Secunia Security Advisory - Gentoo has issued an update for Mozilla Products. This fixes some vulnerabilities, which can be exploited by malicious people to disclose potentially sensitive information, conduct spoofing and cross-site scripting attacks, and potentially compromise a user's system.
aabddcf946320f26da2e11809260e4cae05a4ec91709116d99962803bd81092b
----------------------------------------------------------------------
BETA test the new Secunia Personal Software Inspector!
The Secunia PSI detects installed software on your computer and
categorises it as either Insecure, End-of-Life, or Up-To-Date.
Effectively enabling you to focus your attention on software
installations where more secure versions are available from the
vendors.
Download the free PSI BETA from the Secunia website:
https://psi.secunia.com/
----------------------------------------------------------------------
TITLE:
Gentoo update for Mozilla Products
SECUNIA ADVISORY ID:
SA26460
VERIFY ADVISORY:
https://secunia.com/advisories/26460/
CRITICAL:
Highly critical
IMPACT:
Security Bypass, Spoofing, Exposure of sensitive information, DoS,
System access
WHERE:
>From remote
OPERATING SYSTEM:
Gentoo Linux 1.x
https://secunia.com/product/339/
DESCRIPTION:
Gentoo has issued an update for Mozilla Products. This fixes some
vulnerabilities, which can be exploited by malicious people to
disclose potentially sensitive information, conduct spoofing and
cross-site scripting attacks, and potentially compromise a user's
system.
For more information:
SA25984
SA26095
SA26288
SOLUTION:
Update to the latest versions:
"www-client/mozilla-firefox-2.0.0.6" or later
"www-client/mozilla-firefox-bin-2.0.0.6" or later
"mail-client/mozilla-thunderbird-2.0.0.6" or later
"mail-client/mozilla-thunderbird-bin-2.0.0.6" or later
"www-client/seamonkey-1.1.4" or later
"www-client/seamonkey-bin-1.1.4" or later
"net-libs/xulrunner-1.8.1.6" or later
ORIGINAL ADVISORY:
https://www.gentoo.org/security/en/glsa/glsa-200708-09.xml
OTHER REFERENCES:
SA25984:
https://secunia.com/advisories/25984/
SA26095:
https://secunia.com/advisories/26095/
SA26288:
https://secunia.com/advisories/26288/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
https://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
https://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------