Oval Definition:oval:org.mitre.oval:def:21765
Revision Date:2014-02-24Version:48
Title:RHSA-2011:1437: firefox security update (Critical)
Description:Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 do not properly handle JavaScript files that contain many functions, which allows user-assisted remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted file that is accessed by debugging APIs, as demonstrated by Firebug.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2011:1437
CVE-2011-3647
CVE-2011-3648
CVE-2011-3650
RHSA-2011:1437-01
Platform(s):CentOS Linux 5
CentOS Linux 6
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Product(s):firefox
xulrunner
Definition Synopsis
  • Operation system section
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • xulrunner-devel is earlier than 0:1.9.2.24-2.el5_7
  • OR xulrunner is earlier than 0:1.9.2.24-2.el5_7
  • OR firefox is earlier than 0:3.6.24-3.el5_7
  • Operation system section
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • AND Packages section
  • xulrunner-devel is earlier than 0:1.9.2.24-2.el6_1.1
  • OR xulrunner is earlier than 0:1.9.2.24-2.el6_1.1
  • OR firefox is earlier than 0:3.6.24-3.el6_1
    • BACK