Oval Definition:	oval:com.redhat.rhsa:def:20100967
Revision Date: 2010-12-09 Version: 636 Title: RHSA-2010:0967: seamonkey security update (Critical) Description: SeaMonkey is an open source web browser, email and newsgroup client, IRC chat client, and HTML editor. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause SeaMonkey to crash or, potentially, execute arbitrary code with the privileges of the user running SeaMonkey. (CVE-2010-3767, CVE-2010-3772, CVE-2010-3776) A flaw was found in the way SeaMonkey loaded Java LiveConnect scripts. Malicious web content could load a Java LiveConnect script in a way that would result in the plug-in object having elevated privileges, allowing it to execute Java code with the privileges of the user running SeaMonkey. (CVE-2010-3775) All SeaMonkey users should upgrade to these updated packages, which correct these issues. After installing the update, SeaMonkey must be restarted for the changes to take effect. Family: unix Class: patch Status: Reference(s): CVE-2010-3767 CVE-2010-3772 CVE-2010-3775 CVE-2010-3776 RHSA-2010:0967 RHSA-2010:0967-01 RHSA-2010:0967-01 Platform(s): Red Hat Enterprise Linux 4 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 4 is installed AND seamonkey is earlier than 0:1.0.9-66.el4_8 AND seamonkey is signed with Red Hat redhatrelease2 key seamonkey-chat is earlier than 0:1.0.9-66.el4_8 AND seamonkey-chat is signed with Red Hat redhatrelease2 key seamonkey-devel is earlier than 0:1.0.9-66.el4_8 AND seamonkey-devel is signed with Red Hat redhatrelease2 key seamonkey-dom-inspector is earlier than 0:1.0.9-66.el4_8 AND seamonkey-dom-inspector is signed with Red Hat redhatrelease2 key seamonkey-js-debugger is earlier than 0:1.0.9-66.el4_8 AND seamonkey-js-debugger is signed with Red Hat redhatrelease2 key seamonkey-mail is earlier than 0:1.0.9-66.el4_8 AND seamonkey-mail is signed with Red Hat redhatrelease2 key
BACK