Advisories:rPSA-2007-0260

From rPath Wiki

rPath Security Advisory 2007-0260-1

Published: 2007-12-06

Products

• rPath Linux 1

Rating

Major

Exposure Level Classification

Indirect User Deterministic Unauthorized Access

Updated Versions

• firefox=conary.rpath.com@rpl:1/2.0.0.11-0.1-1

rPath Issue Tracking System

• RPL-1984

References

• CVE-2007-5947
• CVE-2007-5959
• CVE-2007-5960
• http://www.mozilla.org/projects/security/known-vulnerabilities.html#firefox2.0.0.11

Description

Previous versions of the firefox package are vulnerable to several

types of attacks, some of which are understood to allow compromised

or malicious sites to run arbitrary code as the user running firefox.

Copyright 2007 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html