ELSA-2013-0144

Опубликовано: 08 янв. 2013

Источник: oracle-oval

Платформа: Oracle Linux 5

Платформа: Oracle Linux 6

Описание

ELSA-2013-0144: firefox security update (CRITICAL)

firefox [10.0.12-1.0.1.el6_3]

Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones

[10.0.12-1]

Update to 10.0.12 ESR

xulrunner [10.0.12-1.0.1.el6_3]

Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js

[10.0.12-1]

Update to 10.0.12 ESR

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

firefox

10.0.12-1.0.1.el5_9

xulrunner

10.0.12-1.0.1.el5_9

xulrunner-devel

10.0.12-1.0.1.el5_9

Oracle Linux x86_64

firefox

10.0.12-1.0.1.el5_9

xulrunner

10.0.12-1.0.1.el5_9

xulrunner-devel

10.0.12-1.0.1.el5_9

Oracle Linux i386

firefox

10.0.12-1.0.1.el5_9

xulrunner

10.0.12-1.0.1.el5_9

xulrunner-devel

10.0.12-1.0.1.el5_9

Oracle Linux 6

Oracle Linux x86_64

firefox

10.0.12-1.0.1.el6_3

xulrunner

10.0.12-1.0.1.el6_3

xulrunner-devel

10.0.12-1.0.1.el6_3

Oracle Linux i686

firefox

10.0.12-1.0.1.el6_3

xulrunner

10.0.12-1.0.1.el6_3

xulrunner-devel

10.0.12-1.0.1.el6_3

Связанные CVE

Ссылки на источники

Связанные уязвимости

ELSA-2013-0145

oracle-oval

больше 12 лет назад

ELSA-2013-0145: thunderbird security update (CRITICAL)

CVE-2013-0748

ubuntu

больше 12 лет назад

The XBL.__proto__.toString implementation in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 makes it easier for remote attackers to bypass the ASLR protection mechanism by calling the toString function of an XBL object.

CVE-2013-0748

redhat

больше 12 лет назад

CVE-2013-0748

nvd

больше 12 лет назад

CVE-2013-0748

debian

больше 12 лет назад

The XBL.__proto__.toString implementation in Mozilla Firefox before 18 ...