Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2012-0387

Опубликовано: 14 мар. 2012
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2012-0387: firefox security and bug fix update (CRITICAL)

firefox:

[10.0.3-1.0.1.el6_2]

  • Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones

[10.0.3-1]

  • Update to 10.0.3 ESR

xulrunner:

[10.0.3-1.0.1.el6_2]

  • Replace xulrunner-redhat-default-prefs.js with
  • xulrunner-oracle-default-prefs.js

[10.0.3-1]

  • Update to 10.0.3 ESR

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

firefox

10.0.3-1.0.1.el5_8

xulrunner

10.0.3-1.0.1.el5_8

xulrunner-devel

10.0.3-1.0.1.el5_8

Oracle Linux x86_64

firefox

10.0.3-1.0.1.el5_8

xulrunner

10.0.3-1.0.1.el5_8

xulrunner-devel

10.0.3-1.0.1.el5_8

Oracle Linux i386

firefox

10.0.3-1.0.1.el5_8

xulrunner

10.0.3-1.0.1.el5_8

xulrunner-devel

10.0.3-1.0.1.el5_8

Oracle Linux 6

Oracle Linux x86_64

firefox

10.0.3-1.0.1.el6_2

xulrunner

10.0.3-1.0.1.el6_2

xulrunner-devel

10.0.3-1.0.1.el6_2

Oracle Linux i686

firefox

10.0.3-1.0.1.el6_2

xulrunner

10.0.3-1.0.1.el6_2

xulrunner-devel

10.0.3-1.0.1.el6_2

Связанные CVE

CVE-2012-0451
CVE-2012-0459
CVE-2012-0460
CVE-2012-0462
CVE-2012-0455
CVE-2012-0458
CVE-2012-0456
CVE-2012-0457
CVE-2012-0461
CVE-2012-0464

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2012-0388

oracle-oval
больше 13 лет назад

ELSA-2012-0388: thunderbird security update (CRITICAL)

ubuntu логотип

CVE-2012-0451

ubuntu
больше 13 лет назад

CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote web servers to bypass intended Content Security Policy (CSP) restrictions and possibly conduct cross-site scripting (XSS) attacks via crafted HTTP headers.

redhat логотип

CVE-2012-0451

redhat
больше 13 лет назад

CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote web servers to bypass intended Content Security Policy (CSP) restrictions and possibly conduct cross-site scripting (XSS) attacks via crafted HTTP headers.

nvd логотип

CVE-2012-0451

nvd
больше 13 лет назад

CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, Firefox ESR 10.x before 10.0.3, Thunderbird 5.0 through 10.0, Thunderbird ESR 10.x before 10.0.3, and SeaMonkey before 2.8 allows remote web servers to bypass intended Content Security Policy (CSP) restrictions and possibly conduct cross-site scripting (XSS) attacks via crafted HTTP headers.

debian логотип

CVE-2012-0451

debian
больше 13 лет назад

CRLF injection vulnerability in Mozilla Firefox 4.x through 10.0, Fire ...