Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2009-0436

Опубликовано: 22 апр. 2009
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2009-0436: firefox security update (CRITICAL)

firefox:

[3.0.9-1.0.1.el5]

  • Update firstrun and homepage URLs
  • Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones
  • Added patch oracle-firefox-branding.patch

[3.0.9-1]

  • Update to Firefox 3.0.9
  • Gnome crash dialog disabled (#493455)

xulrunner:

[1.9.0.9-1.0.1.el5]

  • Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one

[1.9.0.9-1]

  • Update to 1.9.0.9

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

firefox

3.0.9-1.0.1.el5

xulrunner

1.9.0.9-1.0.1.el5

xulrunner-devel

1.9.0.9-1.0.1.el5

xulrunner-devel-unstable

1.9.0.9-1.0.1.el5

Oracle Linux i386

firefox

3.0.9-1.0.1.el5

xulrunner

1.9.0.9-1.0.1.el5

xulrunner-devel

1.9.0.9-1.0.1.el5

xulrunner-devel-unstable

1.9.0.9-1.0.1.el5

Связанные CVE

CVE-2009-1308
CVE-2009-0652
CVE-2009-1303
CVE-2009-1304
CVE-2009-1309
CVE-2009-1305
CVE-2009-1311
CVE-2009-1312
CVE-2009-1302
CVE-2009-1306
CVE-2009-1310
CVE-2009-1307

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2009-1308

ubuntu
около 16 лет назад

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in the wild by a March 2009 eBay listing.

redhat логотип

CVE-2009-1308

redhat
около 16 лет назад

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in the wild by a March 2009 eBay listing.

nvd логотип

CVE-2009-1308

nvd
около 16 лет назад

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in the wild by a March 2009 eBay listing.

debian логотип

CVE-2009-1308

debian
около 16 лет назад

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0 ...

github логотип

GHSA-chqp-7f63-6c5w

github
около 3 лет назад

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in the wild by a March 2009 eBay listing.