TITLE: Mandriva update for firefox SECUNIA ADVISORY ID: SA19794 VERIFY ADVISORY: http://secunia.com/advisories/19794/ CRITICAL: Highly critical IMPACT: Security Bypass, Cross Site Scripting, Spoofing, Exposure of sensitive information, DoS, System access WHERE: >From remote OPERATING SYSTEM: Mandriva Linux 2006 http://secunia.com/product/9020/ DESCRIPTION: Mandriva has issued an update for firefox. This fixes some vulnerabilities, which can be exploited by malicious people to conduct cross-site scripting and phishing attacks, bypass certain security restrictions, disclose sensitive information, and potentially compromise a user's system. For more information: SA19631 SOLUTION: Apply updated packages. -- Mandrivalinux 2006 -- 3780668e99350fecb7e1da24330b7bed 2006.0/RPMS/libnspr4-1.0.6-16.5.20060mdk.i586.rpm e322c361441c540c473c17be628c56c5 2006.0/RPMS/libnspr4-devel-1.0.6-16.5.20060mdk.i586.rpm 5e7771258e4019de67912afd88201043 2006.0/RPMS/libnss3-1.0.6-16.5.20060mdk.i586.rpm 3b8d26864055478f01723e33a2dd060a 2006.0/RPMS/libnss3-devel-1.0.6-16.5.20060mdk.i586.rpm 9a5e293de59e94a574f596215c06d7a1 2006.0/RPMS/mozilla-firefox-1.0.6-16.5.20060mdk.i586.rpm 40de607b8c6fb7a9fcbe09cf194fa306 2006.0/RPMS/mozilla-firefox-devel-1.0.6-16.5.20060mdk.i586.rpm 70205ca1a829e0be5f571376c492dc93 2006.0/SRPMS/mozilla-firefox-1.0.6-16.5.20060mdk.src.rpm -- Mandrivalinux 2006/X86_64 -- bb30c3560134a888a041faa548e80a93 x86_64/2006.0/RPMS/lib64nspr4-1.0.6-16.5.20060mdk.x86_64.rpm 30e61853b74326055712d1021f15cec8 x86_64/2006.0/RPMS/lib64nspr4-devel-1.0.6-16.5.20060mdk.x86_64.rpm 271a6b04c6dbbc4e5eb814dd3c682801 x86_64/2006.0/RPMS/lib64nss3-1.0.6-16.5.20060mdk.x86_64.rpm 25c9a54f6f77823d37da854e55bac42d x86_64/2006.0/RPMS/lib64nss3-devel-1.0.6-16.5.20060mdk.x86_64.rpm 70f565e72131379186f742049453158c x86_64/2006.0/RPMS/mozilla-firefox-1.0.6-16.5.20060mdk.x86_64.rpm 6ca25ff70f4fb687bcce8d295b4e7a71 x86_64/2006.0/RPMS/mozilla-firefox-devel-1.0.6-16.5.20060mdk.x86_64.rpm 70205ca1a829e0be5f571376c492dc93 x86_64/2006.0/SRPMS/mozilla-firefox-1.0.6-16.5.20060mdk.src.rpm ORIGINAL ADVISORY: http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:075 OTHER REFERENCES: SA19631: http://secunia.com/advisories/19631/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------