[SECURITY] Fedora 8 Update: gtkmozembedmm-1.4.2.cvs20060817-17.fc8
updates at fedoraproject.org
updates at fedoraproject.org
Thu Nov 29 01:48:08 UTC 2007
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-3962
2007-11-29 01:46:57.290638
--------------------------------------------------------------------------------
Name : gtkmozembedmm
Product : Fedora 8
Version : 1.4.2.cvs20060817
Release : 17.fc8
URL : http://gtkmm.sourceforge.net/
Summary : C++ wrapper for GtkMozembed
Description :
This package provides a C++/gtkmm wrapper for GtkMozEmbed
from Mozilla 1.4.x to 1.7.x.
The wrapper provides a convenient interface for C++ programmers
to use the Gtkmozembed HTML-rendering widget inside their software.
--------------------------------------------------------------------------------
Update Information:
Updated firefox packages that fix several security issues are now available for Fedora 8.
This update has been rated as having critical security impact by the Fedora Security Response Team.
Mozilla Firefox is an open source Web browser.
A cross-site scripting flaw was found in the way Firefox handled the jar: URI scheme. It was possible for a malicious website to leverage this flaw and conduct a cross-site scripting attack against a user running Firefox. (CVE-2007-5947)
Several flaws were found in the way Firefox processed certain malformed web content. A webpage containing malicious content could cause Firefox to crash, or potentially execute arbitrary code as the user running Firefox. (CVE-2007-5959)
A race condition existed when Firefox set the "window.location" property for a webpage. This flaw could allow a webpage to set an arbitrary Referer header, which may lead to a Cross-site Request Forgery (CSRF) attack against websites that rely only on the Referer header for protection. (CVE-2007-5960)
Users of Firefox are advised to upgrade to these updated packages, which contain backported patches to resolve these issues.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 27 2007 Christopher Aillon <caillon at redhat.com> - 1.4.2.cvs20060817-17
- Rebuild against newer gecko
* Tue Nov 20 2007 Haïkel Guémar <karlthered at gmail.com> - 1.4.2.cvs20060817-16
- Rebuild against new firefox
--------------------------------------------------------------------------------
Updated packages:
b05c3747c7f890a086355958f967845abf0e4d7b gtkmozembedmm-debuginfo-1.4.2.cvs20060817-17.fc8.ppc64.rpm
8fc675b22f99ecc1c27628d4b8983505bfc6ea49 gtkmozembedmm-1.4.2.cvs20060817-17.fc8.ppc64.rpm
e87633086a216109588c1c154a54d22036d7b3a8 gtkmozembedmm-devel-1.4.2.cvs20060817-17.fc8.ppc64.rpm
f307921e01e20c6184d34e09a16bd476bdc82041 gtkmozembedmm-1.4.2.cvs20060817-17.fc8.i386.rpm
5447a7dd99e98b4c0ff591e70597f273b9262193 gtkmozembedmm-devel-1.4.2.cvs20060817-17.fc8.i386.rpm
d02e69916ee2474127f5a2ee5774d610c71d2a7d gtkmozembedmm-debuginfo-1.4.2.cvs20060817-17.fc8.i386.rpm
e9e6c67fce2dd7989c9c960f3d6992d5547c3199 gtkmozembedmm-devel-1.4.2.cvs20060817-17.fc8.x86_64.rpm
37d114479781534565c5cb36270b7ed2c7750de5 gtkmozembedmm-debuginfo-1.4.2.cvs20060817-17.fc8.x86_64.rpm
9fff99c851a785aa6626ffc374884eb999ab07e5 gtkmozembedmm-1.4.2.cvs20060817-17.fc8.x86_64.rpm
1bd13dd5ae36be5f3fd08cec8f94f6238b752e71 gtkmozembedmm-devel-1.4.2.cvs20060817-17.fc8.ppc.rpm
1d6199b8d8f2ffab3a47c842b507e01ebccfce18 gtkmozembedmm-1.4.2.cvs20060817-17.fc8.ppc.rpm
8307a0577505d364c029d2700f3187d60a9c45fe gtkmozembedmm-debuginfo-1.4.2.cvs20060817-17.fc8.ppc.rpm
f1b9c142fe37728adf8b285f69c2ab3bfe1eae8a gtkmozembedmm-1.4.2.cvs20060817-17.fc8.src.rpm
This update can be installed with the "yum" update program. Use
su -c 'yum update gtkmozembedmm'
at the command line. For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------
More information about the Fedora-package-announce
mailing list