LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2010-1727 (gnome-web-photo)



From:
    	      updates@fedoraproject.org 


To:
    	      package-announce@lists.fedoraproject.org 


Subject:
    	      [SECURITY] Fedora 12 Update: gnome-web-photo-0.9-5.fc12 


Date:
    	      Sat, 20 Feb 2010 00:29:04 +0000


Message-ID:
    	      <20100220002904.A6AC610FF09@bastion02.phx2.fedoraproject.org>


Archive-link:
    	      Article, Thread
              


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-1727
2010-02-19 23:56:36
--------------------------------------------------------------------------------

Name        : gnome-web-photo
Product     : Fedora 12
Version     : 0.9
Release     : 5.fc12
URL         : http://download.gnome.org/sources/gnome-web-photo/0.9/
Summary     : HTML pages thumbnailer
Description :
gnome-web-photo contains a thumbnailer that will be used by GNOME applications,
including the file manager, to generate screenshots of web pages.

--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.5.8, fixing multiple security issues
detailed in the upstream advisories:    http://www.mozilla.org/security/known-
vulnerabilities/firefox35.html#firefox3.5.8    Update also includes all packages
depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Feb 18 2010 Jan Horak <jhorak@redhat.com> - 0.9-5
- Rebuild against newer gecko
* Wed Dec 16 2009 Jan Horak <jhorak@redhat.com> - 0.9-4
- Rebuild against newer gecko
* Thu Nov  5 2009 Jan Horak <jhorak@redhat.com> - 0.9-3
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #566047 - CVE-2010-0159 Mozilla crashes with evidence of memory corruption (MFSA
2010-01)
        https://bugzilla.redhat.com/show_bug.cgi?id=566047
  [ 2 ] Bug #566049 - CVE-2010-0160 Mozilla implementation of Web Workers can lead to crash with
evidence of memory corruption (MFSA 2010-02)
        https://bugzilla.redhat.com/show_bug.cgi?id=566049
  [ 3 ] Bug #566050 - CVE-2009-1571 Mozilla incorrectly frees used memory (MFSA 2010-03)
        https://bugzilla.redhat.com/show_bug.cgi?id=566050
  [ 4 ] Bug #566051 - CVE-2009-3988 Mozilla violation of same-origin policy due to properties set
on objects passed to showModalDialog (MFSA 2010-04)
        https://bugzilla.redhat.com/show_bug.cgi?id=566051
  [ 5 ] Bug #566052 - CVE-2010-0162 Mozilla bypass of same-origin policy due to improper SVG
document processing (MFSA 2010-05)
        https://bugzilla.redhat.com/show_bug.cgi?id=566052
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update gnome-web-photo' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-...
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds