Oval Definition:oval:com.redhat.rhsa:def:20080207
Revision Date:2008-03-27Version:639
Title:RHSA-2008:0207: firefox security update (Critical)
Description:Mozilla Firefox is an open source Web browser.

  • Several flaws were found in the processing of some malformed web content. A web page containing such malicious content could cause Firefox to crash or, potentially, execute arbitrary code as the user running Firefox. (CVE-2008-1233, CVE-2008-1235, CVE-2008-1236, CVE-2008-1237)

  • Several flaws were found in the display of malformed web content. A web page containing specially-crafted content could, potentially, trick a Firefox user into surrendering sensitive information. (CVE-2008-1234, CVE-2008-1238, CVE-2008-1241)

    All Firefox users should upgrade to these updated packages, which contain backported patches that correct these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2008-1233
    CVE-2008-1234
    CVE-2008-1235
    CVE-2008-1236
    CVE-2008-1237
    CVE-2008-1238
    CVE-2008-1241
    RHSA-2008:0207
    RHSA-2008:0207-01
    RHSA-2008:0207-01
    Platform(s):Red Hat Enterprise Linux 4
    Red Hat Enterprise Linux 5
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND firefox is earlier than 0:1.5.0.12-0.14.el4
  • AND firefox is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND firefox is earlier than 0:1.5.0.12-14.el5_1
  • AND firefox is signed with Red Hat redhatrelease2 key
    • BACK