(RHSA-2010:0681) Critical: firefox security update

2010-09-0700:00:00

access.redhat.com

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.667 Medium

EPSS

Percentile

97.6%

JSON

Mozilla Firefox is an open source web browser. XULRunner provides the XUL
Runtime environment for Mozilla Firefox.

Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code with the privileges of the user running
Firefox. (CVE-2010-3169, CVE-2010-2762)

Several use-after-free and dangling pointer flaws were found in Firefox. A
web page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code with the privileges of the user running
Firefox. (CVE-2010-2760, CVE-2010-2766, CVE-2010-2767, CVE-2010-3167,
CVE-2010-3168)

Multiple buffer overflow flaws were found in Firefox. A web page containing
malicious content could cause Firefox to crash or, potentially, execute
arbitrary code with the privileges of the user running Firefox.
(CVE-2010-2765, CVE-2010-3166)

Multiple cross-site scripting (XSS) flaws were found in Firefox. A web page
containing malicious content could cause Firefox to run JavaScript code
with the permissions of a different website. (CVE-2010-2768, CVE-2010-2769)

A flaw was found in the Firefox XMLHttpRequest object. A remote site could
use this flaw to gather information about servers on an internal private
network. (CVE-2010-2764)

For technical details regarding these flaws, refer to the Mozilla security
advisories for Firefox 3.6.9. You can find a link to the Mozilla advisories
in the References section of this erratum.

Note: After installing this update, Firefox will fail to connect (with
HTTPS) to a server using the SSL DHE (Diffie-Hellman Ephemeral) key
exchange if the server’s ephemeral key is too small. Connecting to such
servers is a security risk as an ephemeral key that is too small makes the
SSL connection vulnerable to attack. Refer to the Solution section for
further information.

All Firefox users should upgrade to these updated packages, which contain
Firefox version 3.6.9, which corrects these issues. After installing the
update, Firefox must be restarted for the changes to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5ppc64nss-pkcs11-devel< 3.12.7-2.el5nss-pkcs11-devel-3.12.7-2.el5.ppc64.rpm
RedHat5i386nss-tools< 3.12.7-2.el5nss-tools-3.12.7-2.el5.i386.rpm
RedHat4x86_64nspr< 4.8.6-1.el4nspr-4.8.6-1.el4.x86_64.rpm
RedHat5ia64xulrunner< 1.9.2.9-1.el5xulrunner-1.9.2.9-1.el5.ia64.rpm
RedHat5ppc64xulrunner< 1.9.2.9-1.el5xulrunner-1.9.2.9-1.el5.ppc64.rpm
RedHat5s390nss-pkcs11-devel< 3.12.7-2.el5nss-pkcs11-devel-3.12.7-2.el5.s390.rpm
RedHat4ppcnss-devel< 3.12.7-1.el4nss-devel-3.12.7-1.el4.ppc.rpm
RedHat5ia64xulrunner-devel< 1.9.2.9-1.el5xulrunner-devel-1.9.2.9-1.el5.ia64.rpm
RedHat4ppc64nss< 3.12.7-1.el4nss-3.12.7-1.el4.ppc64.rpm
RedHat5ia64nspr< 4.8.6-1.el5nspr-4.8.6-1.el5.ia64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	5	ppc64	nss-pkcs11-devel	< 3.12.7-2.el5	nss-pkcs11-devel-3.12.7-2.el5.ppc64.rpm
RedHat	5	i386	nss-tools	< 3.12.7-2.el5	nss-tools-3.12.7-2.el5.i386.rpm
RedHat	4	x86_64	nspr	< 4.8.6-1.el4	nspr-4.8.6-1.el4.x86_64.rpm
RedHat	5	ia64	xulrunner	< 1.9.2.9-1.el5	xulrunner-1.9.2.9-1.el5.ia64.rpm
RedHat	5	ppc64	xulrunner	< 1.9.2.9-1.el5	xulrunner-1.9.2.9-1.el5.ppc64.rpm
RedHat	5	s390	nss-pkcs11-devel	< 3.12.7-2.el5	nss-pkcs11-devel-3.12.7-2.el5.s390.rpm
RedHat	4	ppc	nss-devel	< 3.12.7-1.el4	nss-devel-3.12.7-1.el4.ppc.rpm
RedHat	5	ia64	xulrunner-devel	< 1.9.2.9-1.el5	xulrunner-devel-1.9.2.9-1.el5.ia64.rpm
RedHat	4	ppc64	nss	< 3.12.7-1.el4	nss-3.12.7-1.el4.ppc64.rpm
RedHat	5	ia64	nspr	< 4.8.6-1.el5	nspr-4.8.6-1.el5.ia64.rpm