Debian Security Advisory DSA 1707-1 (iceweasel) Network Vulnerability

Summary

The remote host is missing an update to iceweasel announced via advisory DSA 1707-1. For details on issues addressed in the missing update, please visit the referenced security advisories.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201707-1

Insight

For the stable distribution (etch) these problems have been fixed in version 2.0.0.19-0etch1. For the testing distribution (lenny) and the unstable distribution (sid) these problems have been fixed in version 3.0.5-1. Please note iceweasel in Lenny links dynamically against xulrunner. We recommend that you upgrade your iceweasel package.

Severity

Classification

CVE CVE-2008-5500, CVE-2008-5503, CVE-2008-5504, CVE-2008-5506, CVE-2008-5507, CVE-2008-5508, CVE-2008-5510, CVE-2008-5511, CVE-2008-5512, CVE-2008-5513

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 031-1 (sudo)
Debian Security Advisory DSA 1020-1 (flex)
Debian Security Advisory DSA 095-1 (gpm)
Debian Security Advisory DSA 1070-1 (kernel-source-2.4.19,kernel-image-sparc-2.4,kernel-patch-2.4.19-mips)
Debian Security Advisory DSA 1029-1 (libphp-adodb)

Take action and discover your vulnerabilities