PDA

Bekijk Volledige Versie : FLEA-2008-0008-1 firefox


Foresight Linux Essential Announcement Service
08/05/08, 23:05
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Foresight Linux Essential Advisory: 2008-0008-1
Published: 2008-05-08

Rating: Moderate

Updated Versions:
firefox=/foresight.rpath.org@fl:1-devel//2/2.0.0.14-0.1-1
group-world=/foresight.rpath.org@fl:devel//2/2.0.1-0.7-2

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1380

Description:
A flaw has been found in previous versions of firefox's JavaScript garbage
collector. This issue is known to cause a Denial-of-Service via
maliciously-crafted web pages, and is suspected of allowing arbitrary code
execution on the target machine by an attacker.

Note: this update is only available on the Foresight Linux 2 branch.

- ---

Copyright 2008 Foresight Linux Project
This file is distributed under the terms of the MIT License.
A copy is available at http://www.foresightlinux.org/permanent/mit-license.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)

iQIcBAEBAgAGBQJII1YDAAoJENfwEn07iAtZbnoP+wbYMYIRps w43K5RjOmcO3KL
mcEMmv2V0b2CiItfD24bzu9hy/mtoSV/AtSKYsAvAtC7pgPk6iS/Zgbl58vvaP3G
drccYZhQ2TXfw/zOLJDmn7u4X4Glj9E7bGEW9BYlEQjZlJqBuXvJN2CkJYoxW1FA
lI82rvuSQ26o4y5beOm9zbo5KpiRlQnKFIuhPQQSbVrPQpF9nW b0/hE0GZCPEl79
tqElCS8bOC1oOijIilXHl5SF7c81/EvGhpr4WdgrrXuYsPd1fo/uDNqqZgbYf+Ow
gZ0p1qGEKmJ451YOrITMEVDntbwlB4p5D+fjjLgOCjW6lwTcwn fzsspBN0Yxcl19
Lduog7rWBl5nUiZJ50UQF0R6zPuN***ufkqeQX2mgYrg/75m4e5SQZ17gIoiI2hq
0xY0s6mE1CXhUocNBJ/cJLtdolePpbXPg2s1MyTWjvRHdOm3Z/fHmH5vtwh2kW+k
npUXQynGZggQe81Ck49gVrndjTejV4EpIgjWFa+Zvpjxy18A9o X9DDJGD1JMHk8L
7sj35uFZIm1gbAoNYF8vtzcR1FwVKPbRhN6d71MFBhAQMftBKN b6yNzb5t9jketp
tWQ2tAWGBZDtLXW9HIjFwUVcMaY/5H/us1NF7QBHtMh6k/JdGNV3D+y9xKkEcYwy
jBBOUHMe7CbyklLje4St
=YNzE
-----END PGP SIGNATURE-----