Oval Definition:oval:com.redhat.rhsa:def:20050435
Revision Date:2005-05-24Version:502
Title:RHSA-2005:435: mozilla security update (Important)
Description:Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor.

Several bugs were found in the way Mozilla executes javascript code. Javascript executed from a web page should run with a restricted access level, preventing dangerous actions. It is possible that a malicious web page could execute javascript code with elevated privileges, allowing access to protected data and functions. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2005-1476, CAN-2005-1477, CAN-2005-1531, and CAN-2005-1532 to these issues.

Users of Mozilla are advised to upgrade to this updated package, which contains Mozilla version 1.7.8 to correct these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2005-1476
CVE-2005-1477
CVE-2005-1531
CVE-2005-1532
RHSA-2005:435-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • mozilla-js-debugger is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-js-debugger is signed with Red Hat master key
  • mozilla-mail is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-mail is signed with Red Hat master key
  • mozilla-chat is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-chat is signed with Red Hat master key
  • mozilla-nss-devel is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-nss-devel is signed with Red Hat master key
  • mozilla is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla is signed with Red Hat master key
  • mozilla-nspr-devel is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-nspr-devel is signed with Red Hat master key
  • mozilla-nspr is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-nspr is signed with Red Hat master key
  • mozilla-dom-inspector is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-dom-inspector is signed with Red Hat master key
  • mozilla-devel is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-devel is signed with Red Hat master key
  • mozilla-nss is earlier than 37:1.7.8-1.1.3.1
  • AND mozilla-nss is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • mozilla-js-debugger is earlier than 37:1.7.8-1.4.1
  • AND mozilla-js-debugger is signed with Red Hat master key
  • mozilla-mail is earlier than 37:1.7.8-1.4.1
  • AND mozilla-mail is signed with Red Hat master key
  • mozilla-chat is earlier than 37:1.7.8-1.4.1
  • AND mozilla-chat is signed with Red Hat master key
  • mozilla-nss-devel is earlier than 37:1.7.8-1.4.1
  • AND mozilla-nss-devel is signed with Red Hat master key
  • mozilla is earlier than 37:1.7.8-1.4.1
  • AND mozilla is signed with Red Hat master key
  • mozilla-nspr-devel is earlier than 37:1.7.8-1.4.1
  • AND mozilla-nspr-devel is signed with Red Hat master key
  • mozilla-nspr is earlier than 37:1.7.8-1.4.1
  • AND mozilla-nspr is signed with Red Hat master key
  • mozilla-dom-inspector is earlier than 37:1.7.8-1.4.1
  • AND mozilla-dom-inspector is signed with Red Hat master key
  • mozilla-devel is earlier than 37:1.7.8-1.4.1
  • AND mozilla-devel is signed with Red Hat master key
  • mozilla-nss is earlier than 37:1.7.8-1.4.1
  • AND mozilla-nss is signed with Red Hat master key
  • devhelp is earlier than 0:0.9.2-2.4.5
  • AND devhelp is signed with Red Hat master key
  • devhelp-devel is earlier than 0:0.9.2-2.4.5
  • AND devhelp-devel is signed with Red Hat master key
    • BACK