---------------------------------------------------------------------- Want to work within IT-Security? Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit. Currently the following type of positions are available: http://secunia.com/quality_assurance_analyst/ http://secunia.com/web_application_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/ ---------------------------------------------------------------------- TITLE: SUSE updates for MozillaFirefox, MozillaThunderbird, and seamonkey SECUNIA ADVISORY ID: SA22056 VERIFY ADVISORY: http://secunia.com/advisories/22056/ CRITICAL: Highly critical IMPACT: Security Bypass, Cross Site Scripting, Spoofing, DoS, System access WHERE: >From remote OPERATING SYSTEM: SUSE Linux 9.3 http://secunia.com/product/4933/ SUSE Linux 9.2 http://secunia.com/product/4258/ SUSE Linux 10.1 http://secunia.com/product/10796/ SUSE Linux 10 http://secunia.com/product/6221/ DESCRIPTION: SUSE has issued updates for MozillaFirefox, MozillaThunderbird, and seamonkey. These fix some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, conduct man-in-the-middle, spoofing, and cross-site scripting attacks, and potentially compromise a user's system. For more information: SA21906 SA21939 SA21940 SOLUTION: Apply updated packages. x86 Platform: SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-1.5.0.7-1.2.i586.rpm c2241c461583cb54da9444aa13513da8 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-translations-1.5.0.7-1.2.i586.rpm cede57cc709d100a17747f87fbc8f02b ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-1.5.0.7-0.1.i586.rpm 28bba6b62a42895ccd6df331a7926500 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-translations-1.5.0.7-0.1.i586.rpm acee42b344e5e3a367d243aa417c12b3 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-1.0.5-1.1.i586.rpm 75af4685ab07ddd80d95ff2b6f8fceef ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-calendar-1.0.5-1.1.i586.rpm 5b25c1e00032672ec95245b9cb0dcf8a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-dom-inspector-1.0.5-1.1.i586.rpm 430729d03b65c87f882d1e2997d316a8 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-irc-1.0.5-1.1.i586.rpm d1f2779e225937c360cd9c68a583fc37 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-mail-1.0.5-1.1.i586.rpm a471c1ded619519aa9ecbc9890a9382c ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-spellchecker-1.0.5-1.1.i586.rpm 17dc992659486f8216549fc39cda55bd ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/seamonkey-venkman-1.0.5-1.1.i586.rpm 88678b6dfda08966bb9994f081804b0c SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-1.5.0.7-1.1.i586.rpm e6d74190437f49b0fc5276f6b856b67e ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-translations-1.5.0.7-1.1.i586.rpm 225f846874b32245b23492d51bc077b3 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaThunderbird-1.5.0.7-0.1.i586.rpm 39371eb2f03f8f90a4e8ffc4f29a182c SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-1.5.0.7-1.1.i586.rpm 746a56a6aa9402287d7c0f054989689c ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-translations-1.5.0.7-1.1.i586.rpm 5ef6019c2a3b149e84073a699c178b27 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaThunderbird-1.5.0.7-0.1.i586.rpm 05b9588e09dccfcc8e4b5320398ebd07 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/MozillaFirefox-1.5.0.7-1.1.i586.rpm 653f774d37b664ce97ecbb31bdca9041 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/MozillaFirefox-translations-1.5.0.7-1.1.i586.rpm dc8d989574b91fca7cc6d294469330e7 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/MozillaThunderbird-1.5.0.7-0.1.i586.rpm 5e96afa8a01e9c487e46cfb144cea474 Power PC Platform: SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-1.5.0.7-1.2.ppc.rpm c81caccf49c06e060b095c50c9241212 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-translations-1.5.0.7-1.2.ppc.rpm 53e3e3acf042ccf76882d27bfd0b1bb8 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-1.5.0.7-0.1.ppc.rpm 3fb66e6bce779781cb25175f4ba029ed ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-translations-1.5.0.7-0.1.ppc.rpm d69cd7b2f1853b84a1f64f1187196f8e ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-1.0.5-1.1.ppc.rpm 5d81db21ab3ff65e2da8f7c7834c9dd7 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-calendar-1.0.5-1.1.ppc.rpm 195fe45f87de1625191df8fe9b56216a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-dom-inspector-1.0.5-1.1.ppc.rpm d797584d1507df5cee459ae52025ae4f ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-irc-1.0.5-1.1.ppc.rpm ac452dc31a45124129faca0b7a289881 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-mail-1.0.5-1.1.ppc.rpm 213ee0051aabeb1606128fdf031f87ec ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-spellchecker-1.0.5-1.1.ppc.rpm 7200d9d8f6de89125c12c18fb082ff92 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/seamonkey-venkman-1.0.5-1.1.ppc.rpm 0e51a3e3b0ea39f951bf146db8316995 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaFirefox-1.5.0.7-1.1.ppc.rpm c18441b3b260aeb26445bc6f514d76cf ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaFirefox-translations-1.5.0.7-1.1.ppc.rpm 22c3c4e9102e35bdcdccc9970bb8e86b ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaThunderbird-1.5.0.7-0.1.ppc.rpm a27cfdf5824fe2155215806c3e48ef01 x86-64 Platform: SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird-1.5.0.7-0.1.x86_64.rpm c8f0e029fd901c0ee4b792e657534094 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird-translations-1.5.0.7-0.1.x86_64.rpm 6adbd489c023501639fd417844a4af6f ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-1.0.5-1.1.x86_64.rpm 3134380adefa0d0eef28ceaea0feefa3 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-calendar-1.0.5-1.1.x86_64.rpm 9264ba5a10f98dc9c4bc6b6bb3f948c9 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-dom-inspector-1.0.5-1.1.x86_64.rpm 2391b23a49e8044025feeba96f3c98aa ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-irc-1.0.5-1.1.x86_64.rpm 6e6de01bba861db89ae1cef20423f99b ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-mail-1.0.5-1.1.x86_64.rpm d54a8f88541d6809b55510899ad60e9c ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-spellchecker-1.0.5-1.1.x86_64.rpm fd6847218166c1f3175fe5197d057340 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/seamonkey-venkman-1.0.5-1.1.x86_64.rpm 36bff38cd92af4b4759805498c9f26fc SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/MozillaThunderbird-1.5.0.7-0.1.x86_64.rpm 21dd3f6e951b6a26b423fef4446049a9 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/MozillaThunderbird-1.5.0.7-0.1.x86_64.rpm 29a0d99e40b423720c412778f9c348c2 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/MozillaFirefox-1.5.0.7-1.1.x86_64.rpm d9373f704a849e401296a6ce1029af8e ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/MozillaFirefox-translations-1.5.0.7-1.1.x86_64.rpm 95e941405253b750c712008f8ede371e ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/MozillaThunderbird-1.5.0.7-0.1.x86_64.rpm db25bb261cefcc722e349450190ac0dc Sources: SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/MozillaFirefox-1.5.0.7-1.2.src.rpm a84a3ced8c0f7c3222cc3ab76e51a2d9 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/MozillaThunderbird-1.5.0.7-0.1.src.rpm 63cb05e759521c36b28ca86b95e3008b ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/seamonkey-1.0.5-1.1.src.rpm d5c0667bc7ac9899e5d083335259de32 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/MozillaFirefox-1.5.0.7-1.1.src.rpm 9081b907a933f4112b1dea8501c5be8c ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/MozillaThunderbird-1.5.0.7-0.1.src.rpm 0af702b1eac30f7413b7959e08d92f4f SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/MozillaFirefox-1.5.0.7-1.1.src.rpm 2cb13934696dc77c4a92cf6e51cb3947 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/MozillaThunderbird-1.5.0.7-0.1.src.rpm 70b0ce0a6abc740bb3b7564ee8d95de4 SUSE LINUX 9.2: ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/MozillaFirefox-1.5.0.7-1.1.src.rpm c56ba0432ded361fe09e7e12fec9ff48 ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/MozillaThunderbird-1.5.0.7-0.1.src.rpm 56770bca1157d6e43e21ecd4fddcad51 ORIGINAL ADVISORY: http://lists.suse.com/archive/suse-security-announce/2006-Sep/0008.html OTHER REFERENCES: SA21906: http://secunia.com/advisories/21906/ SA21939: http://secunia.com/advisories/21939/ SA21940: http://secunia.com/advisories/21940/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------