Oval Definition:	oval:org.mitre.oval:def:23702
Revision Date: 2014-05-26 Version: 73 Title: ELSA-2011:0471: firefox security update (Critical) Description: The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2011-0065 CVE-2011-0066 CVE-2011-0067 CVE-2011-0069 CVE-2011-0070 CVE-2011-0071 CVE-2011-0072 CVE-2011-0073 CVE-2011-0074 CVE-2011-0075 CVE-2011-0077 CVE-2011-0078 CVE-2011-0080 CVE-2011-0081 CVE-2011-1202 ELSA-2011:0471-01 Platform(s): Oracle Linux 6 Product(s): firefox xulrunner Definition Synopsis Oracle Linux 6.x AND rpm test firefox is earlier than 0:3.6.17-1.el6_0 OR xulrunner-devel is earlier than 0:1.9.2.17-4.el6_0 OR xulrunner is earlier than 0:1.9.2.17-4.el6_0
BACK