113c1ad3bd161  2007.1/i586/eclipse-pde-runtime-3.2.2-3.4.1mdv2007.1.i586.rpm
 d04cd30b2de8bbc4d9cfe3877397c609  2007.1/i586/eclipse-pde-sdk-3.2.2-3.4.1mdv2007.1.i586.rpm
 7fda2dd7b6f661640c3bda5d851f7d11  2007.1/i586/eclipse-platform-3.2.2-3.4.1mdv2007.1.i586.rpm
 3788f501ea95e6f21b2b39597a18932f  2007.1/i586/eclipse-platform-sdk-3.2.2-3.4.1mdv2007.1.i586.rpm
 7e5b53154464a4359cf9389def29f0ce  2007.1/i586/eclipse-rcp-3.2.2-3.4.1mdv2007.1.i586.rpm
 568bef51fca52425929e3150fa946d34  2007.1/i586/eclipse-rcp-sdk-3.2.2-3.4.1mdv2007.1.i586.rpm
 3b86b2bb3a4b9333ad8e2d6d4c13e62b  2007.1/i586/eclipse-sdk-3.2.2-3.4.1mdv2007.1.i586.rpm
 ddf04c0948fcec54659fba4928fddcd3  2007.1/i586/epiphany-2.18.0-5.1mdv2007.1.i586.rpm
 8208f2947bd8619436e3995e847c81cf  2007.1/i586/epiphany-devel-2.18.0-5.1mdv2007.1.i586.rpm
 714a58a48a618bd54681680b7ae515a6  2007.1/i586/epiphany-extensions-2.18.0-2.1mdv2007.1.i586.rpm
 92f59958955883c83ae4af3495e6f2ed  2007.1/i586/galeon-2.0.3-5.1mdv2007.1.i586.rpm
 ba16fda04cc7f4a67c55945641cb1cbb  2007.1/i586/gnome-python-extras-2.14.3-4.1mdv2007.1.i586.rpm
 f6d331710559f8d3b21572328be527db  2007.1/i586/gnome-python-gda-2.14.3-4.1mdv2007.1.i586.rpm
 bc272bd2adeebc00aa335a63351e9f93  2007.1/i586/gnome-python-gda-devel-2.14.3-4.1mdv2007.1.i586.rpm
 c52199c95fa4c9a80a4162b5eec2306b  2007.1/i586/gnome-python-gdl-2.14.3-4.1mdv2007.1.i586.rpm
 8b58834c64416b77d1bb0b1aead8924a  2007.1/i586/gnome-python-gksu-2.14.3-4.1mdv2007.1.i586.rpm
 4cad1caab97e9cc340f83860a78f4440  2007.1/i586/gnome-python-gtkhtml2-2.14.3-4.1mdv2007.1.i586.rpm
 2cefcd0b18f6659105f5fb9f12bb60c5  2007.1/i586/gnome-python-gtkmozembed-2.14.3-4.1mdv2007.1.i586.rpm
 a43604cb2879cb8cceb7aec2841ceb56  2007.1/i586/gnome-python-gtkspell-2.14.3-4.1mdv2007.1.i586.rpm
 d1d1b9471821fb09cf51833b55774033  2007.1/i586/libdevhelp-1_0-0.13-3.1mdv2007.1.i586.rpm
 4579acf11c0177f7e215dc709ba49ea7  2007.1/i586/libdevhelp-1_0-devel-0.13-3.1mdv2007.1.i586.rpm
 1737aa13e1ec07d7988dcaf9265469fa  2007.1/i586/libmozilla-firefox2.0.0.4-2.0.0.4-1mdv2007.1.i586.rpm
 66f324ecb67e9b0c83c160264694db87  2007.1/i586/libmozilla-firefox2.0.0.4-devel-2.0.0.4-1mdv2007.1.i586.rpm
 ae06a960154e70018a629d296e036d89  2007.1/i586/libswt3-gtk2-3.2.2-3.4.1mdv2007.1.i586.rpm
 778fe0eb37707a5cbc66a9449fde406c  2007.1/i586/libtotem-plparser1-2.18.2-1.2mdv2007.1.i586.rpm
 ec698c275119c10ddf0e6647c7f73206  2007.1/i586/libtotem-plparser1-devel-2.18.2-1.2mdv2007.1.i586.rpm
 879d999d3315752c30dc4662f701f500  2007.1/i586/mozilla-firefox-2.0.0.4-1mdv2007.1.i586.rpm
 e49a5a51cb3e1aae77252a1fe1078776  2007.1/i586/totem-2.18.2-1.2mdv2007.1.i586.rpm
 0aacb94ef75f98c310ff5d6d8b24dae5  2007.1/i586/totem-common-2.18.2-1.2mdv2007.1.i586.rpm
 b036f87be2ee4b34f56b460e104f1f2e  2007.1/i586/totem-gstreamer-2.18.2-1.2mdv2007.1.i586.rpm
 283e90ed7bc8a302871c5442d3129bd1  2007.1/i586/totem-mozilla-2.18.2-1.2mdv2007.1.i586.rpm
 15fd8b6f740de69ef155ca28a83eda2b  2007.1/i586/totem-mozilla-gstreamer-2.18.2-1.2mdv2007.1.i586.rpm
 1f3440c7a96d1d61102b5153d4f09a0c  2007.1/i586/yelp-2.18.0-3.1mdv2007.1.i586.rpm 
 9135cb8a83595e889f5b5c1cd2e7c113  2007.1/SRPMS/deskbar-applet-2.18.0-3.1mdv2007.1.src.rpm
 3beb1816fb4c3827cceb4431aa288e39  2007.1/SRPMS/devhelp-0.13-3.1mdv2007.1.src.rpm
 ae9aa2f732d474df3fe89be3acd95b92  2007.1/SRPMS/eclipse-3.2.2-3.4.1mdv2007.1.src.rpm
 cfd8210121378c8e2f68f2a0ccd6b866  2007.1/SRPMS/epiphany-2.18.0-5.1mdv2007.1.src.rpm
 4908de424721c975255a9cf13e5be5cf  2007.1/SRPMS/epiphany-extensions-2.18.0-2.1mdv2007.1.src.rpm
 a6b73617ed40925baac3ce419530586a  2007.1/SRPMS/galeon-2.0.3-5.1mdv2007.1.src.rpm
 599bccb84cef6e57939f94fd8eeb544b  2007.1/SRPMS/gnome-python-extras-2.14.3-4.1mdv2007.1.src.rpm
 75ecbd6bf4bcd2f50dad4cf6d2f2aa9e  2007.1/SRPMS/mozilla-firefox-2.0.0.4-1mdv2007.1.src.rpm
 da1fbc80277f11fab148591a812d0c9c  2007.1/SRPMS/totem-2.18.2-1.2mdv2007.1.src.rpm
 f4eabce004a52913dd64aa407945da98  2007.1/SRPMS/yelp-2.18.0-3.1mdv2007.1.src.rpm

 Mandriva Linux 2007.1/X86_64:
 6030d9be49bbf5095b0a9df3799777cc  2007.1/x86_64/deskbar-applet-2.18.0-3.1mdv2007.1.x86_64.rpm
 034df3b62ce5ed13fe9ae27b85c29cc1  2007.1/x86_64/devhelp-0.13-3.1mdv2007.1.x86_64.rpm
 e2dace845c2f2047b9f6f6612d5bbff0  2007.1/x86_64/devhelp-plugins-0.13-3.1mdv2007.1.x86_64.rpm
 477de4a0a3349f6907f70155bf260b97  2007.1/x86_64/eclipse-ecj-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 8221f03041d32ae9bbacc1822fd5fe85  2007.1/x86_64/eclipse-jdt-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 03987c6b1fa6be5bdbb1a0ae86d3a506  2007.1/x86_64/eclipse-jdt-sdk-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 04c8049aa422dfce4141e08c50ea147b  2007.1/x86_64/eclipse-pde-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 8d909645d994a0ebd92ace4ea6c44ce6  2007.1/x86_64/eclipse-pde-runtime-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 754561c4632f4b56d30227a9b44d8a31  2007.1/x86_64/eclipse-pde-sdk-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 0b345900bd05610d8cbb676b71ea073a  2007.1/x86_64/eclipse-platform-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 c3785474518b5446875c90c553f144f8  2007.1/x86_64/eclipse-platform-sdk-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 e2713747331a022164b9f001a96a02a4  2007.1/x86_64/eclipse-rcp-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 78587f232b0795fabb17736f6c5ab68e  2007.1/x86_64/eclipse-rcp-sdk-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 1f2aca435a874ae40e8699b7eda98ab3  2007.1/x86_64/eclipse-sdk-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 0bf1635828fdd46861acf49a0daebbee  2007.1/x86_64/epiphany-2.18.0-5.1mdv2007.1.x86_64.rpm
 8fb14461a7226cc2e138695768bfb708  2007.1/x86_64/epiphany-devel-2.18.0-5.1mdv2007.1.x86_64.rpm
 88ef4e34dfff5ebac4fb5b2c3aa8d694  2007.1/x86_64/epiphany-extensions-2.18.0-2.1mdv2007.1.x86_64.rpm
 e7bfe3804bbceb218284767544250472  2007.1/x86_64/galeon-2.0.3-5.1mdv2007.1.x86_64.rpm
 e0728ff6fdafb6f9e51210186e89784b  2007.1/x86_64/gnome-python-extras-2.14.3-4.1mdv2007.1.x86_64.rpm
 11617590321040cadb3473ee08a0128b  2007.1/x86_64/gnome-python-gda-2.14.3-4.1mdv2007.1.x86_64.rpm
 83af80229b9be7da862e8d6675cc8b43  2007.1/x86_64/gnome-python-gda-devel-2.14.3-4.1mdv2007.1.x86_64.rpm
 2cb9e572585ae23b91cbaad08d3a5ba0  2007.1/x86_64/gnome-python-gdl-2.14.3-4.1mdv2007.1.x86_64.rpm
 e1f8757900c8d75bf74ca6e61534949d  2007.1/x86_64/gnome-python-gksu-2.14.3-4.1mdv2007.1.x86_64.rpm
 4207f4ad0eb010f327dae9a8ce2ecfb5  2007.1/x86_64/gnome-python-gtkhtml2-2.14.3-4.1mdv2007.1.x86_64.rpm
 736a1acaa53598250f59ef3228266b15  2007.1/x86_64/gnome-python-gtkmozembed-2.14.3-4.1mdv2007.1.x86_64.rpm
 12ed8a4ca5fa208c13326d08138ad6fb  2007.1/x86_64/gnome-python-gtkspell-2.14.3-4.1mdv2007.1.x86_64.rpm
 044923f19c3045bba98697037c9f5b43  2007.1/x86_64/lib64devhelp-1_0-0.13-3.1mdv2007.1.x86_64.rpm
 174ff94dd5250281b4d177ed0a1991d4  2007.1/x86_64/lib64devhelp-1_0-devel-0.13-3.1mdv2007.1.x86_64.rpm
 2c68af1e89c7b483a72b5432e895832f  2007.1/x86_64/lib64mozilla-firefox2.0.0.4-2.0.0.4-1mdv2007.1.x86_64.rpm
 50e10c6ca7cd28b4ca6dcaa2ca5ed41e  2007.1/x86_64/lib64mozilla-firefox2.0.0.4-devel-2.0.0.4-1mdv2007.1.x86_64.rpm
 4ba0a028f6b3033aff44df2f6fb4a43b  2007.1/x86_64/lib64totem-plparser1-2.18.2-1.2mdv2007.1.x86_64.rpm
 7f1b9d2eb7510a6b240b79dabc8305f4  2007.1/x86_64/lib64totem-plparser1-devel-2.18.2-1.2mdv2007.1.x86_64.rpm
 7153b4798f609b88158422ef6ca89b36  2007.1/x86_64/libswt3-gtk2-3.2.2-3.4.1mdv2007.1.x86_64.rpm
 12d305465bd7e22714db766c31c3fc9c  2007.1/x86_64/mozilla-firefox-2.0.0.4-1mdv2007.1.x86_64.rpm
 0580a222535fe66558b2f3e16cc36e58  2007.1/x86_64/totem-2.18.2-1.2mdv2007.1.x86_64.rpm
 d821e1eb818e7f205703a89b509ce968  2007.1/x86_64/totem-common-2.18.2-1.2mdv2007.1.x86_64.rpm
 88e8d6fb0f5c1d550a53f8d2d9104028  2007.1/x86_64/totem-gstreamer-2.18.2-1.2mdv2007.1.x86_64.rpm
 06dd904b430b552f0e8df9d7196f1645  2007.1/x86_64/totem-mozilla-2.18.2-1.2mdv2007.1.x86_64.rpm
 07e1c34ad438e1db62744c898ced832e  2007.1/x86_64/totem-mozilla-gstreamer-2.18.2-1.2mdv2007.1.x86_64.rpm
 4d6a4fae2d3b90754b25819088899b58  2007.1/x86_64/yelp-2.18.0-3.1mdv2007.1.x86_64.rpm 
 9135cb8a83595e889f5b5c1cd2e7c113  2007.1/SRPMS/deskbar-applet-2.18.0-3.1mdv2007.1.src.rpm
 3beb1816fb4c3827cceb4431aa288e39  2007.1/SRPMS/devhelp-0.13-3.1mdv2007.1.src.rpm
 ae9aa2f732d474df3fe89be3acd95b92  2007.1/SRPMS/eclipse-3.2.2-3.4.1mdv2007.1.src.rpm
 cfd8210121378c8e2f68f2a0ccd6b866  2007.1/SRPMS/epiphany-2.18.0-5.1mdv2007.1.src.rpm
 4908de424721c975255a9cf13e5be5cf  2007.1/SRPMS/epiphany-extensions-2.18.0-2.1mdv2007.1.src.rpm
 a6b73617ed40925baac3ce419530586a  2007.1/SRPMS/galeon-2.0.3-5.1mdv2007.1.src.rpm
 599bccb84cef6e57939f94fd8eeb544b  2007.1/SRPMS/gnome-python-extras-2.14.3-4.1mdv2007.1.src.rpm
 75ecbd6bf4bcd2f50dad4cf6d2f2aa9e  2007.1/SRPMS/mozilla-firefox-2.0.0.4-1mdv2007.1.src.rpm
 da1fbc80277f11fab148591a812d0c9c  2007.1/SRPMS/totem-2.18.2-1.2mdv2007.1.src.rpm
 f4eabce004a52913dd64aa407945da98  2007.1/SRPMS/yelp-2.18.0-3.1mdv2007.1.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFGct/7mqjQ0CJFipgRAuFSAKC4SBmiKPuq7SiZ6/ziiREGFN5yYwCfeeVs
8vVUXSrkV0EIyFAwg+wlyqw=
=76uT
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists