From:
[email protected]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------ Debian Security Advisory DSA-1922-1
[email protected] http://www.debian.org/security/ Moritz Muehlenhoff October 28, 2009
http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : xulrunner
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2009-3274 CVE-2009-3370 CVE-2009-3372 CVE-2009-3373 CVE-2009-3374 CVE-2009-3375 CVE-2009-3376 CVE-2009-3380 CVE-2009-3382
Several remote vulnerabilities have been discovered in Xulrunner, a
runtime environment for XUL applications, such as the Iceweasel web
browser. The Common Vulnerabilities and Exposures project identifies
the following problems:
CVE-2009-3380
Vladimir Vukicevic, Jesse Ruderman, Martijn Wargers, Daniel
Banchero, David Keeler and Boris Zbarsky reported crashes in
layout engine, which might allow the execution of arbitrary code.
CVE-2009-3382
Carsten Book reported a crash in the layout engine, which might
allow the execution of arbitrary code.
CVE-2009-3376
Jesse Ruderman and Sid Stamm discovered spoofing vulnerability
in the file download dialog.
CVE-2009-3375
Gregory Fleischer discovered a bypass of the same-origin policy
using the document.getSelection() function.
CVE-2009-3374
"moz_bug_r_a4" discovered a privilege escalation to Chrome status
in the XPCOM utility XPCVariant::VariantDataToJS.
CVE-2009-3373
"regenrecht" discovered a buffer overflow in the GIF parser, which
might lead to the execution of arbitrary code.
CVE-2009-3372
Marco C. discovered that a programming error in the proxy auto
configuration code might lead to denial of service or the
execution of arbitrary code.
CVE-2009-3274
Jeremy Brown discovered that the filename of a downloaded file
which is opened by the user is predictable, which might lead to
tricking the user into a malicious file if the attacker has local
access to the system.
CVE-2009-3370
Paul Stone discovered that history information from web forms
could be stolen.
For the stable distribution (lenny), these problems have been fixed
in version 1.9.0.15-0lenny1.
As indicated in the Etch release notes, security support for the
Mozilla products in the oldstable distribution needed to be stopped
before the end of the regular Etch security maintenance life cycle.
You are strongly encouraged to upgrade to stable or switch to a still
supported browser.
For the unstable distribution (sid), these problems have been fixed in
version 1.9.1.4-1.
We recommend that you upgrade your xulrunner packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.15-0lenny1.diff.gz
Size/MD5 checksum: 116164 3d995b59ffe890d36117f3103f38b9b1
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.15-0lenny1.dsc
Size/MD5 checksum: 1779 7e8392a8b59ef9064df564ee03c23b14
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.15.orig.tar.gz
Size/MD5 checksum: 44085950 49aa2aee64997f9e802cf386d038d2d7
Architecture independent packages:
http://security.debian.org/pool/updates/main/x/xulrunner/libmozillainterfaces-java_1.9.0.15-0lenny1_all.deb
Size/MD5 checksum: 1464278 ea66718b41a4c282284d37672d0e7078
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 9494314 8cd7366b90d39c5c64064d1fb17c1022
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 938304 bf39af51a378ed039c545730664857aa
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 221588 1dd219c2812ca8d23fff415c9555d3db
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 432182 5d32bfa9665c32fb1738f416f739b3ae
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 3651374 14dd5f555695db43b94ceab3260c680d
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 51089582 fa7f8faad8460d1049e9fb8f6fd1f7bb
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 163912 d488634f9d36f6d0afcc7b27ee6699a0
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 112022 9666fd74cd00bc0643993acc22d40c91
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.15-0lenny1_alpha.deb
Size/MD5 checksum: 71980 602c6780c2328141871f5d94b8a163f4
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.15-0lenny1_amd64.deb
Size/MD5 checksum: 69898 c0295f0b7e6957f236d769dc8bdfd2ca
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.15-0lenny1_amd64.deb
Size/MD5 checksum: 890260 2d4cb08b3e886e06be04ec7e43a82b0f
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.15-0lenny1_amd64.deb
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)