Security Advisory Critical: firefox security update

Advisory: RHSA-2008:0597-9
Type: Security Advisory
Severity: Critical
Issued on: 2008-07-16
Last updated on: 2008-07-16
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
OVAL: com.redhat.rhsa-20080597.xml
CVEs (cve.mitre.org): CVE-2008-2785
CVE-2008-2933
CVE-2008-3198

Details

Updated firefox packages that fix various security issues are now available
for Red Hat Enterprise Linux 5.

This update has been rated as having critical security impact by the Red
Hat Security Response Team.

[Updated 16th July 2008]
The nspluginwrapper package has been added to this advisory to satisfy a
missing package dependency issue.

Mozilla Firefox is an open source Web browser.

An integer overflow flaw was found in the way Firefox displayed certain web
content. A malicious web site could cause Firefox to crash, or execute
arbitrary code with the permissions of the user running Firefox.
(CVE-2008-2785)

A flaw was found in the way Firefox handled certain command line URLs. If
another application passed Firefox a malformed URL, it could result in
Firefox executing local malicious content with chrome privileges.
(CVE-2008-2933)

All firefox users should upgrade to these updated packages, which contain
Firefox 3.0.1 that corrects these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

RHEL Desktop Workstation (v. 5 client)

IA-32:
devhelp-devel-0.12-18.el5.i386.rpm     8341895c5f4b5d835469523b1d022190
xulrunner-devel-1.9.0.1-1.el5.i386.rpm     32339ab093ae3cc9607dfd71ba7f5676
xulrunner-devel-unstable-1.9.0.1-1.el5.i386.rpm     1e7acc772b3679840d1ff65a9df95774
 
x86_64:
devhelp-devel-0.12-18.el5.i386.rpm     8341895c5f4b5d835469523b1d022190
devhelp-devel-0.12-18.el5.x86_64.rpm     21309325743d1f6d5a879098b1328b67
xulrunner-devel-1.9.0.1-1.el5.i386.rpm     32339ab093ae3cc9607dfd71ba7f5676
xulrunner-devel-1.9.0.1-1.el5.x86_64.rpm     6b5a67b7a90414d9f50fbb20d78c7873
xulrunner-devel-unstable-1.9.0.1-1.el5.x86_64.rpm     ef0455b31e03c834a8dce7db165f0710
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
devhelp-0.12-18.el5.src.rpm     ad54d46b35225217b7dc8b2b270cf298
firefox-3.0.1-1.el5.src.rpm     e638106d85ae46aae2fda1439d0b0c01
nspluginwrapper-0.9.91.5-22.el5.src.rpm     7fceb1a268be45c1739ec30eb43ea008
xulrunner-1.9.0.1-1.el5.src.rpm     446b54673f516731144fe3430da79f4e
yelp-2.16.0-20.el5.src.rpm     311de224200117a7299b6de4df832039
 
IA-32:
devhelp-0.12-18.el5.i386.rpm     d448392de5a0cc6a60d268e56b172ad5
devhelp-devel-0.12-18.el5.i386.rpm     8341895c5f4b5d835469523b1d022190
firefox-3.0.1-1.el5.i386.rpm     af1cfcce7b6c06a8e65f39d6da50ac5e
nspluginwrapper-0.9.91.5-22.el5.i386.rpm     93520bf4b253e93a5cba84439b86790c
xulrunner-1.9.0.1-1.el5.i386.rpm     4cd72d7e25c3c590ee8f2f8fb47f4c15
xulrunner-devel-1.9.0.1-1.el5.i386.rpm     32339ab093ae3cc9607dfd71ba7f5676
xulrunner-devel-unstable-1.9.0.1-1.el5.i386.rpm     1e7acc772b3679840d1ff65a9df95774
yelp-2.16.0-20.el5.i386.rpm     2f24ee9d495bbc732b9c3332948441c4
 
IA-64:
devhelp-0.12-18.el5.ia64.rpm     d4a9607b1e0ae910b1c10e916bd0f2b7
devhelp-devel-0.12-18.el5.ia64.rpm     5ffde3a4ec383275b69815c3cdb35296
firefox-3.0.1-1.el5.ia64.rpm     6077115af78c1a91359d0becce5e82e6
xulrunner-1.9.0.1-1.el5.ia64.rpm     88de56a59e58cc5921e7b54e0baf48e8
xulrunner-devel-1.9.0.1-1.el5.ia64.rpm     49c4ce4bba952e836f30e366b0661d98
xulrunner-devel-unstable-1.9.0.1-1.el5.ia64.rpm     62238e2f86c284e0c2f04214c399f2d0
yelp-2.16.0-20.el5.ia64.rpm     8b2bb8cee8ae5ae5c2d14917c7bc592d
 
PPC:
devhelp-0.12-18.el5.ppc.rpm     827cf0f05f84685cdf60742f841e6970
devhelp-devel-0.12-18.el5.ppc.rpm     bb7e515cefe3777cc6fab378f860d059
firefox-3.0.1-1.el5.ppc.rpm     c3a1d1e01edcbaf388800040120b6b87
nspluginwrapper-0.9.91.5-22.el5.ppc.rpm     8f437b8f94d8ef0bac92285a6614daaa
xulrunner-1.9.0.1-1.el5.ppc.rpm     93854c387e6c32bcf88bf02d368f6f16
xulrunner-1.9.0.1-1.el5.ppc64.rpm     7015db661af393dc7b3d294179c67c2a
xulrunner-devel-1.9.0.1-1.el5.ppc.rpm     d1c53d79c3c17ae505301c24aed7c0ae
xulrunner-devel-1.9.0.1-1.el5.ppc64.rpm     b3f3e846d498054620e8e4a08629fba1
xulrunner-devel-unstable-1.9.0.1-1.el5.ppc.rpm     2fbbe84487b371e2df2aa0960a425643
yelp-2.16.0-20.el5.ppc.rpm     00bf8ad67175deb7e5f457fd2df3d63c
 
s390x:
devhelp-0.12-18.el5.s390.rpm     59ff6d16f9c034b27236414067f775b8
devhelp-0.12-18.el5.s390x.rpm     7ba0e4f036eef3330ece2bb852678bef
devhelp-devel-0.12-18.el5.s390.rpm     be55fc2443ac49f24c4cf2f3f3fa616f
devhelp-devel-0.12-18.el5.s390x.rpm     87fcd935e6f4cf1483c2f93f10395978
firefox-3.0.1-1.el5.s390.rpm     b94598a35b53f58e9d9a5ae0cca9e7da
firefox-3.0.1-1.el5.s390x.rpm     f3f3174257c3e075a5a5c51cd4cf1c1f
xulrunner-1.9.0.1-1.el5.s390.rpm     1d683d3f1ae59c40758a985db016afc0
xulrunner-1.9.0.1-1.el5.s390x.rpm     8fd245d3386a855293b757d8320320c2
xulrunner-devel-1.9.0.1-1.el5.s390.rpm     5f70cb0b0c1ce7fb18b02539ab019524
xulrunner-devel-1.9.0.1-1.el5.s390x.rpm     ef3322b7626d38399a0040b5439d1545
xulrunner-devel-unstable-1.9.0.1-1.el5.s390x.rpm     557805c050cd05efdd75a1ab44b5ff8a
yelp-2.16.0-20.el5.s390x.rpm     c2e32a37879db5dee6e6b9057633c983
 
x86_64:
devhelp-0.12-18.el5.i386.rpm     d448392de5a0cc6a60d268e56b172ad5
devhelp-0.12-18.el5.x86_64.rpm     8f1147398826704a9f3464947175bced
devhelp-devel-0.12-18.el5.i386.rpm     8341895c5f4b5d835469523b1d022190
devhelp-devel-0.12-18.el5.x86_64.rpm     21309325743d1f6d5a879098b1328b67
firefox-3.0.1-1.el5.i386.rpm     af1cfcce7b6c06a8e65f39d6da50ac5e
firefox-3.0.1-1.el5.x86_64.rpm     10a4ff0eb54131bc8c405edc1711bbd2
nspluginwrapper-0.9.91.5-22.el5.i386.rpm     93520bf4b253e93a5cba84439b86790c
nspluginwrapper-0.9.91.5-22.el5.x86_64.rpm     781c3699898acd4afceee1a972743a5e
xulrunner-1.9.0.1-1.el5.i386.rpm     4cd72d7e25c3c590ee8f2f8fb47f4c15
xulrunner-1.9.0.1-1.el5.x86_64.rpm     1d5b788c566446052c6f72de87ade3f1
xulrunner-devel-1.9.0.1-1.el5.i386.rpm     32339ab093ae3cc9607dfd71ba7f5676
xulrunner-devel-1.9.0.1-1.el5.x86_64.rpm     6b5a67b7a90414d9f50fbb20d78c7873
xulrunner-devel-unstable-1.9.0.1-1.el5.x86_64.rpm     ef0455b31e03c834a8dce7db165f0710
yelp-2.16.0-20.el5.x86_64.rpm     0e9abd7bc1f152adfa168135a411fd34
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
devhelp-0.12-18.el5.src.rpm     ad54d46b35225217b7dc8b2b270cf298
firefox-3.0.1-1.el5.src.rpm     e638106d85ae46aae2fda1439d0b0c01
nspluginwrapper-0.9.91.5-22.el5.src.rpm     7fceb1a268be45c1739ec30eb43ea008
xulrunner-1.9.0.1-1.el5.src.rpm     446b54673f516731144fe3430da79f4e
yelp-2.16.0-20.el5.src.rpm     311de224200117a7299b6de4df832039
 
IA-32:
devhelp-0.12-18.el5.i386.rpm     d448392de5a0cc6a60d268e56b172ad5
firefox-3.0.1-1.el5.i386.rpm     af1cfcce7b6c06a8e65f39d6da50ac5e
nspluginwrapper-0.9.91.5-22.el5.i386.rpm     93520bf4b253e93a5cba84439b86790c
xulrunner-1.9.0.1-1.el5.i386.rpm     4cd72d7e25c3c590ee8f2f8fb47f4c15
yelp-2.16.0-20.el5.i386.rpm     2f24ee9d495bbc732b9c3332948441c4
 
x86_64:
devhelp-0.12-18.el5.i386.rpm     d448392de5a0cc6a60d268e56b172ad5
devhelp-0.12-18.el5.x86_64.rpm     8f1147398826704a9f3464947175bced
firefox-3.0.1-1.el5.i386.rpm     af1cfcce7b6c06a8e65f39d6da50ac5e
firefox-3.0.1-1.el5.x86_64.rpm     10a4ff0eb54131bc8c405edc1711bbd2
nspluginwrapper-0.9.91.5-22.el5.i386.rpm     93520bf4b253e93a5cba84439b86790c
nspluginwrapper-0.9.91.5-22.el5.x86_64.rpm     781c3699898acd4afceee1a972743a5e
xulrunner-1.9.0.1-1.el5.i386.rpm     4cd72d7e25c3c590ee8f2f8fb47f4c15
xulrunner-1.9.0.1-1.el5.x86_64.rpm     1d5b788c566446052c6f72de87ade3f1
yelp-2.16.0-20.el5.x86_64.rpm     0e9abd7bc1f152adfa168135a411fd34
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

452204 - CVE-2008-2785 mozilla: CSS reference counter overflow (ZDI-CAN-349)
454697 - CVE-2008-2933 Firefox command line URL launches multi-tabs


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/