Skip to navigation

Security Advisory mozilla security update

Advisory: RHSA-2005:335-07
Type: Security Advisory
Severity: Critical
Issued on: 2005-03-23
Last updated on: 2005-03-23
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
CVEs (cve.mitre.org): CVE-2004-1380
CVE-2005-0141
CVE-2005-0142
CVE-2005-0143
CVE-2005-0144
CVE-2005-0146
CVE-2005-0149
CVE-2005-0399
CVE-2005-0401

Details

Updated mozilla packages that fix various bugs are now available.

This update has been rated as having critical security impact by the Red
Hat Security Response Team.

Mozilla is an open source Web browser, advanced email and newsgroup client,
IRC chat client, and HTML editor.

A buffer overflow bug was found in the way Mozilla processes GIF images. It
is possible for an attacker to create a specially crafted GIF image, which
when viewed by a victim will execute arbitrary code as the victim. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2005-0399 to this issue.

A bug was found in the way Mozilla responds to proxy auth requests. It is
possible for a malicious webserver to steal credentials from a victims
browser by issuing a 407 proxy authentication request. (CAN-2005-0147)

A bug was found in the way Mozilla displays dialog windows. It is possible
that a malicious web page which is being displayed in a background tab
could present the user with a dialog window appearing to come from the
active page. (CAN-2004-1380)

A bug was found in the way Mozilla Mail handles cookies when loading
content over HTTP regardless of the user's preference. It is possible that
a particular user could be tracked through the use of malicious mail
messages which load content over HTTP. (CAN-2005-0149)

A flaw was found in the way Mozilla displays international domain names. It
is possible for an attacker to display a valid URL, tricking the user into
thinking they are viewing a legitimate webpage when they are not.
(CAN-2005-0233)

A bug was found in the way Mozilla handles pop-up windows. It is possible
for a malicious website to control the content in an unrelated site's
pop-up window. (CAN-2004-1156)

A bug was found in the way Mozilla saves temporary files. Temporary files
are saved with world readable permissions, which could allow a local
malicious user to view potentially sensitive data. (CAN-2005-0142)

A bug was found in the way Mozilla handles synthetic middle click events.
It is possible for a malicious web page to steal the contents of a victims
clipboard. (CAN-2005-0146)

A bug was found in the way Mozilla processes XUL content. If a malicious
web page can trick a user into dragging an object, it is possible to load
malicious XUL content. (CAN-2005-0401)

A bug was found in the way Mozilla loads links in a new tab which are
middle clicked. A malicious web page could read local files or modify
privileged chrom settings. (CAN-2005-0141)

A bug was found in the way Mozilla displays the secure site icon. A
malicious web page can use a view-source URL targetted at a secure page,
while loading an insecure page, yet the secure site icon shows the previous
secure state. (CAN-2005-0144)

A bug was found in the way Mozilla displays the secure site icon. A
malicious web page can display the secure site icon by loading a binary
file from a secured site. (CAN-2005-0143)

A bug was found in the way Mozilla displays the download dialog window. A
malicious site can obfuscate the content displayed in the source field,
tricking a user into thinking they are downloading content from a trusted
source. (CAN-2005-0585)

Users of Mozilla are advised to upgrade to this updated package which
contains Mozilla version 1.7.6 to correct these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

Updated packages

Red Hat Desktop (v. 4)

IA-32:
devhelp-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: c4a062574f5620e321f81c47b6c78913
devhelp-devel-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: 7de6b81d78f3dba752a3c06d664777b8
evolution-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: 5e224cefdc65509b24fd29728caecc6b
evolution-devel-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: b02187784c02324afd1723c24f2d17ab
mozilla-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: a7838d2c5ad3eb580b4a2157e2d0aac5
mozilla-chat-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: b7dd0f25824fd1a9e0cf160553e75cec
mozilla-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: c88d27f8741cc22d794fa76ca001bcf2
mozilla-dom-inspector-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ef0444924c443bf1ef63efb291b15017
mozilla-js-debugger-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3c523a0ae96a601b0c3014a8b3cdec3d
mozilla-mail-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa4ee2f37944777f5c6f2128bfe4051f
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 2319f305324b19e2a343e946b0cb6909
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3fc1fdb6ceed5740a428047652faee3c
 
x86_64:
devhelp-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 5a7a6b72629d066a3830f59fb04593a2
devhelp-devel-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 895f1fd3c661b98e803a923884c2effc
evolution-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 28f97d232c0bf557426da1a8bbcc9be4
evolution-devel-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 3f54339b8b1a8837af14fa3937e67c09
mozilla-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 01309838e0abdfa4b89b649fa945e80b
mozilla-chat-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 00782ab9ca7504c15deb016246fc7581
mozilla-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: fa881165f821dc8b2f613cc10c48b81b
mozilla-dom-inspector-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: d17299423d61ccd0dd7ccb8c771677de
mozilla-js-debugger-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 58dd6924cc0596a5a6380518b660f5e7
mozilla-mail-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 51bc9b4fb28fe0e076137d7f31360eee
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: e897cf784cb23d147d6fdb0acb33d309
mozilla-nspr-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa28118dc28d21f47f2d61f8601595e7
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 341cafa4e39a9e0cb2919e2a1800fed5
mozilla-nss-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 19166638b89d32e156c333bed457888a
 
Red Hat Enterprise Linux AS (v. 4)

IA-32:
devhelp-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: c4a062574f5620e321f81c47b6c78913
devhelp-devel-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: 7de6b81d78f3dba752a3c06d664777b8
evolution-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: 5e224cefdc65509b24fd29728caecc6b
evolution-devel-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: b02187784c02324afd1723c24f2d17ab
mozilla-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: a7838d2c5ad3eb580b4a2157e2d0aac5
mozilla-chat-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: b7dd0f25824fd1a9e0cf160553e75cec
mozilla-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: c88d27f8741cc22d794fa76ca001bcf2
mozilla-dom-inspector-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ef0444924c443bf1ef63efb291b15017
mozilla-js-debugger-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3c523a0ae96a601b0c3014a8b3cdec3d
mozilla-mail-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa4ee2f37944777f5c6f2128bfe4051f
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 2319f305324b19e2a343e946b0cb6909
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3fc1fdb6ceed5740a428047652faee3c
 
IA-64:
evolution-2.0.2-14.ia64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 36b554c9d5d4f2520c885e2c8b05786a
evolution-devel-2.0.2-14.ia64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 2edbcadc3c88a51ad077bae90d9b116f
mozilla-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: bb6ffe8c693c6009597f2cffdbdfa115
mozilla-chat-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 034d4270363faaf097bca06360c25e5b
mozilla-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: f5e5865fd0bd8c22ccde7316815deef4
mozilla-dom-inspector-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 6614e0cffaa568c1afb300a3c95d82cb
mozilla-js-debugger-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 128a218e1765ef3b93f9bc76a808768f
mozilla-mail-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: d3aec46e412923de975ca9444125b568
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 4b552fed5eb33993350562b7e2d1963b
mozilla-nspr-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: cdca5118d08f05bb29a26ad854d13c77
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 630b9e378acc232bf9c0001f80ac0918
mozilla-nss-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 441e53acf432bbd125f71b6da1830ed7
 
PPC:
devhelp-0.9.2-2.4.3.ppc.rpm
File outdated by:  RHSA-2008:0882
    MD5: b080555e3af4b61bbd4687093b1cc94c
devhelp-devel-0.9.2-2.4.3.ppc.rpm
File outdated by:  RHSA-2008:0882
    MD5: 9e2f3f5f8ce57636f797ebc5c1de5406
evolution-2.0.2-14.ppc.rpm
File outdated by:  RHSA-2009:0355
    MD5: f743d2ff927f9304b6fa8ebf7f4670ac
evolution-devel-2.0.2-14.ppc.rpm
File outdated by:  RHSA-2009:0355
    MD5: 5c652488e5e4fd37d6542d2da9b64d35
mozilla-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: ca8a8ad82aca60da1a95e1f54b08899b
mozilla-chat-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: 2eec8a5422770fe7f35fe89d598571a2
mozilla-devel-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: 5efaf95c9cd4ac44ebde3c6405b293cb
mozilla-dom-inspector-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: fb39503b07ebf91540be47f4efa8949d
mozilla-js-debugger-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: 6e42d70993bde8d68019ec87d7be6049
mozilla-mail-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: b80b956d16eccaef17a4a351e9c44512
mozilla-nspr-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7f0d47ec94e5c85beaa96944e89f5fe8
mozilla-nspr-devel-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: d71529511834bdbdd606ee0fa4455543
mozilla-nss-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: f4e2a91859a1808c0ea2731c6d776654
mozilla-nss-devel-1.7.6-1.4.1.ppc.rpm
File outdated by:  RHSA-2006:0329
    MD5: c9affd85ff05952f9351314417ba68ab
 
s390:
evolution-2.0.2-14.s390.rpm
File outdated by:  RHSA-2009:0355
    MD5: be028cead30042d2d0a6ccfb3b1acd60
evolution-devel-2.0.2-14.s390.rpm
File outdated by:  RHSA-2009:0355
    MD5: f753f3408222e3c3505b51551bbabf15
mozilla-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: 6a2768f0e8dfadb73f91e725da238fa4
mozilla-chat-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: b816dbdda317776c96119267fbf72fbf
mozilla-devel-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: 6aa47533e291b1a11f5d2df9c5d6e3fc
mozilla-dom-inspector-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: 0589218bfb8df65d70fc84e5f82ae094
mozilla-js-debugger-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: 156b9cb6a790554cdede32f4e95a1f2a
mozilla-mail-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: 0808078b09f3066189b504b594f4c9a7
mozilla-nspr-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: b6a56eedf837d24b952fa5398f43abc5
mozilla-nspr-devel-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: 8f45563bfe7df84230204f23a92e2c30
mozilla-nss-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: ee14089af4fac8e42c1265dfce8a0d16
mozilla-nss-devel-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: 0b13dd9da58f22a3e54ec99f7b7f165f
 
s390x:
evolution-2.0.2-14.s390x.rpm
File outdated by:  RHSA-2009:0355
    MD5: ecca54c1461b85910609fc149d32b7f5
evolution-devel-2.0.2-14.s390x.rpm
File outdated by:  RHSA-2009:0355
    MD5: d922cf9a4f01be35ab40da5e1a1bacbd
mozilla-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: bab0d846cb27f006b26f9539fb23858f
mozilla-chat-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 62045b915cf20d7df0f189ac71a714c7
mozilla-devel-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 4a828b4ce571b106c7431782df7b7301
mozilla-dom-inspector-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 23c2b0a864a2afa8bb833bd58e901cef
mozilla-js-debugger-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 380384518578ab1aab19d52d55718c72
mozilla-mail-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7e82eab7a3aa4fa93c3885af7d918de8
mozilla-nspr-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: b6a56eedf837d24b952fa5398f43abc5
mozilla-nspr-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: fe60363934e4aeeb063a5e74e133b3e6
mozilla-nspr-devel-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 527e7c92da0bcfe40d493a04aa4cc6a6
mozilla-nss-1.7.6-1.4.1.s390.rpm
File outdated by:  RHSA-2006:0329
    MD5: ee14089af4fac8e42c1265dfce8a0d16
mozilla-nss-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 19bd01a9c77355bbd3868364faa53e3f
mozilla-nss-devel-1.7.6-1.4.1.s390x.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7d73d9a7d0de4a4df5a1734a47b8a1b1
 
x86_64:
devhelp-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 5a7a6b72629d066a3830f59fb04593a2
devhelp-devel-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 895f1fd3c661b98e803a923884c2effc
evolution-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 28f97d232c0bf557426da1a8bbcc9be4
evolution-devel-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 3f54339b8b1a8837af14fa3937e67c09
mozilla-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 01309838e0abdfa4b89b649fa945e80b
mozilla-chat-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 00782ab9ca7504c15deb016246fc7581
mozilla-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: fa881165f821dc8b2f613cc10c48b81b
mozilla-dom-inspector-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: d17299423d61ccd0dd7ccb8c771677de
mozilla-js-debugger-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 58dd6924cc0596a5a6380518b660f5e7
mozilla-mail-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 51bc9b4fb28fe0e076137d7f31360eee
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: e897cf784cb23d147d6fdb0acb33d309
mozilla-nspr-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa28118dc28d21f47f2d61f8601595e7
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 341cafa4e39a9e0cb2919e2a1800fed5
mozilla-nss-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 19166638b89d32e156c333bed457888a
 
Red Hat Enterprise Linux ES (v. 4)

IA-32:
devhelp-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: c4a062574f5620e321f81c47b6c78913
devhelp-devel-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: 7de6b81d78f3dba752a3c06d664777b8
evolution-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: 5e224cefdc65509b24fd29728caecc6b
evolution-devel-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: b02187784c02324afd1723c24f2d17ab
mozilla-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: a7838d2c5ad3eb580b4a2157e2d0aac5
mozilla-chat-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: b7dd0f25824fd1a9e0cf160553e75cec
mozilla-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: c88d27f8741cc22d794fa76ca001bcf2
mozilla-dom-inspector-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ef0444924c443bf1ef63efb291b15017
mozilla-js-debugger-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3c523a0ae96a601b0c3014a8b3cdec3d
mozilla-mail-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa4ee2f37944777f5c6f2128bfe4051f
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 2319f305324b19e2a343e946b0cb6909
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3fc1fdb6ceed5740a428047652faee3c
 
IA-64:
evolution-2.0.2-14.ia64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 36b554c9d5d4f2520c885e2c8b05786a
evolution-devel-2.0.2-14.ia64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 2edbcadc3c88a51ad077bae90d9b116f
mozilla-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: bb6ffe8c693c6009597f2cffdbdfa115
mozilla-chat-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 034d4270363faaf097bca06360c25e5b
mozilla-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: f5e5865fd0bd8c22ccde7316815deef4
mozilla-dom-inspector-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 6614e0cffaa568c1afb300a3c95d82cb
mozilla-js-debugger-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 128a218e1765ef3b93f9bc76a808768f
mozilla-mail-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: d3aec46e412923de975ca9444125b568
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 4b552fed5eb33993350562b7e2d1963b
mozilla-nspr-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: cdca5118d08f05bb29a26ad854d13c77
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 630b9e378acc232bf9c0001f80ac0918
mozilla-nss-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 441e53acf432bbd125f71b6da1830ed7
 
x86_64:
devhelp-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 5a7a6b72629d066a3830f59fb04593a2
devhelp-devel-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 895f1fd3c661b98e803a923884c2effc
evolution-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 28f97d232c0bf557426da1a8bbcc9be4
evolution-devel-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 3f54339b8b1a8837af14fa3937e67c09
mozilla-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 01309838e0abdfa4b89b649fa945e80b
mozilla-chat-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 00782ab9ca7504c15deb016246fc7581
mozilla-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: fa881165f821dc8b2f613cc10c48b81b
mozilla-dom-inspector-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: d17299423d61ccd0dd7ccb8c771677de
mozilla-js-debugger-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 58dd6924cc0596a5a6380518b660f5e7
mozilla-mail-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 51bc9b4fb28fe0e076137d7f31360eee
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: e897cf784cb23d147d6fdb0acb33d309
mozilla-nspr-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa28118dc28d21f47f2d61f8601595e7
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 341cafa4e39a9e0cb2919e2a1800fed5
mozilla-nss-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 19166638b89d32e156c333bed457888a
 
Red Hat Enterprise Linux WS (v. 4)

IA-32:
devhelp-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: c4a062574f5620e321f81c47b6c78913
devhelp-devel-0.9.2-2.4.3.i386.rpm
File outdated by:  RHSA-2008:0882
    MD5: 7de6b81d78f3dba752a3c06d664777b8
evolution-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: 5e224cefdc65509b24fd29728caecc6b
evolution-devel-2.0.2-14.i386.rpm
File outdated by:  RHSA-2009:0355
    MD5: b02187784c02324afd1723c24f2d17ab
mozilla-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: a7838d2c5ad3eb580b4a2157e2d0aac5
mozilla-chat-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: b7dd0f25824fd1a9e0cf160553e75cec
mozilla-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: c88d27f8741cc22d794fa76ca001bcf2
mozilla-dom-inspector-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ef0444924c443bf1ef63efb291b15017
mozilla-js-debugger-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3c523a0ae96a601b0c3014a8b3cdec3d
mozilla-mail-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa4ee2f37944777f5c6f2128bfe4051f
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 2319f305324b19e2a343e946b0cb6909
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-devel-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 3fc1fdb6ceed5740a428047652faee3c
 
IA-64:
evolution-2.0.2-14.ia64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 36b554c9d5d4f2520c885e2c8b05786a
evolution-devel-2.0.2-14.ia64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 2edbcadc3c88a51ad077bae90d9b116f
mozilla-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: bb6ffe8c693c6009597f2cffdbdfa115
mozilla-chat-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 034d4270363faaf097bca06360c25e5b
mozilla-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: f5e5865fd0bd8c22ccde7316815deef4
mozilla-dom-inspector-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 6614e0cffaa568c1afb300a3c95d82cb
mozilla-js-debugger-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 128a218e1765ef3b93f9bc76a808768f
mozilla-mail-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: d3aec46e412923de975ca9444125b568
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 4b552fed5eb33993350562b7e2d1963b
mozilla-nspr-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: cdca5118d08f05bb29a26ad854d13c77
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 630b9e378acc232bf9c0001f80ac0918
mozilla-nss-devel-1.7.6-1.4.1.ia64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 441e53acf432bbd125f71b6da1830ed7
 
x86_64:
devhelp-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 5a7a6b72629d066a3830f59fb04593a2
devhelp-devel-0.9.2-2.4.3.x86_64.rpm
File outdated by:  RHSA-2008:0882
    MD5: 895f1fd3c661b98e803a923884c2effc
evolution-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 28f97d232c0bf557426da1a8bbcc9be4
evolution-devel-2.0.2-14.x86_64.rpm
File outdated by:  RHSA-2009:0355
    MD5: 3f54339b8b1a8837af14fa3937e67c09
mozilla-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 01309838e0abdfa4b89b649fa945e80b
mozilla-chat-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 00782ab9ca7504c15deb016246fc7581
mozilla-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: fa881165f821dc8b2f613cc10c48b81b
mozilla-dom-inspector-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: d17299423d61ccd0dd7ccb8c771677de
mozilla-js-debugger-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 58dd6924cc0596a5a6380518b660f5e7
mozilla-mail-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 51bc9b4fb28fe0e076137d7f31360eee
mozilla-nspr-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: 7eea7a8e4316fe594d23022962b3aa36
mozilla-nspr-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: e897cf784cb23d147d6fdb0acb33d309
mozilla-nspr-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: aa28118dc28d21f47f2d61f8601595e7
mozilla-nss-1.7.6-1.4.1.i386.rpm
File outdated by:  RHSA-2006:0329
    MD5: ab3c087c54396503607d4f5cadb49e12
mozilla-nss-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 341cafa4e39a9e0cb2919e2a1800fed5
mozilla-nss-devel-1.7.6-1.4.1.x86_64.rpm
File outdated by:  RHSA-2006:0329
    MD5: 19166638b89d32e156c333bed457888a
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

142508 - CAN-2004-1156 Frame injection vulnerability.
144228 - CAN-2005-0585 download dialog URL spoofing
146188 - CAN-2005-0141 multiple mozilla issues CAN-2004-1316 CAN-2005-0142 CAN-2005-0143 CAN-2005-0144 CAN-2004-1380 CAN-2004-1381 CAN-2005-0146 CAN-2005-0147 CAN-2005-0149
147397 - homograph spoofing
150866 - CAN-2005-0399 mozilla GIF buffer overflow
151730 - CAN-2005-0401 Drag and drop loading of privileged XUL


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/