Advisories:rPSA-2006-0054
From rPath Wiki
rPath Security Advisory 2006-0054-1
Published: 2006-04-28
Products
- rPath Linux 1
Rating
- Severe
Exposure Level Classification
- Remote User Deterministic Unauthorized Access
Updated Versions
- devhelp=conary.rpath.com@rpl:1/0.10-11.1-1
- mozilla=conary.rpath.com@rpl:1/1.7.13-1-0.1
- mozilla-chat=conary.rpath.com@rpl:1/1.7.13-1-0.1
- mozilla-dom-inspector=conary.rpath.com@rpl:1/1.7.13-1-0.1
- mozilla-js-debugger=conary.rpath.com@rpl:1/1.7.13-1-0.1
- mozilla-mail=conary.rpath.com@rpl:1/1.7.13-1-0.1
- mozilla-nspr=conary.rpath.com@rpl:1/1.7.13-1-0.1
- mozilla-nss=conary.rpath.com@rpl:1/1.7.13-1-0.1
- yelp=conary.rpath.com@rpl:1/2.12.1-4.2-1
rPath Issue Tracking System
References
- CVE-2005-4134
- CVE-2006-0292
- CVE-2006-0293
- CVE-2006-0296
- CVE-2006-0748
- CVE-2006-0749
- CVE-2006-0884
- CVE-2006-1727
- CVE-2006-1728
- CVE-2006-1729
- CVE-2006-1730
- CVE-2006-1731
- CVE-2006-1732
- CVE-2006-1733
- CVE-2006-1734
- CVE-2006-1735
- CVE-2006-1736
- CVE-2006-1737
- CVE-2006-1738
- CVE-2006-1739
- CVE-2006-1740
- CVE-2006-1741
- CVE-2006-1742
- CVE-2006-1790
- http://www.mozilla.org/projects/security/known-vulnerabilities.html#Mozilla
- http://www.mozilla.org/security/announce/2006/mfsa2006-27.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-25.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-24.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-23.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-22.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-21.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-19.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-18.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-17.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-16.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-15.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-14.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-13.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-12.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-11.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-10.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-09.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-05.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-03.html
- http://www.mozilla.org/security/announce/2006/mfsa2006-01.html
Description
- Multiple vulnerabilities have been found in previous versions of
- the Mozilla suite, which can be exploited. Types of attacks include
- cross-site scripting and phishing attacks, bypassing certain security
- restrictions, and disclosing sensitive information.
- The yelp and devhelp tools have been re-built to use the new mozilla
- library location in this new version of mozilla.
Copyright 2006 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html