Test Kennung:	1.3.6.1.4.1.25623.1.0.881948
Kategorie:	CentOS Local Security Checks
Titel:	CentOS Update for firefox CESA-2014:0741 centos6
Zusammenfassung:	The remote host is missing an update for the 'firefox'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'firefox' package(s) announced via the referenced advisory. Vulnerability Insight: Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. (CVE-2014-1533, CVE-2014-1538, CVE-2014-1541) Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Gary Kwong, Christoph Diehl, Christian Holler, Hannes Verschore, Jan de Mooij, Ryan VanderMeulen, Jeff Walden, Kyle Huey, Abhishek Arya, and Nils as the original reporters of these issues. For technical details regarding these flaws, refer to the Mozilla security advisories for Firefox 24.6.0 ESR. You can find a link to the Mozilla advisories in the References section of this erratum. All Firefox users should upgrade to these updated packages, which contain Firefox version 24.6.0 ESR, which corrects these issues. After installing the update, Firefox must be restarted for the changes to take effect. Affected Software/OS: firefox on CentOS 6 Solution: Please install the updated packages. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1533 BugTraq ID: 67965 http://www.securityfocus.com/bid/67965 Debian Security Information: DSA-2955 (Google Search) http://www.debian.org/security/2014/dsa-2955 Debian Security Information: DSA-2960 (Google Search) http://www.debian.org/security/2014/dsa-2960 https://security.gentoo.org/glsa/201504-01 RedHat Security Advisories: RHSA-2014:0741 http://rhn.redhat.com/errata/RHSA-2014-0741.html RedHat Security Advisories: RHSA-2014:0742 http://rhn.redhat.com/errata/RHSA-2014-0742.html http://www.securitytracker.com/id/1030386 http://www.securitytracker.com/id/1030388 http://secunia.com/advisories/58984 http://secunia.com/advisories/59052 http://secunia.com/advisories/59149 http://secunia.com/advisories/59150 http://secunia.com/advisories/59165 http://secunia.com/advisories/59169 http://secunia.com/advisories/59170 http://secunia.com/advisories/59171 http://secunia.com/advisories/59229 http://secunia.com/advisories/59275 http://secunia.com/advisories/59328 http://secunia.com/advisories/59377 http://secunia.com/advisories/59387 http://secunia.com/advisories/59425 http://secunia.com/advisories/59486 http://secunia.com/advisories/59866 SuSE Security Announcement: SUSE-SU-2014:0824 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00023.html SuSE Security Announcement: openSUSE-SU-2014:0797 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00019.html SuSE Security Announcement: openSUSE-SU-2014:0819 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-06/msg00040.html SuSE Security Announcement: openSUSE-SU-2014:0855 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-07/msg00001.html SuSE Security Announcement: openSUSE-SU-2014:0858 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-07/msg00004.html http://www.ubuntu.com/usn/USN-2243-1 http://www.ubuntu.com/usn/USN-2250-1 Common Vulnerability Exposure (CVE) ID: CVE-2014-1538 BugTraq ID: 67976 http://www.securityfocus.com/bid/67976 Common Vulnerability Exposure (CVE) ID: CVE-2014-1541 BugTraq ID: 67979 http://www.securityfocus.com/bid/67979
Copyright	Copyright (C) 2014 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.