New Netscape packages available
| Advisory: | RHSA-2000:109-05 |
|---|---|
| Type: | Security Advisory |
| Severity: | N/A |
| Issued on: | 2000-11-27 |
| Last updated on: | 2000-11-27 |
| Affected Products: | Red Hat Linux 6.2 Red Hat Linux 7.0 |
| CVEs (cve.mitre.org): |
CVE-2000-1187 |
Details
New Netscape packages are available that fix a buffer overflow
in parsing HTML.
It is recommended that all Netscape users update to the fixed packages.
2000-11-27: Added packages for Red Hat Linux 7 for Alpha
A buffer overflow exists in Netscape's HTML parsing code. By
using specially designed code, a remote website could cause
arbitrary code to be run on the local machine.
Solution
For each RPM for your particular architecture, run:
rpm -Fvh [filename]
where filename is the name of the RPM.
rpm -Fvh [filename]
where filename is the name of the RPM.
Updated packages
| Red Hat Linux 6.2 | |
| Alpha: | |
| {filename} | MD5: acbb0bcbca33eb41e396a9c7013e2d3d |
| IA-32: | |
| netscape-navigator-4.76-0.6.2.i386.rpm File outdated by: RHSA-2001:046 |
MD5: 670b08cbad1097f4ca923071c202b5dd |
| Red Hat Linux 7.0 | |
| Alpha: | |
| {filename} | MD5: 1f27bf46ccf8c7d0bfa7106240cc8174 |
| IA-32: | |
| {filename} | MD5: 3bb98e22f094236211955579c7ce49ad |
Bugs fixed (see bugzilla for more information)
20462 - Netscape 4.75 buffer overflow
References
https://www.redhat.com/security/data/cve/CVE-2000-1187.html
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A66.netscape.asc
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00%3A66.netscape.asc
Keywords
overflow
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package
The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/
