Описание
ELSA-2013-1476: firefox security update (CRITICAL)
firefox [17.0.10-1.0.1.el6_4]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one
[17.0.10-1]
- Update to 17.0.10 ESR
xulrunner [17.0.10-1.0.1.el6_4]
- Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js
- Removed XULRUNNER_VERSION from SOURCE21
[17.0.10-1]
- Update to 17.0.10 ESR
[17.0.9-2]
- Added patch for rhbz#983488 - Resizing window changes window size to 0 with third party window manager.
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
firefox
17.0.10-1.0.1.el5_10
xulrunner
17.0.10-1.0.1.el5_10
xulrunner-devel
17.0.10-1.0.1.el5_10
Oracle Linux x86_64
firefox
17.0.10-1.0.1.el5_10
xulrunner
17.0.10-1.0.1.el5_10
xulrunner-devel
17.0.10-1.0.1.el5_10
Oracle Linux i386
firefox
17.0.10-1.0.1.el5_10
xulrunner
17.0.10-1.0.1.el5_10
xulrunner-devel
17.0.10-1.0.1.el5_10
Oracle Linux 6
Oracle Linux x86_64
firefox
17.0.10-1.0.1.el6_4
xulrunner
17.0.10-1.0.1.el6_4
xulrunner-devel
17.0.10-1.0.1.el6_4
Oracle Linux i686
firefox
17.0.10-1.0.1.el6_4
xulrunner
17.0.10-1.0.1.el6_4
xulrunner-devel
17.0.10-1.0.1.el6_4
Ссылки на источники
Связанные уязвимости
Use-after-free vulnerability in the nsDocLoader::doStopDocumentLoad function in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before 2.22 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors involving a state-change event during an update of the offline cache.
Use-after-free vulnerability in the nsDocLoader::doStopDocumentLoad function in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before 2.22 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors involving a state-change event during an update of the offline cache.
Use-after-free vulnerability in the nsDocLoader::doStopDocumentLoad function in Mozilla Firefox before 25.0, Firefox ESR 17.x before 17.0.10 and 24.x before 24.1, Thunderbird before 24.1, Thunderbird ESR 17.x before 17.0.10, and SeaMonkey before 2.22 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via vectors involving a state-change event during an update of the offline cache.
Use-after-free vulnerability in the nsDocLoader::doStopDocumentLoad fu ...