Debian Security Advisory DSA 2132-1 (xulrunner) Network Vulnerability

Summary

The remote host is missing an update to xulrunner announced via advisory DSA 2132-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202132-1

Insight

Several remote vulnerabilities have been discovered in Xulrunner, a runtime environment for XUL applications. The Common Vulnerabilities and Exposures project identifies the following problems: For the stable distribution (lenny), these problems have been fixed in version 1.9.0.19-7. For the upcoming stable version (squeeze) and the unstable distribution (sid), these problems have been fixed in version 3.5.15-1. For the experimental distribution, these problems have been fixed in version 3.6.13-1. We recommend that you upgrade your xulrunner packages.

Severity

Classification

CVE CVE-2010-3767, CVE-2010-3769, CVE-2010-3770, CVE-2010-3771, CVE-2010-3772, CVE-2010-3773, CVE-2010-3775, CVE-2010-3776, CVE-2010-3778

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 1034-1 (horde2)
Debian Security Advisory DSA 012-1 (micq)
Debian Security Advisory DSA 089-1 (icecast-server)
Debian Security Advisory DSA 053-1 (nedit)
Debian Security Advisory DSA 090-1 (xtel)

Take action and discover your vulnerabilities