blob: 7787acb7a3c7fbe827281a639b2eac992a9d4856 [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200701-02">
<title>Mozilla Firefox: Multiple vulnerabilities</title>
Multiple vulnerabilities have been reported in Mozilla Firefox, some of
which may allow the remote execution of arbitrary code.
<product type="ebuild">mozilla-firefox</product>
<announced>January 04, 2007</announced>
<revised>January 04, 2007: 01</revised>
<package name="www-client/mozilla-firefox" auto="yes" arch="*">
<unaffected range="ge"></unaffected>
<vulnerable range="lt"></vulnerable>
<package name="www-client/mozilla-firefox-bin" auto="yes" arch="*">
<unaffected range="ge"></unaffected>
<vulnerable range="lt"></vulnerable>
Mozilla Firefox is a popular open-source web browser from the Mozilla
An anonymous researcher found evidence of memory corruption in the way
Mozilla Firefox handles certain types of SVG comment DOM nodes.
Additionally, Frederik Reiss discovered a heap-based buffer overflow in
the conversion of a CSS cursor. Other issues with memory corruption
were also fixed. Mozilla Firefox also contains less severe
vulnerabilities involving JavaScript and Java.
<impact type="normal">
An attacker could entice a user to view a specially crafted web page
that will trigger one of the vulnerabilities, possibly leading to the
execution of arbitrary code. It is also possible for an attacker to
perform cross-site scripting attacks, leading to the exposure of
sensitive information, like user credentials.
There are no known workarounds for all the issues at this time.
All Mozilla Firefox users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=www-client/mozilla-firefox-;</code>
All Mozilla Firefox binary release users should upgrade to the latest
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=www-client/mozilla-firefox-bin-;</code>
<uri link="">CVE-2006-6497</uri>
<uri link="">CVE-2006-6498</uri>
<uri link="">CVE-2006-6499</uri>
<uri link="">CVE-2006-6500</uri>
<uri link="">CVE-2006-6501</uri>
<uri link="">CVE-2006-6502</uri>
<uri link="">CVE-2006-6503</uri>
<uri link="">CVE-2006-6504</uri>
<uri link="">CVE-2006-6506</uri>
<uri link="">CVE-2006-6507</uri>
<metadata tag="submitter" timestamp="Thu, 28 Dec 2006 15:30:23 +0000">
<metadata tag="bugReady" timestamp="Thu, 28 Dec 2006 16:10:02 +0000">