---------------------------------------------------------------------- Secunia is proud to announce the availability of the Secunia Software Inspector. The Secunia Software Inspector is a free service that detects insecure versions of software that you may have installed in your system. When insecure versions are detected, the Secunia Software Inspector also provides thorough guidelines for updating the software to the latest secure version from the vendor. Try it out online: http://secunia.com/software_inspector/ ---------------------------------------------------------------------- TITLE: SUSE updates for MozillaFirefox and MozillaThunderbird SECUNIA ADVISORY ID: SA23545 VERIFY ADVISORY: http://secunia.com/advisories/23545/ CRITICAL: Highly critical IMPACT: Cross Site Scripting, Exposure of sensitive information, DoS, System access WHERE: >From remote OPERATING SYSTEM: SUSE Linux 10.1 http://secunia.com/product/10796/ SUSE Linux 10 http://secunia.com/product/6221/ SUSE Linux 9.3 http://secunia.com/product/4933/ SUSE Linux Enterprise Server 10 http://secunia.com/product/12192/ DESCRIPTION: SUSE has issued an update for MozillaFirefox and MozillaThunderbird. This fixes some vulnerabilities, which can be exploited by malicious people to gain knowledge of certain information, conduct cross-site scripting attacks and potentially compromise a user's system. For more information: SA23282 SA23420 SOLUTION: Apply updated packages. x86 Platform: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-2.0.0.1-0.1.i586.rpm eea9f40b409823d691ad0e1b3daf5a82 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaFirefox-translations-2.0.0.1-0.1.i586.rpm dc5e760f067b2d1ea41be90c92517a5d ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm 0b3638d9bfccfca0cf149df1200e6c47 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/MozillaThunderbird-translations-1.5.0.9-0.1.i586.rpm d51cb9ff1cb3f5875cb4fa60b58f159b SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-1.5.0.9-0.2.i586.rpm fa3a6d10cb1a6dd801668e8881424036 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.2.i586.rpm a40dc8d7e29aa8bb21ecb3c348e0cc05 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm 3bbfce9a8abf9394959348e449b35b95 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/MozillaThunderbird-translations-1.5.0.9-0.1.i586.rpm 869cac360c49cc15358b205923f2ee1d SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-1.5.0.9-0.1.i586.rpm f0b6bd1b56b874eb0003752cd112d6db ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.1.i586.rpm 1722380cad796cc29d15374f7c471f09 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm 82d7d8847f363a9e46fc9d22aa44f0c8 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-1.5.0.9-0.1.i586.rpm 06b3af42ed8f528a306650691558301f ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaFirefox-translations-1.5.0.9-0.1.i586.rpm be42160ef33ead2625b20043267c2ce2 ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/MozillaThunderbird-1.5.0.9-0.1.i586.rpm 239aa22605bbd7c89a8489fb49c51f5d Power PC Platform: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaFirefox-2.0.0.1-0.1.ppc.rpm c9611899a9bed84f006f8451dfcc44ae ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaFirefox-translations-2.0.0.1-0.1.ppc.rpm e539db36e921505166e238a5aa853750 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaThunderbird-1.5.0.9-0.1.ppc.rpm 0d0b60cf410588c59003d04ab0ce0b33 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/MozillaThunderbird-translations-1.5.0.9-0.1.ppc.rpm 0445e6652c8862691426ed623db2b362 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-1.5.0.9-0.2.ppc.rpm 3d399bf2bab2611809add386b63c085a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaFirefox-translations-1.5.0.9-0.2.ppc.rpm 4a0223d379107cc45ef13d59369914dd ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-1.5.0.9-0.1.ppc.rpm a795cd195043826ab0c9227251058905 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/MozillaThunderbird-translations-1.5.0.9-0.1.ppc.rpm a2c70ba35f54ff5cf7970d05940f00ee SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaFirefox-1.5.0.9-0.1.ppc.rpm 72520bda4b0156991ce85e34eeef90a9 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaFirefox-translations-1.5.0.9-0.1.ppc.rpm 9d7f48fdce0092b7e00920ead4db56dc ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/ppc/MozillaThunderbird-1.5.0.9-0.1.ppc.rpm aea7d9cfe7b9b95ddd0761bf4fce7fc1 x86-64 Platform: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaFirefox-2.0.0.1-0.1.x86_64.rpm 941d4d0e8a4332e3d585b67347d3bfaf ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaFirefox-translations-2.0.0.1-0.1.x86_64.rpm 21cbeb89fcad730aecb715d92bdc9521 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm edc263e07b53d019e0d686c2134dddf5 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/MozillaThunderbird-translations-1.5.0.9-0.1.x86_64.rpm f4f8dedac060cbd33f4b480aacb05bef SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm 37f2af41fa077600d68df74547da4339 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/MozillaThunderbird-translations-1.5.0.9-0.1.x86_64.rpm 094c3157d83486a2fb10f0e3bb365a0a SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm f78215541f3b1f1af4aeba8b7414e907 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/MozillaThunderbird-1.5.0.9-0.1.x86_64.rpm dff09a04cd253fdcf830f93aa10edf49 Sources: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/MozillaFirefox-2.0.0.1-0.1.src.rpm 8bdf86d5275d649f546a22c63a4b8cfb ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm 223fff785e9e86fd5cbe0106ab1a5ddf SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/MozillaFirefox-1.5.0.9-0.2.src.rpm 38373d35abf94ec8c0a2008dd1b6fc0d ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm 184a16b5b80bd056a9526873756b75a5 SUSE LINUX 10.0: ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/MozillaFirefox-1.5.0.9-0.1.src.rpm 62ade9bd59c8da0e9b739e59a8247708 ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm 2ec8f62cf812e2ea756e618c941fbdb5 SUSE LINUX 9.3: ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/MozillaFirefox-1.5.0.9-0.1.src.rpm c4444ff036405a4baa37c33b975941fa ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/MozillaThunderbird-1.5.0.9-0.1.src.rpm 14f7289ab7a5a2fcfd6cedf2acda628b ORIGINAL ADVISORY: http://lists.suse.com/archive/suse-security-announce/2006-Dec/0010.html OTHER REFERENCES: SA23282: http://secunia.com/advisories/23282/ SA23420: http://secunia.com/advisories/23420/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------