Summary
The remote host is missing an update to xulrunner
announced via advisory FEDORA-2009-8279.
Solution
Apply the appropriate updates.
This update can be installed with the yum update program. Use su -c 'yum update xulrunner' at the command line.
For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/.
https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-8279
Insight
XULRunner provides the XUL Runtime environment for Gecko applications.
Update Information:
Update to new upstream Firefox version 3.5.2, fixing multiple security issues detailed in the upstream advisories:
http://www.mozilla.org/security/known-vulnerabilities/firefox35.html#firefox3.5.2
Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
ChangeLog:
* Mon Aug 3 2009 Martin Stransky 1.9.1.1-2
- Update to 1.9.1.2
* Fri Jul 17 2009 Martin Stransky 1.9.1.1-1
- Update to 1.9.1.1
* Thu Jul 16 2009 Christopher Aillon - 1.9.1-5
- Fix for milw0rm 9137
* Tue Jul 14 2009 Jan Horak - 1.9.1-4
- Fixed multilib issues
Severity
Classification
-
CVE CVE-2009-2470, CVE-2009-2654, CVE-2009-2662, CVE-2009-2663, CVE-2009-2664, CVE-2009-2665 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities