---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secunia_vacancies/ ---------------------------------------------------------------------- TITLE: Slackware update for Mozilla SECUNIA ADVISORY ID: SA14714 VERIFY ADVISORY: http://secunia.com/advisories/14714/ CRITICAL: Highly critical IMPACT: System access, Exposure of sensitive information, Exposure of system information, Spoofing, Cross Site Scripting, Security Bypass WHERE: >From remote OPERATING SYSTEM: Slackware Linux 10.0 http://secunia.com/product/4368/ Slackware Linux 9.1 http://secunia.com/product/2265/ DESCRIPTION: Slackware has issued an update for mozilla. This fixes some vulnerabilities, which can be exploited to bypass certain security restrictions, conduct spoofing and script insertion attacks, disclose various information, or compromise a user's system. For more information: SA14684 SA14163 SA14017 SA13599 SA13129 SA12956 SA12712 SOLUTION: Apply updated packages: Slackware 9.1: ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/gaim-1.2.0-i486-1.tgz ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/mozilla-1.4.4-i486-1.tgz ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/mozilla-plugins-1.4.4-noarch-1.tgz Slackware 10.0: ftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/gaim-1.2.0-i486-1.tgz ftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/mozilla-1.7.6-i486-1.tgz ftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/mozilla-plugins-1.7.6-noarch-1.tgz ORIGINAL ADVISORY: http://slackware.com/security/viewer.php?l=slackware-security&y=2005&m=slackware-security.000123 OTHER REFERENCES: SA14684: http://secunia.com/advisories/14684/ SA14163: http://secunia.com/advisories/14163/ SA14017: http://secunia.com/advisories/14017/ SA13599: http://secunia.com/advisories/13599/ SA13129: http://secunia.com/advisories/13129/ SA12956: http://secunia.com/advisories/12956/ SA12712: http://secunia.com/advisories/12712/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------