rPSA-2008-0238-1 firefox

To: security-announce@xxxxxxxxxxxxxxx, update-announce@xxxxxxxxxxxxxxx
Subject: rPSA-2008-0238-1 firefox
From: rPath Update Announcements <announce-noreply@xxxxxxxxx>
Date: Mon, 28 Jul 2008 21:24:50 -0400
Cc: full-disclosure@xxxxxxxxxxxxxxxxx, vulnwatch@xxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx, lwn@xxxxxxx
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
User-agent: nail 11.22 3/20/05

rPath Security Advisory: 2008-0238-1
Published: 2008-07-28
Products:
    rPath Linux 1

Rating: Major
Exposure Level Classification:
    Indirect User Deterministic Unauthorized Access
Updated Versions:
    firefox=conary.rpath.com@rpl:1/2.0.0.16-0.1-1

rPath Issue Tracking System:
    https://issues.rpath.com/browse/RPL-2683

References:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2785
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2933

Description:
    Previous versions of the firefox package are vulnerable to multiple
    attacks, the most serious of which is understood to allow compromised 
    or malicious sites to run arbitrary code as the user running firefox.

http://wiki.rpath.com/Advisories:rPSA-2008-0238

Copyright 2008 rPath, Inc.
This file is distributed under the terms of the MIT License.
A copy is available at http://www.rpath.com/permanent/mit-license.html

Prev by Date: rPSA-2008-0237-1 tshark wireshark
Next by Date: [USN-631-1] poppler vulnerability
Previous by thread: rPSA-2008-0237-1 tshark wireshark
Next by thread: [USN-631-1] poppler vulnerability
Index(es):
- Date
- Thread