Oval Definition:oval:org.mitre.oval:def:21758
Revision Date:2015-03-09Version:206
Title:RHSA-2011:0471: firefox security update (Critical)
Description:The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2011:0471-CentOS 5
CVE-2011-0065
CVE-2011-0066
CVE-2011-0067
CVE-2011-0069
CVE-2011-0070
CVE-2011-0071
CVE-2011-0072
CVE-2011-0073
CVE-2011-0074
CVE-2011-0075
CVE-2011-0077
CVE-2011-0078
CVE-2011-0080
CVE-2011-0081
CVE-2011-1202
RHSA-2011:0471-01
Platform(s):CentOS Linux 5
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Product(s):firefox
xulrunner
Definition Synopsis
  • Red Hat Enterprise Linux 5 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • AND Packages match section
  • xulrunner-devel is earlier than 0:1.9.2.17-3.el5_6
  • OR firefox is earlier than 0:3.6.17-1.el5_6
  • OR xulrunner is earlier than 0:1.9.2.17-3.el5_6
  • Red Hat Enterprise Linux 6 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • AND Packages match section
  • firefox is earlier than 0:3.6.17-1.el6_0
  • OR firefox-debuginfo is earlier than 0:3.6.17-1.el6_0
  • OR xulrunner is earlier than 0:1.9.2.17-4.el6_0
  • OR xulrunner-debuginfo is earlier than 0:1.9.2.17-4.el6_0
  • OR xulrunner-devel is earlier than 0:1.9.2.17-4.el6_0
  • CentOS Linux 5 release section
  • The operating system installed on the system is CentOS Linux 5.x
  • AND Packages match section
  • firefox is earlier than 0:3.6.17-1.el5.centos
  • OR xulrunner is earlier than 0:1.9.2.17-3.el5
  • OR xulrunner-devel is earlier than 0:1.9.2.17-3.el5
    • BACK