Gentoo Security Advisory GLSA 200503-10 (Firefox) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200503-10.

Solution

All Firefox users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-www/mozilla-firefox-1.0.1' All Firefox binary users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-www/mozilla-firefox-bin-1.0.1' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200503-10 http://bugs.gentoo.org/show_bug.cgi?id=83267 http://www.mozilla.org/projects/security/known-vulnerabilities.html

Insight

Mozilla Firefox is vulnerable to a local file deletion issue and to various issues allowing to trick the user into trusting fake web sites or interacting with privileged content.

Severity

Classification

Related Vulnerabilities

Gentoo Security Advisory GLSA 200407-11 (app-text/wv)
Gentoo Security Advisory GLSA 200408-13 (kde, kdebase, kdelibs)
Gentoo Security Advisory GLSA 200407-14 (Unreal Tournament)
Gentoo Security Advisory GLSA 200405-16 (SquirrelMail)
Gentoo Security Advisory GLSA 200407-17 (net-dialup/l2tpd)

Take action and discover your vulnerabilities