Описание
ELSA-2012-1088: firefox security update (CRITICAL)
firefox [10.0.6-1.0.1.el6_3]
- Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js
[10.0.6-1]
- Update to 10.0.6 ESR
[10.0.5-3]
- Enabled WebM
[10.0.5-2]
- Added fix for mozbz#703633, rhbz#818341
xulrunner [10.0.6-1.0.1.el6_3]
- Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js
[10.0.6-1]
- Update to 10.0.6 ESR
[10.0.5-3]
- Added fix for rhbz#808136 (mozbz#762301)
[10.0.5-2]
- Enabled WebM (rhbz#798880)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
firefox
10.0.6-1.0.1.el5_8
xulrunner
10.0.6-2.0.1.el5_8
xulrunner-devel
10.0.6-2.0.1.el5_8
Oracle Linux x86_64
firefox
10.0.6-1.0.1.el5_8
xulrunner
10.0.6-2.0.1.el5_8
xulrunner-devel
10.0.6-2.0.1.el5_8
Oracle Linux i386
firefox
10.0.6-1.0.1.el5_8
xulrunner
10.0.6-2.0.1.el5_8
xulrunner-devel
10.0.6-2.0.1.el5_8
Oracle Linux 6
Oracle Linux x86_64
firefox
10.0.6-1.0.1.el6_3
xulrunner
10.0.6-1.0.1.el6_3
xulrunner-devel
10.0.6-1.0.1.el6_3
Oracle Linux i686
firefox
10.0.6-1.0.1.el6_3
xulrunner
10.0.6-1.0.1.el6_3
xulrunner-devel
10.0.6-1.0.1.el6_3
Ссылки на источники
Связанные уязвимости
Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL.
Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL.
Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do not have the same context-menu restrictions for data: URLs as for javascript: URLs, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted URL.
Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do ...