Oval Definition:	oval:com.redhat.rhsa:def:20081037
Revision Date: 2008-12-17 Version: 640 Title: RHSA-2008:1037: seamonkey security update (Critical) Description: SeaMonkey is an open source Web browser, email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code as the user running SeaMonkey. (CVE-2008-5500, CVE-2008-5501, CVE-2008-5502, CVE-2008-5504, CVE-2008-5511, CVE-2008-5512, CVE-2008-5513) Several flaws were found in the way malformed content was processed. A website containing specially-crafted content could potentially trick a SeaMonkey user into surrendering sensitive information. (CVE-2008-5503, CVE-2008-5506, CVE-2008-5507) A flaw was found in the way malformed URLs were processed by SeaMonkey. This flaw could prevent various URL sanitization mechanisms from properly parsing a malicious URL. (CVE-2008-5508) Note: after the errata packages are installed, SeaMonkey must be restarted for the update to take effect. All SeaMonkey users should upgrade to these updated packages, which contain backported patches to resolve these issues. Family: unix Class: patch Status: Reference(s): CVE-2008-5500 CVE-2008-5501 CVE-2008-5502 CVE-2008-5503 CVE-2008-5504 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5511 CVE-2008-5512 CVE-2008-5513 RHSA-2008:1037 RHSA-2008:1037-01 RHSA-2008:1037-01 Platform(s): Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 3 is installed AND seamonkey-chat is earlier than 0:1.0.9-0.29.el3 AND seamonkey-chat is signed with Red Hat master key seamonkey-nspr-devel is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nspr-devel is signed with Red Hat master key seamonkey is earlier than 0:1.0.9-0.29.el3 AND seamonkey is signed with Red Hat master key seamonkey-devel is earlier than 0:1.0.9-0.29.el3 AND seamonkey-devel is signed with Red Hat master key seamonkey-nss-devel is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nss-devel is signed with Red Hat master key seamonkey-nss is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nss is signed with Red Hat master key seamonkey-js-debugger is earlier than 0:1.0.9-0.29.el3 AND seamonkey-js-debugger is signed with Red Hat master key seamonkey-nspr is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nspr is signed with Red Hat master key seamonkey-dom-inspector is earlier than 0:1.0.9-0.29.el3 AND seamonkey-dom-inspector is signed with Red Hat master key seamonkey-mail is earlier than 0:1.0.9-0.29.el3 AND seamonkey-mail is signed with Red Hat master key OR Package Information Red Hat Enterprise Linux 4 is installed AND seamonkey-js-debugger is earlier than 0:1.0.9-32.el4 AND seamonkey-js-debugger is signed with Red Hat master key seamonkey-dom-inspector is earlier than 0:1.0.9-32.el4 AND seamonkey-dom-inspector is signed with Red Hat master key seamonkey-devel is earlier than 0:1.0.9-32.el4 AND seamonkey-devel is signed with Red Hat master key seamonkey-mail is earlier than 0:1.0.9-32.el4 AND seamonkey-mail is signed with Red Hat master key seamonkey is earlier than 0:1.0.9-32.el4 AND seamonkey is signed with Red Hat master key seamonkey-chat is earlier than 0:1.0.9-32.el4 AND seamonkey-chat is signed with Red Hat master key Definition Synopsis Release Information Red Hat Enterprise Linux 3 is installed AND seamonkey is earlier than 0:1.0.9-0.29.el3 AND seamonkey is signed with Red Hat master key seamonkey-chat is earlier than 0:1.0.9-0.29.el3 AND seamonkey-chat is signed with Red Hat master key seamonkey-devel is earlier than 0:1.0.9-0.29.el3 AND seamonkey-devel is signed with Red Hat master key seamonkey-dom-inspector is earlier than 0:1.0.9-0.29.el3 AND seamonkey-dom-inspector is signed with Red Hat master key seamonkey-js-debugger is earlier than 0:1.0.9-0.29.el3 AND seamonkey-js-debugger is signed with Red Hat master key seamonkey-mail is earlier than 0:1.0.9-0.29.el3 AND seamonkey-mail is signed with Red Hat master key seamonkey-nspr is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nspr is signed with Red Hat master key seamonkey-nspr-devel is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nspr-devel is signed with Red Hat master key seamonkey-nss is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nss is signed with Red Hat master key seamonkey-nss-devel is earlier than 0:1.0.9-0.29.el3 AND seamonkey-nss-devel is signed with Red Hat master key OR Package Information Red Hat Enterprise Linux 4 is installed AND seamonkey is earlier than 0:1.0.9-32.el4 AND seamonkey is signed with Red Hat master key seamonkey-chat is earlier than 0:1.0.9-32.el4 AND seamonkey-chat is signed with Red Hat master key seamonkey-devel is earlier than 0:1.0.9-32.el4 AND seamonkey-devel is signed with Red Hat master key seamonkey-dom-inspector is earlier than 0:1.0.9-32.el4 AND seamonkey-dom-inspector is signed with Red Hat master key seamonkey-js-debugger is earlier than 0:1.0.9-32.el4 AND seamonkey-js-debugger is signed with Red Hat master key seamonkey-mail is earlier than 0:1.0.9-32.el4 AND seamonkey-mail is signed with Red Hat master key Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 4 is installed AND seamonkey is earlier than 0:1.0.9-32.el4 AND seamonkey is signed with Red Hat redhatrelease2 key seamonkey-chat is earlier than 0:1.0.9-32.el4 AND seamonkey-chat is signed with Red Hat redhatrelease2 key seamonkey-devel is earlier than 0:1.0.9-32.el4 AND seamonkey-devel is signed with Red Hat redhatrelease2 key seamonkey-dom-inspector is earlier than 0:1.0.9-32.el4 AND seamonkey-dom-inspector is signed with Red Hat redhatrelease2 key seamonkey-js-debugger is earlier than 0:1.0.9-32.el4 AND seamonkey-js-debugger is signed with Red Hat redhatrelease2 key seamonkey-mail is earlier than 0:1.0.9-32.el4 AND seamonkey-mail is signed with Red Hat redhatrelease2 key
BACK