[SECURITY] Fedora 8 Update: seamonkey-1.1.14-1.fc8
updates at fedoraproject.org
updates at fedoraproject.org
Sun Dec 21 08:25:27 UTC 2008
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-11534
2008-12-21 00:43:47
--------------------------------------------------------------------------------
Name : seamonkey
Product : Fedora 8
Version : 1.1.14
Release : 1.fc8
URL : http://www.mozilla.org/projects/seamonkey/
Summary : Web browser, e-mail, news, IRC client, HTML editor
Description :
SeaMonkey is an all-in-one Internet application suite. It includes
a browser, mail/news client, IRC client, JavaScript debugger, and
a tool to inspect the DOM for web pages. It is derived from the
application formerly known as Mozilla Application Suite.
--------------------------------------------------------------------------------
Update Information:
Update to new upstream release 1.1.14 fixing multiple security issues:
http://www.mozilla.org/security/known-
vulnerabilities/seamonkey11.html#seamonkey1.1.14
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 17 2008 Kai Engert <kengert at redhat.com> - 1.1.14-1
- Update to 1.1.14
* Thu Nov 13 2008 Christopher Aillon <caillon at redhat.com> - 1.1.13-1
- Update to 1.1.13
* Thu Sep 25 2008 Christopher Aillon <caillon at redhat.com> - 1.1.12-1
- Update to 1.1.12
* Tue Jul 15 2008 Christopher Aillon <caillon at redhat.com> - 1.1.11-1
- Update to 1.1.11
* Tue Jul 8 2008 Christopher Aillon <caillon at redhat.com> - 1.1.10-1
- Update to 1.1.10
- Use bullet characters to match GTK+
* Thu Apr 17 2008 Kai Engert <kengert at redhat.com> - 1.1.9-2
- add several upstream patches, not yet released:
425576 (crash), 323508, 378132, 390295, 421622
* Fri Mar 28 2008 Kai Engert <kengert at redhat.com> - 1.1.9-1
- SeaMonkey 1.1.9
* Fri Feb 8 2008 Kai Engert <kengert at redhat.com> - 1.1.8-1
- SeaMonkey 1.1.8
* Sun Dec 2 2007 Kai Engert <kengert at redhat.com> - 1.1.7-1
- SeaMonkey 1.1.7
* Mon Nov 5 2007 Kai Engert <kengert at redhat.com> - 1.1.6-1
- SeaMonkey 1.1.6
* Fri Oct 19 2007 Kai Engert <kengert at redhat.com> - 1.1.5-2
- SeaMonkey 1.1.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #476285 - CVE-2008-5511 Firefox XSS via XBL bindings to unloaded document
https://bugzilla.redhat.com/show_bug.cgi?id=476285
[ 2 ] Bug #476287 - CVE-2008-5512 Firefox JavaScript privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=476287
[ 3 ] Bug #476283 - CVE-2008-5510 Firefox null characters ignored by CSS parser
https://bugzilla.redhat.com/show_bug.cgi?id=476283
[ 4 ] Bug #476281 - CVE-2008-5508 Firefox errors parsing URLs with control characters
https://bugzilla.redhat.com/show_bug.cgi?id=476281
[ 5 ] Bug #476280 - CVE-2008-5507 Firefox Cross-domain data theft via script redirect error message
https://bugzilla.redhat.com/show_bug.cgi?id=476280
[ 6 ] Bug #476278 - CVE-2008-5506 Firefox XMLHttpRequest 302 response disclosure
https://bugzilla.redhat.com/show_bug.cgi?id=476278
[ 7 ] Bug #476272 - CVE-2008-5503 Firefox 2 Information stealing via loadBindingDocument
https://bugzilla.redhat.com/show_bug.cgi?id=476272
[ 8 ] Bug #476266 - CVE-2008-5500 Layout engine crashes - Firefox 2 and 3
https://bugzilla.redhat.com/show_bug.cgi?id=476266
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update seamonkey' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list