Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2013-0820

Опубликовано: 14 мая 2013
Источник: oracle-oval
Платформа: Oracle Linux 5
Платформа: Oracle Linux 6

Описание

ELSA-2013-0820: firefox security update (CRITICAL)

firefox [17.0.6-1.0.1.el6_4]

  • Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones

[17.0.6-1]

  • Update to 17.0.6 ESR

[17.0.5-2]

  • Updated XulRunner check

xulrunner [17.0.6-2.0.1.el6_4]

  • Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js
  • Removed XULRUNNER_VERSION from SOURCE21

[17.0.6-2]

  • Update to 17.0.6 ESR

[17.0.5-2]

  • Updated nss and nspr versions

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

firefox

17.0.6-1.0.1.el5_9

xulrunner

17.0.6-1.0.1.el5_9

xulrunner-devel

17.0.6-1.0.1.el5_9

Oracle Linux x86_64

firefox

17.0.6-1.0.1.el5_9

xulrunner

17.0.6-1.0.1.el5_9

xulrunner-devel

17.0.6-1.0.1.el5_9

Oracle Linux i386

firefox

17.0.6-1.0.1.el5_9

xulrunner

17.0.6-1.0.1.el5_9

xulrunner-devel

17.0.6-1.0.1.el5_9

Oracle Linux 6

Oracle Linux x86_64

firefox

17.0.6-1.0.1.el6_4

xulrunner

17.0.6-2.0.1.el6_4

xulrunner-devel

17.0.6-2.0.1.el6_4

Oracle Linux i686

firefox

17.0.6-1.0.1.el6_4

xulrunner

17.0.6-2.0.1.el6_4

xulrunner-devel

17.0.6-2.0.1.el6_4

Связанные CVE

CVE-2013-1670
CVE-2013-1676
CVE-2013-0801
CVE-2013-1674
CVE-2013-1677
CVE-2013-1681
CVE-2013-1675
CVE-2013-1678
CVE-2013-1679
CVE-2013-1680

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2013-0821

oracle-oval
больше 12 лет назад

ELSA-2013-0821: thunderbird security update (IMPORTANT)

ubuntu логотип

CVE-2013-1670

ubuntu
больше 12 лет назад

The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acquisition of chrome privileges during calls to content level constructors, which allows remote attackers to bypass certain read-only restrictions and conduct cross-site scripting (XSS) attacks via a crafted web site.

redhat логотип

CVE-2013-1670

redhat
больше 12 лет назад

The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acquisition of chrome privileges during calls to content level constructors, which allows remote attackers to bypass certain read-only restrictions and conduct cross-site scripting (XSS) attacks via a crafted web site.

nvd логотип

CVE-2013-1670

nvd
больше 12 лет назад

The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acquisition of chrome privileges during calls to content level constructors, which allows remote attackers to bypass certain read-only restrictions and conduct cross-site scripting (XSS) attacks via a crafted web site.

debian логотип

CVE-2013-1670

debian
больше 12 лет назад

The Chrome Object Wrapper (COW) implementation in Mozilla Firefox befo ...