xulrunner - several vulnerabilities

2010-12-1100:00:00

Google

osv.dev

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

Several remote vulnerabilities have been discovered in Xulrunner, a
runtime environment for XUL applications. The Common Vulnerabilities
and Exposures project identifies the following problems:

For the stable distribution (lenny), these problems have been fixed in
version 1.9.0.19-7.

For the upcoming stable version (squeeze) and the unstable
distribution (sid), these problems have been fixed in version 3.5.15-1.

For the experimental distribution, these problems have been fixed in
version 3.6.13-1.

We recommend that you upgrade your xulrunner packages.

CPENameOperatorVersion
xulrunnereq1.9.0.15-0lenny1
xulrunnereq1.9.0.10-1
xulrunnereq1.9.0.7-1
xulrunnereq1.9.0.14-0lenny1
xulrunnereq1.9.0.19-5
xulrunnereq1.9.0.16-1
xulrunnereq1.9.0.7-0lenny1
xulrunnereq1.9.0.12-0lenny1
xulrunnereq1.9.0.13-0lenny1
xulrunnereq1.9.0.19-2

Name	Operator	Version
xulrunner	eq	1.9.0.15-0lenny1
xulrunner	eq	1.9.0.10-1
xulrunner	eq	1.9.0.7-1
xulrunner	eq	1.9.0.14-0lenny1
xulrunner	eq	1.9.0.19-5
xulrunner	eq	1.9.0.16-1
xulrunner	eq	1.9.0.7-0lenny1
xulrunner	eq	1.9.0.12-0lenny1
xulrunner	eq	1.9.0.13-0lenny1
xulrunner	eq	1.9.0.19-2