---------------------------------------------------------------------- Do you need accurate and reliable IDS / IPS / AV detection rules? Get in-depth vulnerability details: http://secunia.com/binary_analysis/sample_analysis/ ---------------------------------------------------------------------- TITLE: SUSE update for MozillaFirefox, MozillaThunderbird, seamonkey, and mozilla SECUNIA ADVISORY ID: SA32196 VERIFY ADVISORY: http://secunia.com/advisories/32196/ CRITICAL: Highly critical IMPACT: Security Bypass, Exposure of system information, Exposure of sensitive information, DoS, System access WHERE: >From remote OPERATING SYSTEM: openSUSE 10.3 http://secunia.com/advisories/product/16124/ openSUSE 11.0 http://secunia.com/advisories/product/19180/ SUSE Linux Enterprise Server 9 http://secunia.com/advisories/product/4118/ SUSE Linux Enterprise Server 10 http://secunia.com/advisories/product/12192/ openSUSE 10.2 http://secunia.com/advisories/product/13375/ SOFTWARE: Novell Open Enterprise Server 1.x http://secunia.com/advisories/product/4664/ DESCRIPTION: SUSE has issued an update for MozillaFirefox, MozillaThunderbird, seamonkey, and mozilla. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, to disclose sensitive information, or to potentially compromise a user's system. For more information: SA31984 SA32007 SA32010 This is related to: SA32144 SOLUTION: Apply updated packages. x86 Platform: openSUSE 11.0: http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/MozillaFirefox-debuginfo-3.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/MozillaFirefox-debugsource-3.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/MozillaThunderbird-debuginfo-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/MozillaThunderbird-debugsource-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/epiphany-debuginfo-2.22.1.1-25.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/epiphany-debugsource-2.22.1.1-25.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/epiphany-extensions-debuginfo-2.22.0-37.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/epiphany-extensions-debugsource-2.22.0-37.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/mozilla-xulrunner181-debuginfo-1.8.1.13-22.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/mozilla-xulrunner181-debugsource-1.8.1.13-22.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/mozilla-xulrunner190-debuginfo-1.9.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/mozilla-xulrunner190-debugsource-1.9.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/seamonkey-debuginfo-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/debug/update/11.0/rpm/i586/seamonkey-debugsource-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/MozillaFirefox-3.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/MozillaFirefox-translations-3.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/MozillaThunderbird-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/MozillaThunderbird-devel-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/MozillaThunderbird-translations-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/epiphany-2.22.1.1-25.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/epiphany-devel-2.22.1.1-25.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/epiphany-doc-2.22.1.1-25.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/epiphany-extensions-2.22.0-37.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/mozilla-xulrunner181-1.8.1.13-22.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/mozilla-xulrunner181-devel-1.8.1.13-22.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/mozilla-xulrunner181-l10n-1.8.1.13-22.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/mozilla-xulrunner190-1.9.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/mozilla-xulrunner190-devel-1.9.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/mozilla-xulrunner190-gnomevfs-1.9.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/mozilla-xulrunner190-translations-1.9.0.3-1.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/seamonkey-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/seamonkey-dom-inspector-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/seamonkey-irc-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/seamonkey-mail-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/seamonkey-spellchecker-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/i586/seamonkey-venkman-1.1.12-0.1.i586.rpm openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaFirefox-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaFirefox-translations-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaThunderbird-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/MozillaThunderbird-translations-2.0.0.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/epiphany-2.20.0-8.5.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/epiphany-devel-2.20.0-8.5.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/epiphany-doc-2.20.0-8.5.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/epiphany-extensions-2.20.0-8.5.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/mozilla-xulrunner181-1.8.1.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/mozilla-xulrunner181-devel-1.8.1.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/mozilla-xulrunner181-l10n-1.8.1.17-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/seamonkey-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/seamonkey-dom-inspector-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/seamonkey-irc-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/seamonkey-mail-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/seamonkey-spellchecker-1.1.12-0.1.i586.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/seamonkey-venkman-1.1.12-0.1.i586.rpm openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-2.0.0.17-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-translations-2.0.0.17-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/epiphany-2.16.1-34.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/epiphany-devel-2.16.1-34.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/epiphany-doc-2.16.1-34.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/epiphany-extensions-2.16.1-34.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/mozilla-xulrunner181-1.8.1.17-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/mozilla-xulrunner181-devel-1.8.1.17-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/mozilla-xulrunner181-l10n-1.8.1.17-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/seamonkey-1.1.12-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/seamonkey-dom-inspector-1.1.12-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/seamonkey-irc-1.1.12-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/seamonkey-mail-1.1.12-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/seamonkey-spellchecker-1.1.12-0.1.i586.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/seamonkey-venkman-1.1.12-0.1.i586.rpm x86-64 Platform: openSUSE 11.0: http://download.opensuse.org/pub/opensuse/update/11.0/rpm/x86_64/mozilla-xulrunner181-32bit-1.8.1.13-22.1.x86_64.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/x86_64/mozilla-xulrunner190-32bit-1.9.0.3-1.1.x86_64.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/x86_64/mozilla-xulrunner190-gnomevfs-32bit-1.9.0.3-1.1.x86_64.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/x86_64/mozilla-xulrunner190-translations-32bit-1.9.0.3-1.1.x86_64.rpm openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/mozilla-xulrunner181-32bit-1.8.1.17-0.1.x86_64.rpm openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/mozilla-xulrunner181-32bit-1.8.1.17-0.1.x86_64.rpm Sources: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/MozillaFirefox-2.0.0.17-0.1.src.rpm openSUSE 11.0: http://download.opensuse.org/pub/opensuse/update/11.0/rpm/src/MozillaFirefox-3.0.3-1.1.src.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/src/MozillaThunderbird-2.0.0.17-0.1.src.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/src/epiphany-2.22.1.1-25.1.src.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/src/epiphany-extensions-2.22.0-37.1.src.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/src/mozilla-xulrunner181-1.8.1.13-22.1.src.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/src/mozilla-xulrunner190-1.9.0.3-1.1.src.rpm http://download.opensuse.org/pub/opensuse/update/11.0/rpm/src/seamonkey-1.1.12-0.1.src.rpm openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/MozillaFirefox-2.0.0.17-0.1.src.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/MozillaThunderbird-2.0.0.17-0.1.src.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/epiphany-2.20.0-8.5.src.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/epiphany-extensions-2.20.0-8.5.src.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/mozilla-xulrunner181-1.8.1.17-0.1.src.rpm http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/seamonkey-1.1.12-0.1.src.rpm openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/epiphany-2.16.1-34.src.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/epiphany-extensions-2.16.1-34.src.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/mozilla-xulrunner181-1.8.1.17-0.1.src.rpm ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/seamonkey-1.1.12-0.1.src.rpm Open Enterprise Server http://download.novell.com/index.jsp?search=Search&keywords=f6315c5c6bde445e37c2730b22895fc0 Novell Linux POS 9 http://download.novell.com/index.jsp?search=Search&keywords=f6315c5c6bde445e37c2730b22895fc0 SUSE SLES 9 http://download.novell.com/index.jsp?search=Search&keywords=f6315c5c6bde445e37c2730b22895fc0 Novell Linux Desktop 9 http://download.novell.com/index.jsp?search=Search&keywords=f6315c5c6bde445e37c2730b22895fc0 http://download.novell.com/index.jsp?search=Search&keywords=f8b2838afc3706a1f79bd864e2618613 SLE SDK 10 SP2 http://download.novell.com/index.jsp?search=Search&keywords=7cd7dff5951cf6310603096b81b16922 SLE SDK 10 SP1 http://download.novell.com/index.jsp?search=Search&keywords=7cd7dff5951cf6310603096b81b16922 SUSE Linux Enterprise Server 10 SP1 http://download.novell.com/index.jsp?search=Search&keywords=7cd7dff5951cf6310603096b81b16922 http://download.novell.com/index.jsp?search=Search&keywords=39ddcb62480cca4cc1867664cac5707c SUSE Linux Enterprise Server 10 SP2 http://download.novell.com/index.jsp?search=Search&keywords=7cd7dff5951cf6310603096b81b16922 http://download.novell.com/index.jsp?search=Search&keywords=39ddcb62480cca4cc1867664cac5707c SUSE Linux Enterprise 10 SP2 DEBUGINFO http://download.novell.com/index.jsp?search=Search&keywords=39ddcb62480cca4cc1867664cac5707c SUSE Linux Enterprise Desktop 10 SP1 http://download.novell.com/index.jsp?search=Search&keywords=7cd7dff5951cf6310603096b81b16922 http://download.novell.com/index.jsp?search=Search&keywords=39ddcb62480cca4cc1867664cac5707c SUSE Linux Enterprise Desktop 10 SP2 http://download.novell.com/index.jsp?search=Search&keywords=7cd7dff5951cf6310603096b81b16922 http://download.novell.com/index.jsp?search=Search&keywords=39ddcb62480cca4cc1867664cac5707c ORIGINAL ADVISORY: SUSE-SA:2008:050: http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00005.html OTHER REFERENCES: SA31984: http://secunia.com/advisories/31984/ SA32007: http://secunia.com/advisories/32007/ SA32010: http://secunia.com/advisories/32010/ SA32144: http://secunia.com/advisories/32144/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------