Oval Definition:oval:com.redhat.rhsa:def:20050769
Revision Date:2005-09-10Version:502
Title:RHSA-2005:769: mozilla security update (Critical)
Description:Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor.

A bug was found in the way Mozilla processes certain international domain names. An attacker could create a specially crafted HTML file, which when viewed by the victim would cause Mozilla to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-2871 to this issue.

Users of Mozilla are advised to upgrade to this updated package that contains a backported patch and is not vulnerable to this issue.
Family:unixClass:patch
Status:Reference(s):CVE-2005-2871
RHSA-2005:769-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • mozilla-js-debugger is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-js-debugger is signed with Red Hat master key
  • mozilla-mail is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-mail is signed with Red Hat master key
  • mozilla-chat is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-chat is signed with Red Hat master key
  • mozilla-nss-devel is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-nss-devel is signed with Red Hat master key
  • mozilla is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla is signed with Red Hat master key
  • mozilla-dom-inspector is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-dom-inspector is signed with Red Hat master key
  • mozilla-nspr-devel is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-nspr-devel is signed with Red Hat master key
  • mozilla-nspr is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-nspr is signed with Red Hat master key
  • mozilla-devel is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-devel is signed with Red Hat master key
  • mozilla-nss is earlier than 37:1.7.10-1.1.3.2
  • AND mozilla-nss is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • mozilla-js-debugger is earlier than 37:1.7.10-1.4.2
  • AND mozilla-js-debugger is signed with Red Hat master key
  • mozilla-mail is earlier than 37:1.7.10-1.4.2
  • AND mozilla-mail is signed with Red Hat master key
  • mozilla-chat is earlier than 37:1.7.10-1.4.2
  • AND mozilla-chat is signed with Red Hat master key
  • mozilla-nss-devel is earlier than 37:1.7.10-1.4.2
  • AND mozilla-nss-devel is signed with Red Hat master key
  • mozilla is earlier than 37:1.7.10-1.4.2
  • AND mozilla is signed with Red Hat master key
  • mozilla-dom-inspector is earlier than 37:1.7.10-1.4.2
  • AND mozilla-dom-inspector is signed with Red Hat master key
  • mozilla-nspr-devel is earlier than 37:1.7.10-1.4.2
  • AND mozilla-nspr-devel is signed with Red Hat master key
  • mozilla-nspr is earlier than 37:1.7.10-1.4.2
  • AND mozilla-nspr is signed with Red Hat master key
  • mozilla-devel is earlier than 37:1.7.10-1.4.2
  • AND mozilla-devel is signed with Red Hat master key
  • mozilla-nss is earlier than 37:1.7.10-1.4.2
  • AND mozilla-nss is signed with Red Hat master key
    • BACK