Описание
ELSA-2012-1210: firefox security update (CRITICAL)
firefox [10.0.7-1.0.1.el6_3]
- Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js
[10.0.7-1]
- Update to 10.0.7 ESR
xulrunner [10.0.7-1.0.1.el6_3]
- Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js
[10.0.7-1]
- Update to 10.0.7 ESR
[10.0.6-2]
- Added fix for rhbz#770276 - Firefox segfaults, should have a font dependency
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
firefox
10.0.7-1.0.1.el5_8
xulrunner
10.0.7-2.0.1.el5_8
xulrunner-devel
10.0.7-2.0.1.el5_8
Oracle Linux x86_64
firefox
10.0.7-1.0.1.el5_8
xulrunner
10.0.7-2.0.1.el5_8
xulrunner-devel
10.0.7-2.0.1.el5_8
Oracle Linux i386
firefox
10.0.7-1.0.1.el5_8
xulrunner
10.0.7-2.0.1.el5_8
xulrunner-devel
10.0.7-2.0.1.el5_8
Oracle Linux 6
Oracle Linux x86_64
firefox
10.0.7-1.0.1.el6_3
xulrunner
10.0.7-1.0.1.el6_3
xulrunner-devel
10.0.7-1.0.1.el6_3
Oracle Linux i686
firefox
10.0.7-1.0.1.el6_3
xulrunner
10.0.7-1.0.1.el6_3
xulrunner-devel
10.0.7-1.0.1.el6_3
Связанные CVE
Ссылки на источники
Связанные уязвимости
Use-after-free vulnerability in the PresShell::CompleteMove function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Use-after-free vulnerability in the PresShell::CompleteMove function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Use-after-free vulnerability in the PresShell::CompleteMove function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via unspecified vectors.
Use-after-free vulnerability in the PresShell::CompleteMove function i ...