LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2008-6518 (epiphany-extensions)



From:
    	      updates@fedoraproject.org


To:
    	      fedora-package-announce@redhat.com


Subject:
    	      [SECURITY] Fedora 9 Update: epiphany-extensions-2.22.1-3.fc9


Date:
    	      Fri, 18 Jul 2008 08:05:53 +0000


Message-ID:
    	      <200807180805.m6I85C7n018915@bastion.fedora.phx.redhat.com>


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-6518
2008-07-18 01:38:11
--------------------------------------------------------------------------------

Name        : epiphany-extensions
Product     : Fedora 9
Version     : 2.22.1
Release     : 3.fc9
URL         : http://www.gnome.org/projects/epiphany/extensions
Summary     : Extensions for Epiphany, the GNOME web browser
Description :
Epiphany Extensions is a collection of extensions for Epiphany, the
GNOME web browser.

--------------------------------------------------------------------------------
Update Information:

Updated firefox packages that fix several security issues are now available for
Fedora 9.    An integer overflow flaw was found in the way Firefox displayed
certain web content. A malicious web site could cause Firefox to crash, or
execute arbitrary code with the permissions of the user running Firefox.
(CVE-2008-2785)    A flaw was found in the way Firefox handled certain command
line URLs. If another application passed Firefox a malformed URL, it could
result in Firefox executing local malicious content with chrome privileges.
(CVE-2008-2933)    Updated packages update Mozilla Firefox to upstream version
3.0.1 to address these flaws:    http://www.mozilla.org/security/known-
vulnerabilities/firefox30.html#firefox3.0.1    This update also contains
devhelp, epiphany, epiphany-extensions, and yelp packages rebuilt against new
Firefox / Gecko libraries.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 17 2008 Christopher Aillon <caillon@redhat.com> - 2.22.1-3
- Rebuild against newer gecko
* Sun Jun 22 2008 Martin Stransky <stransky@redhat.com> - 2.22.1-2
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #452204 - CVE-2008-2785 mozilla: CSS reference counter overflow (ZDI-CAN-349)
        https://bugzilla.redhat.com/show_bug.cgi?id=452204
  [ 2 ] Bug #454697 - CVE-2008-2933 Firefox command line URL launches multi-tabs
        https://bugzilla.redhat.com/show_bug.cgi?id=454697
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update epiphany-extensions' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-ann...
(Log in to post comments)

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds