Summary
The remote host is missing an update to xulrunner
announced via advisory FEDORA-2009-1398.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update xulrunner' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-1398
Insight
XULRunner provides the XUL Runtime environment for Gecko applications.
Update Information:
Update to the new upstream Firefox 3.0.6 / XULRunner 1.9.0.6 fixing multiple security issues:
http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.6
This update also contains new builds of all applications depending on Gecko libraries, built against the new version, including the latest google gadgets upstream release. See http://code.google.com/p/google-gadgets-for-linux/source/browse/trunk/ChangeLog?spec=svn1087&r=1087 for details.
ChangeLog:
* Wed Feb 4 2009 Christopher Aillon 1.9.0.6-1
- Update to 1.9.0.6
* Thu Jan 8 2009 Martin Stransky 1.9.0.5-2
- Copied mozilla-config.h to stable include dir (#478445) * Tue Dec 16 2008 Christopher Aillon 1.9.0.5-1
- Update to 1.9.0.5
References
- https://bugzilla.redhat.com/show_bug.cgi?id=483139
- https://bugzilla.redhat.com/show_bug.cgi?id=483141
- https://bugzilla.redhat.com/show_bug.cgi?id=483142
- https://bugzilla.redhat.com/show_bug.cgi?id=483143
- https://bugzilla.redhat.com/show_bug.cgi?id=483144
- https://bugzilla.redhat.com/show_bug.cgi?id=483145
- https://bugzilla.redhat.com/show_bug.cgi?id=483150
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-0352, CVE-2009-0353, CVE-2009-0354, CVE-2009-0355, CVE-2009-0356, CVE-2009-0357, CVE-2009-0358 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities