Skip to navigation

Security Advisory Critical: firefox security update

Advisory: RHSA-2008:0569-16
Type: Security Advisory
Severity: Critical
Issued on: 2008-07-02
Last updated on: 2008-07-02
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux EUS (v. 5.2.z server)
CVEs (cve.mitre.org): CVE-2008-2798
CVE-2008-2799
CVE-2008-2800
CVE-2008-2801
CVE-2008-2802
CVE-2008-2803
CVE-2008-2805
CVE-2008-2807
CVE-2008-2808
CVE-2008-2809
CVE-2008-2810
CVE-2008-2811

Details

Updated firefox packages that fix several security issues are now available
for Red Hat Enterprise Linux 5.

This update has been rated as having critical security impact by the Red
Hat Security Response Team.

Mozilla Firefox is an open source Web browser.

Multiple flaws were found in the processing of malformed JavaScript
content. A web page containing such malicious content could cause Firefox
to crash or, potentially, execute arbitrary code as the user running
Firefox. (CVE-2008-2801, CVE-2008-2802, CVE-2008-2803)

Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code as the user running Firefox.
(CVE-2008-2798, CVE-2008-2799, CVE-2008-2811)

Several flaws were found in the way malformed web content was displayed. A
web page containing specially-crafted content could potentially trick a
Firefox user into surrendering sensitive information. (CVE-2008-2800)

Two local file disclosure flaws were found in Firefox. A web page
containing malicious content could cause Firefox to reveal the contents of
a local file to a remote attacker. (CVE-2008-2805, CVE-2008-2810)

A flaw was found in the way a malformed .properties file was processed by
Firefox. A malicious extension could read uninitialized memory, possibly
leaking sensitive data to the extension. (CVE-2008-2807)

A flaw was found in the way Firefox escaped a listing of local file names.
If a user could be tricked into listing a local directory containing
malicious file names, arbitrary JavaScript could be run with the
permissions of the user running Firefox. (CVE-2008-2808)

A flaw was found in the way Firefox displayed information about self-signed
certificates. It was possible for a self-signed certificate to contain
multiple alternate name entries, which were not all displayed to the user,
allowing them to mistakenly extend trust to an unknown site.
(CVE-2008-2809)

All Mozilla Firefox users should upgrade to these updated packages, which
contain backported patches that correct these issues.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
devhelp-0.12-17.el5.src.rpm
File outdated by:  RHSA-2013:0271
    MD5: 6888e76cc3e748f9dab0783797b83a5a
xulrunner-1.9-1.el5.src.rpm
File outdated by:  RHSA-2013:1476
    MD5: 1ee6a7e04b3330066d160121ebdcd42d
 
IA-32:
devhelp-devel-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7dd4d264a72adfb1dbe7321d9cb63774
xulrunner-devel-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 2b49472d154199139e2648426e075a3c
xulrunner-devel-unstable-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2010:0332
    MD5: 9d9a2adb7190ac977a0e5fbbd64fd735
 
x86_64:
devhelp-devel-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7dd4d264a72adfb1dbe7321d9cb63774
devhelp-devel-0.12-17.el5.x86_64.rpm
File outdated by:  RHSA-2013:0271
    MD5: 2e732a70e6aad6543e604f82b5c96efe
xulrunner-devel-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 2b49472d154199139e2648426e075a3c
xulrunner-devel-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2013:1476
    MD5: 087bcf0c7f9464afc63a2a4e08233ade
xulrunner-devel-unstable-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2010:0332
    MD5: 5bfedcd3b2583f698272d04450b61b57
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
devhelp-0.12-17.el5.src.rpm
File outdated by:  RHSA-2013:0271
    MD5: 6888e76cc3e748f9dab0783797b83a5a
firefox-3.0-2.el5.src.rpm
File outdated by:  RHSA-2008:1036
    MD5: 4926ee8169b9401377d93decc48d40a5
xulrunner-1.9-1.el5.src.rpm
File outdated by:  RHSA-2013:1476
    MD5: 1ee6a7e04b3330066d160121ebdcd42d
yelp-2.16.0-19.el5.src.rpm
File outdated by:  RHSA-2008:0978
    MD5: aea86e73cfe19de2df928938969be989
 
IA-32:
devhelp-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7b913dced5949c8b571419862e51d604
devhelp-devel-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7dd4d264a72adfb1dbe7321d9cb63774
firefox-3.0-2.el5.i386.rpm
File outdated by:  RHSA-2014:0310
    MD5: 090f5ba7300caf3600c6ae5fdf224a90
xulrunner-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 02d4ca107096941bfd5a50bfc7d3f694
xulrunner-devel-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 2b49472d154199139e2648426e075a3c
xulrunner-devel-unstable-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2010:0332
    MD5: 9d9a2adb7190ac977a0e5fbbd64fd735
yelp-2.16.0-19.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: e49a7d518538925da8d554f665a5121f
 
IA-64:
devhelp-0.12-17.el5.ia64.rpm
File outdated by:  RHSA-2013:0271
    MD5: d881413d02b967a80726057ab2c73877
devhelp-devel-0.12-17.el5.ia64.rpm
File outdated by:  RHSA-2013:0271
    MD5: 045c85cb482dc24d42827417e73ad488
firefox-3.0-2.el5.ia64.rpm
File outdated by:  RHSA-2014:0310
    MD5: 3be4fbe6a3c70a8cf7ed75e7117c4318
xulrunner-1.9-1.el5.ia64.rpm
File outdated by:  RHSA-2013:1476
    MD5: c0d3bec83345a986e2d99a7b9b86c3a7
xulrunner-devel-1.9-1.el5.ia64.rpm
File outdated by:  RHSA-2013:1476
    MD5: 99f205da981426c1dff066d26e793e02
xulrunner-devel-unstable-1.9-1.el5.ia64.rpm
File outdated by:  RHSA-2010:0332
    MD5: 59595c81b831b6cd8889a60f375bf671
yelp-2.16.0-19.el5.ia64.rpm
File outdated by:  RHSA-2013:0271
    MD5: dd7c6001e6bb8a8b4c86c037494dd5c0
 
PPC:
devhelp-0.12-17.el5.ppc.rpm
File outdated by:  RHSA-2013:0271
    MD5: 4e0eb5b4b8f7b1e2a48d0d9af592b086
devhelp-devel-0.12-17.el5.ppc.rpm
File outdated by:  RHSA-2013:0271
    MD5: eb35763a4f5067d4559d98baf05b91e2
firefox-3.0-2.el5.ppc.rpm
File outdated by:  RHSA-2014:0310
    MD5: 5116b2290c80db578dbe097d688a3cfa
xulrunner-1.9-1.el5.ppc.rpm
File outdated by:  RHSA-2013:1476
    MD5: 163ac71a3435bbb5f4397df485fd3cff
xulrunner-1.9-1.el5.ppc64.rpm
File outdated by:  RHSA-2013:1476
    MD5: 91821ab3072bcb6a8045aa127e4bdec7
xulrunner-devel-1.9-1.el5.ppc.rpm
File outdated by:  RHSA-2013:1476
    MD5: d56d4340de65a12ea826f50aa6144094
xulrunner-devel-1.9-1.el5.ppc64.rpm
File outdated by:  RHSA-2013:1476
    MD5: f3fe4321d7ed5107df4fb4acb03ba982
xulrunner-devel-unstable-1.9-1.el5.ppc.rpm
File outdated by:  RHSA-2010:0332
    MD5: f1ddfe022a2be7f19946121661311e56
yelp-2.16.0-19.el5.ppc.rpm
File outdated by:  RHSA-2013:0271
    MD5: c2afb47ad1aaea9954095c91b6c2fdf6
 
s390x:
devhelp-0.12-17.el5.s390.rpm
File outdated by:  RHSA-2013:0271
    MD5: 4622402a7b0f02650b52f2800f0ec713
devhelp-0.12-17.el5.s390x.rpm
File outdated by:  RHSA-2013:0271
    MD5: 0f0aaaed8de404615c34e07104a59c1b
devhelp-devel-0.12-17.el5.s390.rpm
File outdated by:  RHSA-2013:0271
    MD5: 14bd0fdf710a5eca0f9dddf2fac3c91f
devhelp-devel-0.12-17.el5.s390x.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7963ed0fd6bd9426dbd180163a082a90
firefox-3.0-2.el5.s390.rpm
File outdated by:  RHSA-2014:0310
    MD5: ec60f14c83d6ef155391167a9e94e986
firefox-3.0-2.el5.s390x.rpm
File outdated by:  RHSA-2014:0310
    MD5: d75555630cca0437fdb7ecc1ea5db223
xulrunner-1.9-1.el5.s390.rpm
File outdated by:  RHSA-2013:1476
    MD5: e0f4c3845b10dce6c67eb38c8f82346a
xulrunner-1.9-1.el5.s390x.rpm
File outdated by:  RHSA-2013:1476
    MD5: 3f58d04d206e57a45e3227552bfe6070
xulrunner-devel-1.9-1.el5.s390.rpm
File outdated by:  RHSA-2013:1476
    MD5: 015657d16feb936ed3821f571a570e98
xulrunner-devel-1.9-1.el5.s390x.rpm
File outdated by:  RHSA-2013:1476
    MD5: c3747d3eafb689b49d2b3fbd769b430d
xulrunner-devel-unstable-1.9-1.el5.s390x.rpm
File outdated by:  RHSA-2010:0332
    MD5: ec2b3619880b991810dacd8812b61633
yelp-2.16.0-19.el5.s390x.rpm
File outdated by:  RHSA-2013:0271
    MD5: 2d5d67917d1fe382c62e9b17558dccee
 
x86_64:
devhelp-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7b913dced5949c8b571419862e51d604
devhelp-0.12-17.el5.x86_64.rpm
File outdated by:  RHSA-2013:0271
    MD5: 6450a4323883aef7eec961ab66d75de4
devhelp-devel-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7dd4d264a72adfb1dbe7321d9cb63774
devhelp-devel-0.12-17.el5.x86_64.rpm
File outdated by:  RHSA-2013:0271
    MD5: 2e732a70e6aad6543e604f82b5c96efe
firefox-3.0-2.el5.i386.rpm
File outdated by:  RHSA-2014:0310
    MD5: 090f5ba7300caf3600c6ae5fdf224a90
firefox-3.0-2.el5.x86_64.rpm
File outdated by:  RHSA-2014:0310
    MD5: 393aadd522a788eba4a201039e7d0424
xulrunner-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 02d4ca107096941bfd5a50bfc7d3f694
xulrunner-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2013:1476
    MD5: 3a86d808b70f87cbc3628d672f032345
xulrunner-devel-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 2b49472d154199139e2648426e075a3c
xulrunner-devel-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2013:1476
    MD5: 087bcf0c7f9464afc63a2a4e08233ade
xulrunner-devel-unstable-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2010:0332
    MD5: 5bfedcd3b2583f698272d04450b61b57
yelp-2.16.0-19.el5.x86_64.rpm
File outdated by:  RHSA-2013:0271
    MD5: d6ec3786527f927bea96e5c7a3922404
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
devhelp-0.12-17.el5.src.rpm
File outdated by:  RHSA-2013:0271
    MD5: 6888e76cc3e748f9dab0783797b83a5a
firefox-3.0-2.el5.src.rpm
File outdated by:  RHSA-2008:1036
    MD5: 4926ee8169b9401377d93decc48d40a5
xulrunner-1.9-1.el5.src.rpm
File outdated by:  RHSA-2013:1476
    MD5: 1ee6a7e04b3330066d160121ebdcd42d
yelp-2.16.0-19.el5.src.rpm
File outdated by:  RHSA-2008:0978
    MD5: aea86e73cfe19de2df928938969be989
 
IA-32:
devhelp-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7b913dced5949c8b571419862e51d604
firefox-3.0-2.el5.i386.rpm
File outdated by:  RHSA-2014:0310
    MD5: 090f5ba7300caf3600c6ae5fdf224a90
xulrunner-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 02d4ca107096941bfd5a50bfc7d3f694
yelp-2.16.0-19.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: e49a7d518538925da8d554f665a5121f
 
x86_64:
devhelp-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2013:0271
    MD5: 7b913dced5949c8b571419862e51d604
devhelp-0.12-17.el5.x86_64.rpm
File outdated by:  RHSA-2013:0271
    MD5: 6450a4323883aef7eec961ab66d75de4
firefox-3.0-2.el5.i386.rpm
File outdated by:  RHSA-2014:0310
    MD5: 090f5ba7300caf3600c6ae5fdf224a90
firefox-3.0-2.el5.x86_64.rpm
File outdated by:  RHSA-2014:0310
    MD5: 393aadd522a788eba4a201039e7d0424
xulrunner-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2013:1476
    MD5: 02d4ca107096941bfd5a50bfc7d3f694
xulrunner-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2013:1476
    MD5: 3a86d808b70f87cbc3628d672f032345
yelp-2.16.0-19.el5.x86_64.rpm
File outdated by:  RHSA-2013:0271
    MD5: d6ec3786527f927bea96e5c7a3922404
 
Red Hat Enterprise Linux EUS (v. 5.2.z server)

SRPMS:
devhelp-0.12-17.el5.src.rpm
File outdated by:  RHSA-2013:0271
    MD5: 6888e76cc3e748f9dab0783797b83a5a
firefox-3.0-2.el5.src.rpm
File outdated by:  RHSA-2008:1036
    MD5: 4926ee8169b9401377d93decc48d40a5
xulrunner-1.9-1.el5.src.rpm
File outdated by:  RHSA-2013:1476
    MD5: 1ee6a7e04b3330066d160121ebdcd42d
yelp-2.16.0-19.el5.src.rpm
File outdated by:  RHSA-2008:0978
    MD5: aea86e73cfe19de2df928938969be989
 
IA-32:
devhelp-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2008:0978
    MD5: 7b913dced5949c8b571419862e51d604
devhelp-devel-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2008:0978
    MD5: 7dd4d264a72adfb1dbe7321d9cb63774
firefox-3.0-2.el5.i386.rpm
File outdated by:  RHSA-2008:1036
    MD5: 090f5ba7300caf3600c6ae5fdf224a90
xulrunner-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2008:1036
    MD5: 02d4ca107096941bfd5a50bfc7d3f694
xulrunner-devel-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2008:1036
    MD5: 2b49472d154199139e2648426e075a3c
xulrunner-devel-unstable-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2008:1036
    MD5: 9d9a2adb7190ac977a0e5fbbd64fd735
yelp-2.16.0-19.el5.i386.rpm
File outdated by:  RHSA-2008:0978
    MD5: e49a7d518538925da8d554f665a5121f
 
IA-64:
devhelp-0.12-17.el5.ia64.rpm
File outdated by:  RHSA-2008:0978
    MD5: d881413d02b967a80726057ab2c73877
devhelp-devel-0.12-17.el5.ia64.rpm
File outdated by:  RHSA-2008:0978
    MD5: 045c85cb482dc24d42827417e73ad488
firefox-3.0-2.el5.ia64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 3be4fbe6a3c70a8cf7ed75e7117c4318
xulrunner-1.9-1.el5.ia64.rpm
File outdated by:  RHSA-2008:1036
    MD5: c0d3bec83345a986e2d99a7b9b86c3a7
xulrunner-devel-1.9-1.el5.ia64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 99f205da981426c1dff066d26e793e02
xulrunner-devel-unstable-1.9-1.el5.ia64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 59595c81b831b6cd8889a60f375bf671
yelp-2.16.0-19.el5.ia64.rpm
File outdated by:  RHSA-2008:0978
    MD5: dd7c6001e6bb8a8b4c86c037494dd5c0
 
PPC:
devhelp-0.12-17.el5.ppc.rpm
File outdated by:  RHSA-2008:0978
    MD5: 4e0eb5b4b8f7b1e2a48d0d9af592b086
devhelp-devel-0.12-17.el5.ppc.rpm
File outdated by:  RHSA-2008:0978
    MD5: eb35763a4f5067d4559d98baf05b91e2
firefox-3.0-2.el5.ppc.rpm
File outdated by:  RHSA-2008:1036
    MD5: 5116b2290c80db578dbe097d688a3cfa
xulrunner-1.9-1.el5.ppc.rpm
File outdated by:  RHSA-2008:1036
    MD5: 163ac71a3435bbb5f4397df485fd3cff
xulrunner-1.9-1.el5.ppc64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 91821ab3072bcb6a8045aa127e4bdec7
xulrunner-devel-1.9-1.el5.ppc.rpm
File outdated by:  RHSA-2008:1036
    MD5: d56d4340de65a12ea826f50aa6144094
xulrunner-devel-1.9-1.el5.ppc64.rpm
File outdated by:  RHSA-2008:1036
    MD5: f3fe4321d7ed5107df4fb4acb03ba982
xulrunner-devel-unstable-1.9-1.el5.ppc.rpm
File outdated by:  RHSA-2008:1036
    MD5: f1ddfe022a2be7f19946121661311e56
yelp-2.16.0-19.el5.ppc.rpm
File outdated by:  RHSA-2008:0978
    MD5: c2afb47ad1aaea9954095c91b6c2fdf6
 
s390x:
devhelp-0.12-17.el5.s390.rpm
File outdated by:  RHSA-2008:0978
    MD5: 4622402a7b0f02650b52f2800f0ec713
devhelp-0.12-17.el5.s390x.rpm
File outdated by:  RHSA-2008:0978
    MD5: 0f0aaaed8de404615c34e07104a59c1b
devhelp-devel-0.12-17.el5.s390.rpm
File outdated by:  RHSA-2008:0978
    MD5: 14bd0fdf710a5eca0f9dddf2fac3c91f
devhelp-devel-0.12-17.el5.s390x.rpm
File outdated by:  RHSA-2008:0978
    MD5: 7963ed0fd6bd9426dbd180163a082a90
firefox-3.0-2.el5.s390.rpm
File outdated by:  RHSA-2008:1036
    MD5: ec60f14c83d6ef155391167a9e94e986
firefox-3.0-2.el5.s390x.rpm
File outdated by:  RHSA-2008:1036
    MD5: d75555630cca0437fdb7ecc1ea5db223
xulrunner-1.9-1.el5.s390.rpm
File outdated by:  RHSA-2008:1036
    MD5: e0f4c3845b10dce6c67eb38c8f82346a
xulrunner-1.9-1.el5.s390x.rpm
File outdated by:  RHSA-2008:1036
    MD5: 3f58d04d206e57a45e3227552bfe6070
xulrunner-devel-1.9-1.el5.s390.rpm
File outdated by:  RHSA-2008:1036
    MD5: 015657d16feb936ed3821f571a570e98
xulrunner-devel-1.9-1.el5.s390x.rpm
File outdated by:  RHSA-2008:1036
    MD5: c3747d3eafb689b49d2b3fbd769b430d
xulrunner-devel-unstable-1.9-1.el5.s390x.rpm
File outdated by:  RHSA-2008:1036
    MD5: ec2b3619880b991810dacd8812b61633
yelp-2.16.0-19.el5.s390x.rpm
File outdated by:  RHSA-2008:0978
    MD5: 2d5d67917d1fe382c62e9b17558dccee
 
x86_64:
devhelp-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2008:0978
    MD5: 7b913dced5949c8b571419862e51d604
devhelp-0.12-17.el5.x86_64.rpm
File outdated by:  RHSA-2008:0978
    MD5: 6450a4323883aef7eec961ab66d75de4
devhelp-devel-0.12-17.el5.i386.rpm
File outdated by:  RHSA-2008:0978
    MD5: 7dd4d264a72adfb1dbe7321d9cb63774
devhelp-devel-0.12-17.el5.x86_64.rpm
File outdated by:  RHSA-2008:0978
    MD5: 2e732a70e6aad6543e604f82b5c96efe
firefox-3.0-2.el5.i386.rpm
File outdated by:  RHSA-2008:1036
    MD5: 090f5ba7300caf3600c6ae5fdf224a90
firefox-3.0-2.el5.x86_64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 393aadd522a788eba4a201039e7d0424
xulrunner-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2008:1036
    MD5: 02d4ca107096941bfd5a50bfc7d3f694
xulrunner-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 3a86d808b70f87cbc3628d672f032345
xulrunner-devel-1.9-1.el5.i386.rpm
File outdated by:  RHSA-2008:1036
    MD5: 2b49472d154199139e2648426e075a3c
xulrunner-devel-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 087bcf0c7f9464afc63a2a4e08233ade
xulrunner-devel-unstable-1.9-1.el5.x86_64.rpm
File outdated by:  RHSA-2008:1036
    MD5: 5bfedcd3b2583f698272d04450b61b57
yelp-2.16.0-19.el5.x86_64.rpm
File outdated by:  RHSA-2008:0978
    MD5: d6ec3786527f927bea96e5c7a3922404
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

452597 - CVE-2008-2798 Firefox malformed web content flaws
452598 - CVE-2008-2799 Firefox javascript arbitrary code execution
452599 - CVE-2008-2800 Firefox XSS attacks
452600 - CVE-2008-2802 Firefox arbitrary JavaScript code execution
452602 - CVE-2008-2803 Firefox javascript arbitrary code execution
452604 - CVE-2008-2805 Firefox arbitrary file disclosure
452605 - CVE-2008-2801 Firefox arbitrary signed JAR code execution
452709 - CVE-2008-2807 Firefox .properties memory leak
452710 - CVE-2008-2808 Firefox file location escaping flaw
452711 - CVE-2008-2809 Firefox self signed certificate flaw
452712 - CVE-2008-2810 Firefox arbitrary file disclosure
453007 - CVE-2008-2811 Firefox block reflow flaw


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/