Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2009-1836
Vulnerability from cvelistv5
Published
2009-06-12 21:07
Modified
2024-08-07 05:27
Severity ?
EPSS score ?
Summary
Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-07T05:27:54.628Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "ADV-2009-1572", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2009/1572" }, { "name": "SSA:2009-178-01", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE", "x_transferred" ], "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275" }, { "name": "DSA-1830", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2009/dsa-1830" }, { "name": "35536", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35536" }, { "name": "35602", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35602" }, { "name": "oval:org.mitre.oval:def:11764", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764" }, { "name": "FEDORA-2009-7614", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html" }, { "name": "35326", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/35326" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-27.html" }, { "name": "35440", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35440" }, { "name": "FEDORA-2009-6411", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html" }, { "name": "USN-782-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/usn-782-1" }, { "name": "35431", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35431" }, { "name": "FEDORA-2009-7567", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html" }, { "name": "35331", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35331" }, { "name": "35468", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35468" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf" }, { "name": "35439", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35439" }, { "name": "35882", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35882" }, { "name": "FEDORA-2009-6366", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html" }, { "name": "MDVSA-2009:141", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:141" }, { "name": "35415", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35415" }, { "name": "RHSA-2009:1095", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1095.html" }, { "name": "35380", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/35380" }, { "name": "SSA:2009-167-01", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE", "x_transferred" ], "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468" }, { "name": "35561", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/35561" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "name": "55160", "tags": [ "vdb-entry", "x_refsource_OSVDB", "x_transferred" ], "url": "http://osvdb.org/55160" }, { "name": "SSA:2009-176-01", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE", "x_transferred" ], "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408" }, { "name": "DSA-1820", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2009/dsa-1820" }, { "name": "RHSA-2009:1126", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-1126.html" }, { "name": "264308", "tags": [ "vendor-advisory", "x_refsource_SUNALERT", "x_transferred" ], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1" }, { "name": "1022396", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id?1022396" }, { "tags": [ "x_refsource_MISC", "x_transferred" ], "url": "http://research.microsoft.com/apps/pubs/default.aspx?id=79323" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=479880" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2009-06-11T00:00:00", "descriptions": [ { "lang": "en", "value": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-28T12:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "ADV-2009-1572", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2009/1572" }, { "name": "SSA:2009-178-01", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE" ], "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275" }, { "name": "DSA-1830", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2009/dsa-1830" }, { "name": "35536", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35536" }, { "name": "35602", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35602" }, { "name": "oval:org.mitre.oval:def:11764", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764" }, { "name": "FEDORA-2009-7614", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html" }, { "name": "35326", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/35326" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-27.html" }, { "name": "35440", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35440" }, { "name": "FEDORA-2009-6411", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html" }, { "name": "USN-782-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/usn-782-1" }, { "name": "35431", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35431" }, { "name": "FEDORA-2009-7567", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html" }, { "name": "35331", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35331" }, { "name": "35468", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35468" }, { "tags": [ "x_refsource_MISC" ], "url": "http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf" }, { "name": "35439", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35439" }, { "name": "35882", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35882" }, { "name": "FEDORA-2009-6366", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html" }, { "name": "MDVSA-2009:141", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:141" }, { "name": "35415", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35415" }, { "name": "RHSA-2009:1095", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1095.html" }, { "name": "35380", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/35380" }, { "name": "SSA:2009-167-01", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE" ], "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468" }, { "name": "35561", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/35561" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "name": "55160", "tags": [ "vdb-entry", "x_refsource_OSVDB" ], "url": "http://osvdb.org/55160" }, { "name": "SSA:2009-176-01", "tags": [ "vendor-advisory", "x_refsource_SLACKWARE" ], "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408" }, { "name": "DSA-1820", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2009/dsa-1820" }, { "name": "RHSA-2009:1126", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2009-1126.html" }, { "name": "264308", "tags": [ "vendor-advisory", "x_refsource_SUNALERT" ], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1" }, { "name": "1022396", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id?1022396" }, { "tags": [ "x_refsource_MISC" ], "url": "http://research.microsoft.com/apps/pubs/default.aspx?id=79323" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=479880" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2009-1836", "datePublished": "2009-06-12T21:07:00", "dateReserved": "2009-05-29T00:00:00", "dateUpdated": "2024-08-07T05:27:54.628Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2009-1836\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2009-06-12T21:30:00.327\",\"lastModified\":\"2024-11-21T01:03:29.680\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \\\"SSL tampering\\\" attack.\"},{\"lang\":\"es\",\"value\":\"Mozilla Firefox anteriores a v3.0.11, Thunderbird anteriores a v2.0.0.22, y SeaMonkey anteriores a v1.1.17 utilizan la cabecera HTTP del servidor para determinar el contexto de un documento facilitado mediante una respuesta CONNECT no 200 desde un servidor proxy, lo que permite a atacantes \\\"man-in-the-middle\\\" ejecutar secuencias de comandos web arbitrarios mediante la modificaci\u00f3n de la respuesta CONNECT, tambi\u00e9n conocido como ataque \\\"forzado SSL\\\".\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-287\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"3.0.10\",\"matchCriteriaId\":\"E05337C3-04A1-4403-84BE-78FCDF83448D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C7AA88B-638A-451A-B235-A1A1444BE417\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C01AD7C-8470-47AB-B8AE-670E3A381E89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E43F2F1-9252-4B44-8A61-D05305915A5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BB9D48B-DC7B-4D92-BB26-B6DE629A2506\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A360D595-A829-4DDE-932E-9995626917E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E9B5349-FAA7-4CDA-9533-1AD1ACDFAC4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07243837-C353-4C25-A5B1-4DA32807E97D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B832C034-F793-415F-BFC8-D97A18BA6BC7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83CD1A13-66CB-49CC-BD84-5D8334DB774A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93C142C5-3A85-432B-80D6-2E7B1B4694F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2434FCE7-A50B-4527-9970-C7224B31141C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.9:rc:*:*:*:*:*:*\",\"matchCriteriaId\":\"5633FB6E-D623-49D4-9858-4E20E64DE458\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"429ECA02-DBCD-45FB-942C-CA4BC1BC8A72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.9.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B5F0DC80-5473-465C-9D7F-9589F1B78E12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.9.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"567FF916-7DE0-403C-8528-7931A43E0D18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.9_rc:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E15536D0-B6A3-4106-8196-021724324CAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"010B34F4-910E-4515-990B-8E72DF009578\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:0.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FAA1A89-E8D9-46D0-8E2C-9259920ACBFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A545A77-2198-4685-A87F-E0F2DAECECF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0:preview_release:*:*:*:*:*:*\",\"matchCriteriaId\":\"438AACF8-006F-4522-853F-30DBBABD8C15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"778FAE0C-A5CF-4B67-93A9-1A803E3E699F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7447185-7509-449D-8907-F30A42CF7EB5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EDBAC37-9D08-44D1-B279-BC6ACF126CAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3FFF89FA-2020-43CC-BACD-D66117B3DD26\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"834BB391-5EB5-43A8-980A-D305EDAE6FA7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A38AD88-BAA6-4FBE-885B-69E951BD1EFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.6:*:linux:*:*:*:*:*\",\"matchCriteriaId\":\"659F5DAF-D54F-43FB-AB2A-3FC7D456B434\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B500EE6C-99DB-49A3-A1F1-AFFD7FE28068\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F2938F2-A801-45E5-8E06-BE03DE03C8A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F18A45C0-419C-4723-AB7D-5880EF668CE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABB88E86-6E83-4A59-9266-8B98AA91774D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E19ED1CA-DEBD-4786-BA7B-C122C7D2E5B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"66BE50FE-EA21-4633-A181-CD35196DF06E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D6BF5B1-86D1-47FE-9D9C-735718F94874\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84D15CE0-69DF-4EFD-801E-96A4D6AABEDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEE203DE-6C0E-4FDE-9C3A-0E73430F17DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2F38886-C25A-4C6B-93E7-36461405BA99\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C65D2670-F37F-48CB-804A-D35BB1C27D9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE8E5194-7B34-4802-BDA6-6A86EB5EDE05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FABA5F56-99F7-4F8F-9CC1-5B0B2EB72922\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2917BD67-CE81-4B94-B241-D4A9DDA60319\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A524A94E-F19B-42B9-AA8E-171751C339AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F71436CF-F756-44E0-8E69-6951F6B3E54A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"582EE839-B83F-4908-9780-D0C92DC44FD0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"824369CF-00A0-434E-94BC-71CA1317012C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BCB35099-B04E-4796-A25D-953329FE62F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DBEBCFD-80D6-466A-BAEF-C75E65A3B12E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C30ACBCA-4FA1-46DE-8F15-4830BC27E160\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9453EF65-7C69-449E-BF7C-4FECFB56713E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AA75825-21CF-475B-8040-126A13FA2216\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA97C80E-17FA-4866-86CE-29886145ED80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7DE24BED-202E-416D-B5F2-8207D97B9939\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04198E04-CE1D-4A5A-A20C-D1E135B45F94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"717DB967-F658-4699-A224-5B261BFEC10A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3487FA64-BE04-42CA-861E-3DAC097D7D32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0:beta_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F61EA4A1-1916-48A5-8196-E3CDEF3108F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A956C036-1E47-49B2-A971-69868A510B75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5AA254D-D41E-464F-9E2A-A950F08C6946\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"B05D2655-6641-42BE-9793-30005AC9D40D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3D956DC-C73B-439F-8D79-8239207CC76F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57E2C7E7-56C0-466C-BB08-5EB43922C4F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"462E135A-5616-46CC-A9C0-5A7A0526ACC6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6121F9C1-F4DF-4AAB-9E51-AC1592AA5639\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58D44634-A0B5-4F05-8983-B08D392EC742\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB3AC3D3-FDD7-489F-BDCF-BDB55DF33A8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4105171B-9C90-4ABF-B220-A35E7BA9EE40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20985549-DB24-4B69-9D40-208A47AE658E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43A13026-416F-4308-8A1B-E989BD769E12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"612B015E-9F96-4CE6-83E4-23848FD609E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E391619-0967-43E1-8CBC-4D54F72A85C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0544D626-E269-4677-9B05-7DAB23BD103B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C95F7B2C-80FC-4DF2-9680-F74634DCE3E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"863C140E-DC15-4A88-AB8A-8AEF9F4B8164\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38CD049A-5333-4FF7-AD34-6B74E19BADCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0066576D-D66A-4B59-B5C3-471EEBEE8B9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60ED6DAA-9194-4829-BC1A-00F04BE7930A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13BEB9A6-EFD5-4793-9603-84DB84F1CF7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"461163C6-4CA8-4BA9-95A1-136E612CBA6B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"275E9D96-1290-44AB-BF9B-E9E4A803F593\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0.0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"140EFF03-09CB-436E-AF3F-1CEEFF4D3F1D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23D609B2-F66C-40F1-B7D9-965189F875A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"327D8879-0B61-4681-886D-C53BE251E0ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59017F18-6C4E-4803-8A65-DB2A849C3197\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF006282-943B-4885-B523-6E575D664059\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26356AB4-1C06-4E16-BAC1-B6A41626A222\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CC11707-DF87-4046-964D-40CF22385A48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F73F1171-E34D-4AC0-BF8B-3DB38AA13EF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:2.0_8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0422C796-ECC4-42C1-9580-1CE22A096244\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"412DF091-7604-4110-87A0-3488116A97E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0:alpha:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A1DE6AC-C6AA-4B27-AC21-3293E5357A7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"13AAF607-AEEE-4FAF-BE63-73B1D951EF52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"20139741-10B1-4E4B-8D5F-A715042049C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11E07FED-ABDB-4B0A-AB2E-4CBF1EAC4301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A6558F1-9E0D-4107-909A-8EF4BC8A9C2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63DF3D65-C992-44CF-89B4-893526C6242E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9024117-2E8B-4240-9E21-CC501F3879B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FBC3CAD3-2F54-4E32-A0C9-0D826C45AC23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52624B41-AB34-40AD-8709-D9646B618AB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"917E9856-9556-4FD6-A834-858F8837A6B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"98BBD74D-930C-4D80-A91B-0D61347BAA63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FAF2E696-883D-4DE5-8B79-D8E5D9470253\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:firefox:3.0beta5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"880CAA7D-398A-4B26-9754-FD188CE9729D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.1.16\",\"matchCriteriaId\":\"DE872814-DA94-417A-99E4-0E01E4554E74\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09E18FC0-0C8C-4FA1-85B9-B868D00F002F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0:*:alpha:*:*:*:*:*\",\"matchCriteriaId\":\"D62F740C-706B-4290-AD92-3ECBC3D30768\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0:*:beta:*:*:*:*:*\",\"matchCriteriaId\":\"30B95DB4-EC98-4046-A894-26CA0807456B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0:*:dev:*:*:*:*:*\",\"matchCriteriaId\":\"55344F76-1C42-4DD8-A28B-1C33626C6FD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A97B6E1-EABA-4977-A3FC-64DF0392AA95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB01A97F-ACE1-4A99-8939-6DF8FE5B5E8E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6521C877-63C9-4B6E-9FC9-1263FFBB7950\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C5CDA57-1A50-4EDB-80E2-D3EBB44EA653\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"22D33486-4956-4E2C-BA16-FA269A9D02BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"381313EF-DF84-4F66-9962-DE8F45029D79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A803A500-DCE2-44FC-ABEB-A90A1D39D85C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"022274DE-5251-49C9-B6E5-1D8CEDC34E7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.0.99:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1E99882-786F-455F-BAC4-30716120964A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B9F84CB7-93F7-4912-BC87-497867B96491\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1:alpha:*:*:*:*:*:*\",\"matchCriteriaId\":\"8992E9C6-09B3-492E-B7DA-899D5238EC18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"D58B704B-F06E-44C1-BBD1-A090D1E6583A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40270FBD-744A-49D9-9FFA-1DCD897210D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F65732F-317B-49A2-B9B0-FA1102B8B45C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76AD0439-3BFB-4AD1-8E2C-99D0B099FA8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.5:1.1.10:*:*:*:*:*:*\",\"matchCriteriaId\":\"E34A3468-C3BF-417B-85FB-18C28F0765B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E6D7528-E591-48A6-8165-BE42F8EBF6B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA710423-0075-44B8-9DCB-6380FA974486\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5521DA3-E6AF-4350-B971-10B4A1C9B1D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDD15752-A253-47B1-BCE0-B55B84B47C9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60B39A9D-44A4-4D7F-9004-C44066BBE277\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F203EC52-2126-4227-AF3B-23857E5BB222\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E951567B-8402-42EA-AE33-EBA9235A868F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82A94198-7EBF-4D8A-A99A-A32A8561FF2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83EED5D2-EC40-4253-991B-0C746FBEF6A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.0.0.19\",\"matchCriteriaId\":\"850345D6-2085-4EC4-AE47-FC8E265C61D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0618BD26-0EF5-4774-9131-B5ABD4CD302A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D604DAE-DF63-413C-9F49-FFC8E84699F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11DE6185-09F4-48E3-9742-F9D8030B5774\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2E70864-E077-4CD6-A0E8-BC2C4C298A6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61E565E5-286D-4A68-B085-5659DFE59A9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E2A68B4-9101-4AC5-9E82-EEB5A5405541\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EDA6C390-9BA7-4355-8C0A-CD68FF6AC236\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C75B125-E5BB-49A0-B12D-6CF40D8A5DB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"70DDB53E-7A12-4A08-8999-DB68E6DF901E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6514EDE8-7C78-4C72-A313-E0915D89E4EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5263F879-9B90-4582-B677-F133DEBE5259\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C256B73C-9ABC-43D4-8C57-09161BC9F923\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"055D1044-9FC5-45AA-8407-649E96C5AFE3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C1C87A5-C14D-4A23-B865-3BB1FCDC8470\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C4DB0BB-BFD7-4E7A-B3EF-9C5422602216\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0D56153-E20A-46D8-859E-A51E5C03D674\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C51A6F4-F88F-4BF2-BF71-5DC48559C085\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FFC390CB-774C-47BE-95C3-059943A9E645\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.5:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"379F6A73-B45F-4094-8167-4E929FFB1749\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B71DE7AC-553B-4524-8B33-5605518449EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72B02389-0DCD-45BC-A09F-CB6B75940616\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41AE4644-2D23-43EA-ABDA-7BE60EFD1EFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FB87608-0DF8-4729-95C5-CFA386AB3AC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A406214-29E5-4E13-B2E1-1CF72F1E60BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6C169DA-26BC-42EE-817B-2F0685069495\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C99BAF7-B48E-4402-B2BF-EB07235E402E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3F0C73F-291F-4A92-87B8-2269B5C1516D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0ADE8D7-B3C3-4490-9CD5-0263BBA75D28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C86FD617-E4FE-4F85-AAA4-4F968A9DEC9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"938B1260-74A7-4CFF-8086-415DCC284430\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E28672BA-E3C2-40C3-80E1-95B7CDD089E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9308147C-0A23-48BC-BFA9-A49B9D73014E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6654EC3-BED6-4D6D-9B7F-DF4CC8E464BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CAD8DCC-DBB4-40EE-927C-7B0969700077\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77F9CE47-E3AA-49D7-AEC9-447951AC31E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"581615BB-C781-42CA-836E-0E0EAB8C4504\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"257F43FA-D22C-4BF0-A02E-261A54142BCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C8D63F5-78D5-4F7B-B15A-2C15FC405E27\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84BC6D68-4ED4-43CF-A2EB-47BD15D11AE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D291234-D64A-4E8A-A7CD-08BB980E1CD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB1FC6D1-8D93-4D87-9D73-7C6C0F8D45C7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A3C27EC-5794-49C1-96E0-997E700B13DB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CFC60781-766B-4B9C-B68D-45D51C5E5D20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"745C2CBA-4824-441B-A6BC-E80959C2E035\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C6A7D00-A203-4891-96CE-20C91FCBF048\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A8CB480-0595-4BC1-998E-3638E85DB367\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC7EAB8D-CA40-4C29-99DF-24FF1753BCF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C9218A9-DA27-436A-AC93-F465FC14ECF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E66503D7-72CB-42A5-8C85-D9579EF2C0A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CD7D204-3EBA-4D9E-B95A-86524B4C03D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FBBF526-7A28-436B-9B01-EADE913602B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B373B409-0939-4707-99F1-95B121BFF7FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75A0BCE3-38E7-4318-9A7E-3D895171129A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E80CA1DE-B920-4E28-BEFC-574148D19A0D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2303104C-4A91-4704-A9CB-8C83A859090E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DCDAA51-4AA3-4EC4-B441-71FB3C3304F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04CA7AD2-79BA-4A73-ADAB-E3BCA3FD7F73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D54ACD07-FAB7-4513-A707-18FAF7D565C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7260CE1F-501D-44FF-A3FA-2137CA01733B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55D3DD1B-64DF-46C8-80A3-99D2E34B665F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63AF48A9-C161-4603-82F0-5D2DE1EBA498\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821E46E8-B084-4762-86F0-002CA288B522\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A084C258-7D78-4F6D-8E24-00BE9608EBFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"893FD2C8-C8EF-4ED3-9B7C-82D8DA9A1C38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9FEA455-E605-4CE3-A951-760D59091C56\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1758117-4865-42A4-8110-2250924E21FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81AF4BFB-EC89-454B-89DF-FC8F6102E28C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:2.0_8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8013986B-DCAF-44A1-BA63-5BBA6762720F\"}]}]}],\"references\":[{\"url\":\"http://osvdb.org/55160\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://research.microsoft.com/apps/pubs/default.aspx?id=79323\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/35331\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35415\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/35431\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35439\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35440\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35468\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/35536\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/35561\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/35602\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/35882\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1820\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1830\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:141\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mozilla.org/security/announce/2009/mfsa2009-27.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1126.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/35326\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/35380\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id?1022396\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/usn-782-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/1572\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=479880\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=503578\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Exploit\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1095.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://osvdb.org/55160\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://research.microsoft.com/apps/pubs/default.aspx?id=79323\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35331\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35415\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35431\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35439\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35440\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/35468\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35536\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35561\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35602\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/35882\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1820\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2009/dsa-1830\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:141\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mozilla.org/security/announce/2009/mfsa2009-27.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2009-1126.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/35326\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/35380\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1022396\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/usn-782-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/1572\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.mozilla.org/show_bug.cgi?id=479880\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=503578\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://rhn.redhat.com/errata/RHSA-2009-1095.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
rhsa-2009_1126
Vulnerability from csaf_redhat
Published
2009-06-25 15:07
Modified
2024-11-22 02:52
Summary
Red Hat Security Advisory: thunderbird security update
Notes
Topic
An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 5.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Details
Mozilla Thunderbird is a standalone mail and newsgroup client.
Several flaws were found in the processing of malformed HTML mail content.
An HTML mail message containing malicious content could cause Thunderbird
to crash or, potentially, execute arbitrary code as the user running
Thunderbird. (CVE-2009-1392, CVE-2009-1303, CVE-2009-1305, CVE-2009-1833,
CVE-2009-1838)
Several flaws were found in the way malformed HTML mail content was
processed. An HTML mail message containing malicious content could execute
arbitrary JavaScript in the context of the mail message, possibly
presenting misleading data to the user, or stealing sensitive information
such as login credentials. (CVE-2009-1306, CVE-2009-1307, CVE-2009-1308,
CVE-2009-1309)
A flaw was found in the way Thunderbird handled error responses returned
from proxy servers. If an attacker is able to conduct a man-in-the-middle
attack against a Thunderbird instance that is using a proxy server, they
may be able to steal sensitive information from the site Thunderbird is
displaying. (CVE-2009-1836)
Note: JavaScript support is disabled by default in Thunderbird. None of the
above issues are exploitable unless JavaScript is enabled.
All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Moderate" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "An updated thunderbird package that fixes several security issues is now\navailable for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nSeveral flaws were found in the processing of malformed HTML mail content.\nAn HTML mail message containing malicious content could cause Thunderbird\nto crash or, potentially, execute arbitrary code as the user running\nThunderbird. (CVE-2009-1392, CVE-2009-1303, CVE-2009-1305, CVE-2009-1833,\nCVE-2009-1838)\n\nSeveral flaws were found in the way malformed HTML mail content was\nprocessed. An HTML mail message containing malicious content could execute\narbitrary JavaScript in the context of the mail message, possibly\npresenting misleading data to the user, or stealing sensitive information\nsuch as login credentials. (CVE-2009-1306, CVE-2009-1307, CVE-2009-1308,\nCVE-2009-1309)\n\nA flaw was found in the way Thunderbird handled error responses returned\nfrom proxy servers. If an attacker is able to conduct a man-in-the-middle\nattack against a Thunderbird instance that is using a proxy server, they\nmay be able to steal sensitive information from the site Thunderbird is\ndisplaying. (CVE-2009-1836)\n\nNote: JavaScript support is disabled by default in Thunderbird. None of the\nabove issues are exploitable unless JavaScript is enabled.\n\nAll Thunderbird users should upgrade to this updated package, which\nresolves these issues. All running instances of Thunderbird must be\nrestarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1126", "url": "https://access.redhat.com/errata/RHSA-2009:1126" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#moderate", "url": "https://access.redhat.com/security/updates/classification/#moderate" }, { "category": "external", "summary": "456202", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=456202" }, { "category": "external", "summary": "496253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496253" }, { "category": "external", "summary": "496256", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496256" }, { "category": "external", "summary": "496262", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496262" }, { "category": "external", "summary": "496263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496263" }, { "category": "external", "summary": "496266", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496266" }, { "category": "external", "summary": "496267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496267" }, { "category": "external", "summary": "503568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503568" }, { "category": "external", "summary": "503570", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503570" }, { "category": "external", "summary": "503578", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "category": "external", "summary": "503580", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503580" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1126.json" } ], "title": "Red Hat Security Advisory: thunderbird security update", "tracking": { "current_release_date": "2024-11-22T02:52:51+00:00", "generator": { "date": "2024-11-22T02:52:51+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1126", "initial_release_date": "2009-06-25T15:07:00+00:00", "revision_history": [ { "date": "2009-06-25T15:07:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-06-25T11:07:24+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T02:52:51+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_productivity:5" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "thunderbird-0:2.0.0.22-2.el5_3.src", "product": { "name": "thunderbird-0:2.0.0.22-2.el5_3.src", "product_id": "thunderbird-0:2.0.0.22-2.el5_3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/thunderbird@2.0.0.22-2.el5_3?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "thunderbird-0:2.0.0.22-2.el5_3.x86_64", "product": { "name": "thunderbird-0:2.0.0.22-2.el5_3.x86_64", "product_id": "thunderbird-0:2.0.0.22-2.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/thunderbird@2.0.0.22-2.el5_3?arch=x86_64" } } }, { "category": "product_version", "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "product": { "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "product_id": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/thunderbird-debuginfo@2.0.0.22-2.el5_3?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "thunderbird-0:2.0.0.22-2.el5_3.i386", "product": { "name": "thunderbird-0:2.0.0.22-2.el5_3.i386", "product_id": "thunderbird-0:2.0.0.22-2.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/thunderbird@2.0.0.22-2.el5_3?arch=i386" } } }, { "category": "product_version", "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "product": { "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "product_id": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/thunderbird-debuginfo@2.0.0.22-2.el5_3?arch=i386" } } } ], "category": "architecture", "name": "i386" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "thunderbird-0:2.0.0.22-2.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386" }, "product_reference": "thunderbird-0:2.0.0.22-2.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-0:2.0.0.22-2.el5_3.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:thunderbird-0:2.0.0.22-2.el5_3.src" }, "product_reference": "thunderbird-0:2.0.0.22-2.el5_3.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-0:2.0.0.22-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64" }, "product_reference": "thunderbird-0:2.0.0.22-2.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386" }, "product_reference": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" }, "product_reference": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-0:2.0.0.22-2.el5_3.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386" }, "product_reference": "thunderbird-0:2.0.0.22-2.el5_3.i386", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-0:2.0.0.22-2.el5_3.src as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src" }, "product_reference": "thunderbird-0:2.0.0.22-2.el5_3.src", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-0:2.0.0.22-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64" }, "product_reference": "thunderbird-0:2.0.0.22-2.el5_3.x86_64", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386" }, "product_reference": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "relates_to_product_reference": "5Server-DPAS" }, { "category": "default_component_of", "full_product_name": { "name": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)", "product_id": "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" }, "product_reference": "thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "relates_to_product_reference": "5Server-DPAS" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-1303", "discovery_date": "2009-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "496253" } ], "notes": [ { "category": "description", "text": "The browser engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors related to nsSVGElement::BindToTree.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox 2 and 3 Layout engine crash", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1303" }, { "category": "external", "summary": "RHBZ#496253", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496253" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1303", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1303" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1303", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1303" } ], "release_date": "2009-04-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox 2 and 3 Layout engine crash" }, { "cve": "CVE-2009-1305", "discovery_date": "2009-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "496256" } ], "notes": [ { "category": "description", "text": "The JavaScript engine in Mozilla Firefox before 3.0.9, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.16 allows remote attackers to cause a denial of service (application crash) and possibly trigger memory corruption via vectors involving JSOP_DEFVAR and properties that lack the JSPROP_PERMANENT attribute.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox 2 and 3 JavaScript engine crash", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1305" }, { "category": "external", "summary": "RHBZ#496256", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496256" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1305", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1305" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1305", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1305" } ], "release_date": "2009-04-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox 2 and 3 JavaScript engine crash" }, { "cve": "CVE-2009-1306", "discovery_date": "2009-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "496262" } ], "notes": [ { "category": "description", "text": "The jar: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not follow the Content-Disposition header of the inner URI, which allows remote attackers to conduct cross-site scripting (XSS) attacks and possibly other attacks via an uploaded .jar file with a \"Content-Disposition: attachment\" designation.", "title": "Vulnerability description" }, { "category": "summary", "text": "jar: scheme ignores the content-disposition: header on the inner URI", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1306" }, { "category": "external", "summary": "RHBZ#496262", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496262" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1306", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1306" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1306", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1306" } ], "release_date": "2009-04-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "jar: scheme ignores the content-disposition: header on the inner URI" }, { "cve": "CVE-2009-1307", "discovery_date": "2009-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "496263" } ], "notes": [ { "category": "description", "text": "The view-source: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not properly implement the Same Origin Policy, which allows remote attackers to (1) bypass crossdomain.xml restrictions and connect to arbitrary web sites via a Flash file; (2) read, create, or modify Local Shared Objects via a Flash file; or (3) bypass unspecified restrictions and render content via vectors involving a jar: URI.", "title": "Vulnerability description" }, { "category": "summary", "text": "view-source: protocol", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1307" }, { "category": "external", "summary": "RHBZ#496263", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496263" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1307", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1307" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1307", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1307" } ], "release_date": "2009-04-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "view-source: protocol" }, { "cve": "CVE-2009-1308", "cwe": { "id": "CWE-79", "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)" }, "discovery_date": "2009-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "496266" } ], "notes": [ { "category": "description", "text": "Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey allows remote attackers to inject arbitrary web script or HTML via vectors involving XBL JavaScript bindings and remote stylesheets, as exploited in the wild by a March 2009 eBay listing.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox XSS hazard using third-party stylesheets and XBL bindings", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1308" }, { "category": "external", "summary": "RHBZ#496266", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496266" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1308", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1308" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1308", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1308" } ], "release_date": "2009-04-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "Firefox XSS hazard using third-party stylesheets and XBL bindings" }, { "cve": "CVE-2009-1309", "discovery_date": "2009-04-13T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "496267" } ], "notes": [ { "category": "description", "text": "Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey do not properly implement the Same Origin Policy for (1) XMLHttpRequest, involving a mismatch for a document\u0027s principal, and (2) XPCNativeWrapper.toString, involving an incorrect __proto__ scope, which allows remote attackers to conduct cross-site scripting (XSS) attacks and possibly other attacks via a crafted document.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1309" }, { "category": "external", "summary": "RHBZ#496267", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=496267" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1309", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1309" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1309", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1309" } ], "release_date": "2009-04-21T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "Firefox Same-origin violations in XMLHttpRequest and XPCNativeWrapper.toString" }, { "cve": "CVE-2009-1392", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503568" } ], "notes": [ { "category": "description", "text": "The browser engine in Mozilla Firefox 3 before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1) nsEventStateManager::GetContentState and nsNativeTheme::CheckBooleanAttr; (2) UnhookTextRunFromFrames and ClearAllTextRunReferences; (3) nsTextFrame::ClearTextRun; (4) IsPercentageAware; (5) PL_DHashTableFinish; (6) nsListBoxBodyFrame::GetNextItemBox; (7) AtomTableClearEntry, related to the atom table, DOM mutation events, and Unicode surrogates; (8) nsHTMLEditor::HideResizers; and (9) nsWindow::SetCursor, related to changing the cursor; and other vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox browser engine crashes", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1392" }, { "category": "external", "summary": "RHBZ#503568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503568" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1392", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1392" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1392", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1392" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox browser engine crashes" }, { "cve": "CVE-2009-1833", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503570" } ], "notes": [ { "category": "description", "text": "The JavaScript engine in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1) js_LeaveSharpObject, (2) ParseXMLSource, and (3) a certain assertion in jsinterp.c; and other vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox JavaScript engine crashes", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1833" }, { "category": "external", "summary": "RHBZ#503570", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503570" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1833", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1833" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1833", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1833" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox JavaScript engine crashes" }, { "cve": "CVE-2009-1836", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503578" } ], "notes": [ { "category": "description", "text": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox SSL tampering via non-200 responses to proxy CONNECT requests", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1836" }, { "category": "external", "summary": "RHBZ#503578", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1836", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1836" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1836", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1836" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "Firefox SSL tampering via non-200 responses to proxy CONNECT requests" }, { "cve": "CVE-2009-1838", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503580" } ], "notes": [ { "category": "description", "text": "The garbage-collection implementation in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 sets an element\u0027s owner document to null in unspecified circumstances, which allows remote attackers to execute arbitrary JavaScript with chrome privileges via a crafted event handler, related to an incorrect context for this event handler.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox arbitrary code execution flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1838" }, { "category": "external", "summary": "RHBZ#503580", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503580" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1838", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1838" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1838", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1838" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox arbitrary code execution flaw" }, { "cve": "CVE-2009-2210", "discovery_date": "2009-06-22T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "507812" } ], "notes": [ { "category": "description", "text": "Mozilla Thunderbird before 2.0.0.22 and SeaMonkey before 1.1.17 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a multipart/alternative e-mail message containing a text/enhanced part that triggers access to an incorrect object type.", "title": "Vulnerability description" }, { "category": "summary", "text": "Thunderbird mail crash", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-2210" }, { "category": "external", "summary": "RHBZ#507812", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=507812" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-2210", "url": "https://www.cve.org/CVERecord?id=CVE-2009-2210" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-2210", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-2210" } ], "release_date": "2009-06-22T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-25T15:07:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1126" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Client:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-0:2.0.0.22-2.el5_3.src", "5Client:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Client:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.src", "5Server-DPAS:thunderbird-0:2.0.0.22-2.el5_3.x86_64", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.i386", "5Server-DPAS:thunderbird-debuginfo-0:2.0.0.22-2.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "Thunderbird mail crash" } ] }
rhsa-2009_1095
Vulnerability from csaf_redhat
Published
2009-06-11 22:41
Modified
2024-11-22 02:51
Summary
Red Hat Security Advisory: firefox security update
Notes
Topic
Updated firefox packages that fix several security issues are now available
for Red Hat Enterprise Linux 4 and 5.
This update has been rated as having critical security impact by the Red
Hat Security Response Team.
Details
Mozilla Firefox is an open source Web browser. XULRunner provides the XUL
Runtime environment for Mozilla Firefox.
Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code as the user running Firefox.
(CVE-2009-1392, CVE-2009-1832, CVE-2009-1833, CVE-2009-1837, CVE-2009-1838,
CVE-2009-1841)
Multiple flaws were found in the processing of malformed, local file
content. If a user loaded malicious, local content via the file:// URL, it
was possible for that content to access other local data. (CVE-2009-1835,
CVE-2009-1839)
A script, privilege elevation flaw was found in the way Firefox loaded XML
User Interface Language (XUL) scripts. Firefox and certain add-ons could
load malicious content when certain policy checks did not happen.
(CVE-2009-1840)
A flaw was found in the way Firefox displayed certain Unicode characters in
International Domain Names (IDN). If an IDN contained invalid characters,
they may have been displayed as spaces, making it appear to the user that
they were visiting a trusted site. (CVE-2009-1834)
A flaw was found in the way Firefox handled error responses returned from
proxy servers. If an attacker is able to conduct a man-in-the-middle attack
against a Firefox instance that is using a proxy server, they may be able
to steal sensitive information from the site the user is visiting.
(CVE-2009-1836)
For technical details regarding these flaws, refer to the Mozilla security
advisories for Firefox 3.0.11. You can find a link to the Mozilla
advisories in the References section of this errata.
All Firefox users should upgrade to these updated packages, which contain
Firefox version 3.0.11, which corrects these issues. After installing the
update, Firefox must be restarted for the changes to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated firefox packages that fix several security issues are now available\nfor Red Hat Enterprise Linux 4 and 5.\n\nThis update has been rated as having critical security impact by the Red\nHat Security Response Team.", "title": "Topic" }, { "category": "general", "text": "Mozilla Firefox is an open source Web browser. XULRunner provides the XUL\nRuntime environment for Mozilla Firefox.\n\nSeveral flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Firefox to crash or,\npotentially, execute arbitrary code as the user running Firefox.\n(CVE-2009-1392, CVE-2009-1832, CVE-2009-1833, CVE-2009-1837, CVE-2009-1838,\nCVE-2009-1841)\n\nMultiple flaws were found in the processing of malformed, local file\ncontent. If a user loaded malicious, local content via the file:// URL, it\nwas possible for that content to access other local data. (CVE-2009-1835,\nCVE-2009-1839)\n\nA script, privilege elevation flaw was found in the way Firefox loaded XML\nUser Interface Language (XUL) scripts. Firefox and certain add-ons could\nload malicious content when certain policy checks did not happen.\n(CVE-2009-1840)\n\nA flaw was found in the way Firefox displayed certain Unicode characters in\nInternational Domain Names (IDN). If an IDN contained invalid characters,\nthey may have been displayed as spaces, making it appear to the user that\nthey were visiting a trusted site. (CVE-2009-1834)\n\nA flaw was found in the way Firefox handled error responses returned from\nproxy servers. If an attacker is able to conduct a man-in-the-middle attack\nagainst a Firefox instance that is using a proxy server, they may be able\nto steal sensitive information from the site the user is visiting.\n(CVE-2009-1836)\n\nFor technical details regarding these flaws, refer to the Mozilla security\nadvisories for Firefox 3.0.11. You can find a link to the Mozilla\nadvisories in the References section of this errata.\n\nAll Firefox users should upgrade to these updated packages, which contain\nFirefox version 3.0.11, which corrects these issues. After installing the\nupdate, Firefox must be restarted for the changes to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2009:1095", "url": "https://access.redhat.com/errata/RHSA-2009:1095" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.11", "url": "http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.11" }, { "category": "external", "summary": "488570", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=488570" }, { "category": "external", "summary": "503568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503568" }, { "category": "external", "summary": "503569", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503569" }, { "category": "external", "summary": "503570", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503570" }, { "category": "external", "summary": "503573", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503573" }, { "category": "external", "summary": "503576", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503576" }, { "category": "external", "summary": "503578", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "category": "external", "summary": "503579", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503579" }, { "category": "external", "summary": "503580", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503580" }, { "category": "external", "summary": "503581", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503581" }, { "category": "external", "summary": "503582", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503582" }, { "category": "external", "summary": "503583", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503583" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2009/rhsa-2009_1095.json" } ], "title": "Red Hat Security Advisory: firefox security update", "tracking": { "current_release_date": "2024-11-22T02:51:15+00:00", "generator": { "date": "2024-11-22T02:51:15+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2009:1095", "initial_release_date": "2009-06-11T22:41:00+00:00", "revision_history": [ { "date": "2009-06-11T22:41:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2009-06-11T18:45:59+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-22T02:51:15+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux (v. 5 server)", "product": { "name": "Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product": { "name": "Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:5::client_workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux AS version 4", "product": { "name": "Red Hat Enterprise Linux AS version 4", "product_id": "4AS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::as" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop version 4", "product": { "name": "Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::desktop" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux ES version 4", "product": { "name": "Red Hat Enterprise Linux ES version 4", "product_id": "4ES", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::es" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux WS version 4", "product": { "name": "Red Hat Enterprise Linux WS version 4", "product_id": "4WS", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:4::ws" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "product": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "product_id": "firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-2.el5_3?arch=x86_64" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-2.el5_3.x86_64", "product": { "name": "firefox-0:3.0.11-2.el5_3.x86_64", "product_id": "firefox-0:3.0.11-2.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-2.el5_3?arch=x86_64" } } }, { "category": "product_version", "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "product": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "product_id": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel@1.9.0.11-3.el5_3?arch=x86_64" } } }, { "category": "product_version", "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "product": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "product_id": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-debuginfo@1.9.0.11-3.el5_3?arch=x86_64" } } }, { "category": "product_version", "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "product": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "product_id": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel-unstable@1.9.0.11-3.el5_3?arch=x86_64" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.x86_64", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.x86_64", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=x86_64" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-4.el4.x86_64", "product": { "name": "firefox-0:3.0.11-4.el4.x86_64", "product_id": "firefox-0:3.0.11-4.el4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-4.el4?arch=x86_64" } } }, { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-4.el4.x86_64", "product": { "name": "firefox-debuginfo-0:3.0.11-4.el4.x86_64", "product_id": "firefox-debuginfo-0:3.0.11-4.el4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-4.el4?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-2.el5_3.i386", "product": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.i386", "product_id": "firefox-debuginfo-0:3.0.11-2.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-2.el5_3?arch=i386" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-2.el5_3.i386", "product": { "name": "firefox-0:3.0.11-2.el5_3.i386", "product_id": "firefox-0:3.0.11-2.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-2.el5_3?arch=i386" } } }, { "category": "product_version", "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "product": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "product_id": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel@1.9.0.11-3.el5_3?arch=i386" } } }, { "category": "product_version", "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "product": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "product_id": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-debuginfo@1.9.0.11-3.el5_3?arch=i386" } } }, { "category": "product_version", "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "product": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "product_id": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel-unstable@1.9.0.11-3.el5_3?arch=i386" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.i386", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.i386", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=i386" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-4.el4.i386", "product": { "name": "firefox-0:3.0.11-4.el4.i386", "product_id": "firefox-0:3.0.11-4.el4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-4.el4?arch=i386" } } }, { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-4.el4.i386", "product": { "name": "firefox-debuginfo-0:3.0.11-4.el4.i386", "product_id": "firefox-debuginfo-0:3.0.11-4.el4.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-4.el4?arch=i386" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "firefox-0:3.0.11-2.el5_3.src", "product": { "name": "firefox-0:3.0.11-2.el5_3.src", "product_id": "firefox-0:3.0.11-2.el5_3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-2.el5_3?arch=src" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.src", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.src", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=src" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-4.el4.src", "product": { "name": "firefox-0:3.0.11-4.el4.src", "product_id": "firefox-0:3.0.11-4.el4.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-4.el4?arch=src" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "product": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "product_id": "firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-2.el5_3?arch=ia64" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-2.el5_3.ia64", "product": { "name": "firefox-0:3.0.11-2.el5_3.ia64", "product_id": "firefox-0:3.0.11-2.el5_3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-2.el5_3?arch=ia64" } } }, { "category": "product_version", "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "product": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "product_id": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel@1.9.0.11-3.el5_3?arch=ia64" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.ia64", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ia64", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=ia64" } } }, { "category": "product_version", "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "product": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "product_id": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-debuginfo@1.9.0.11-3.el5_3?arch=ia64" } } }, { "category": "product_version", "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "product": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "product_id": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel-unstable@1.9.0.11-3.el5_3?arch=ia64" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-4.el4.ia64", "product": { "name": "firefox-0:3.0.11-4.el4.ia64", "product_id": "firefox-0:3.0.11-4.el4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-4.el4?arch=ia64" } } }, { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-4.el4.ia64", "product": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ia64", "product_id": "firefox-debuginfo-0:3.0.11-4.el4.ia64", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-4.el4?arch=ia64" } } } ], "category": "architecture", "name": "ia64" }, { "branches": [ { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "product": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "product_id": "firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-2.el5_3?arch=ppc" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-2.el5_3.ppc", "product": { "name": "firefox-0:3.0.11-2.el5_3.ppc", "product_id": "firefox-0:3.0.11-2.el5_3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-2.el5_3?arch=ppc" } } }, { "category": "product_version", "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "product": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "product_id": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel@1.9.0.11-3.el5_3?arch=ppc" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=ppc" } } }, { "category": "product_version", "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "product": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "product_id": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-debuginfo@1.9.0.11-3.el5_3?arch=ppc" } } }, { "category": "product_version", "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "product": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "product_id": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel-unstable@1.9.0.11-3.el5_3?arch=ppc" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-4.el4.ppc", "product": { "name": "firefox-0:3.0.11-4.el4.ppc", "product_id": "firefox-0:3.0.11-4.el4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-4.el4?arch=ppc" } } }, { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-4.el4.ppc", "product": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ppc", "product_id": "firefox-debuginfo-0:3.0.11-4.el4.ppc", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-4.el4?arch=ppc" } } } ], "category": "architecture", "name": "ppc" }, { "branches": [ { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "product": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "product_id": "firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-2.el5_3?arch=s390x" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-2.el5_3.s390x", "product": { "name": "firefox-0:3.0.11-2.el5_3.s390x", "product_id": "firefox-0:3.0.11-2.el5_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-2.el5_3?arch=s390x" } } }, { "category": "product_version", "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "product": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "product_id": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel@1.9.0.11-3.el5_3?arch=s390x" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.s390x", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390x", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=s390x" } } }, { "category": "product_version", "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "product": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "product_id": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-debuginfo@1.9.0.11-3.el5_3?arch=s390x" } } }, { "category": "product_version", "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "product": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "product_id": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel-unstable@1.9.0.11-3.el5_3?arch=s390x" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-4.el4.s390x", "product": { "name": "firefox-0:3.0.11-4.el4.s390x", "product_id": "firefox-0:3.0.11-4.el4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-4.el4?arch=s390x" } } }, { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-4.el4.s390x", "product": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390x", "product_id": "firefox-debuginfo-0:3.0.11-4.el4.s390x", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-4.el4?arch=s390x" } } } ], "category": "architecture", "name": "s390x" }, { "branches": [ { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390", "product": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390", "product_id": "firefox-debuginfo-0:3.0.11-2.el5_3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-2.el5_3?arch=s390" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-2.el5_3.s390", "product": { "name": "firefox-0:3.0.11-2.el5_3.s390", "product_id": "firefox-0:3.0.11-2.el5_3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-2.el5_3?arch=s390" } } }, { "category": "product_version", "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "product": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "product_id": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel@1.9.0.11-3.el5_3?arch=s390" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.s390", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=s390" } } }, { "category": "product_version", "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "product": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "product_id": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-debuginfo@1.9.0.11-3.el5_3?arch=s390" } } }, { "category": "product_version", "name": "firefox-0:3.0.11-4.el4.s390", "product": { "name": "firefox-0:3.0.11-4.el4.s390", "product_id": "firefox-0:3.0.11-4.el4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox@3.0.11-4.el4?arch=s390" } } }, { "category": "product_version", "name": "firefox-debuginfo-0:3.0.11-4.el4.s390", "product": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390", "product_id": "firefox-debuginfo-0:3.0.11-4.el4.s390", "product_identification_helper": { "purl": "pkg:rpm/redhat/firefox-debuginfo@3.0.11-4.el4?arch=s390" } } } ], "category": "architecture", "name": "s390" }, { "branches": [ { "category": "product_version", "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "product": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "product_id": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-devel@1.9.0.11-3.el5_3?arch=ppc64" } } }, { "category": "product_version", "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc64", "product": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc64", "product_id": "xulrunner-0:1.9.0.11-3.el5_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner@1.9.0.11-3.el5_3?arch=ppc64" } } }, { "category": "product_version", "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "product": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "product_id": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "product_identification_helper": { "purl": "pkg:rpm/redhat/xulrunner-debuginfo@1.9.0.11-3.el5_3?arch=ppc64" } } } ], "category": "architecture", "name": "ppc64" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.src as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-0:3.0.11-4.el4.src" }, "product_reference": "firefox-0:3.0.11-4.el4.src", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", "product_id": "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4AS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.src as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-0:3.0.11-4.el4.src" }, "product_reference": "firefox-0:3.0.11-4.el4.src", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", "product_id": "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4Desktop" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.src as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-0:3.0.11-4.el4.src" }, "product_reference": "firefox-0:3.0.11-4.el4.src", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", "product_id": "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4ES" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.src as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-0:3.0.11-4.el4.src" }, "product_reference": "firefox-0:3.0.11-4.el4.src", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.i386", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ia64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.ppc", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.s390x", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-4.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", "product_id": "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64" }, "product_reference": "firefox-debuginfo-0:3.0.11-4.el4.x86_64", "relates_to_product_reference": "4WS" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.src as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.src", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop Workstation (v. 5 client)", "product_id": "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client-Workstation" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-0:3.0.11-2.el5_3.i386" }, "product_reference": "firefox-0:3.0.11-2.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-0:3.0.11-2.el5_3.ia64" }, "product_reference": "firefox-0:3.0.11-2.el5_3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-0:3.0.11-2.el5_3.ppc" }, "product_reference": "firefox-0:3.0.11-2.el5_3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-0:3.0.11-2.el5_3.s390" }, "product_reference": "firefox-0:3.0.11-2.el5_3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-0:3.0.11-2.el5_3.s390x" }, "product_reference": "firefox-0:3.0.11-2.el5_3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-0:3.0.11-2.el5_3.src" }, "product_reference": "firefox-0:3.0.11-2.el5_3.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-0:3.0.11-2.el5_3.x86_64" }, "product_reference": "firefox-0:3.0.11-2.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.src" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.src", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)", "product_id": "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Client" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-0:3.0.11-2.el5_3.i386" }, "product_reference": "firefox-0:3.0.11-2.el5_3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-0:3.0.11-2.el5_3.ia64" }, "product_reference": "firefox-0:3.0.11-2.el5_3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-0:3.0.11-2.el5_3.ppc" }, "product_reference": "firefox-0:3.0.11-2.el5_3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-0:3.0.11-2.el5_3.s390" }, "product_reference": "firefox-0:3.0.11-2.el5_3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-0:3.0.11-2.el5_3.s390x" }, "product_reference": "firefox-0:3.0.11-2.el5_3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-0:3.0.11-2.el5_3.src" }, "product_reference": "firefox-0:3.0.11-2.el5_3.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-0:3.0.11-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-0:3.0.11-2.el5_3.x86_64" }, "product_reference": "firefox-0:3.0.11-2.el5_3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "firefox-debuginfo-0:3.0.11-2.el5_3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64" }, "product_reference": "firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.src as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.src" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.src", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "relates_to_product_reference": "5Server" }, { "category": "default_component_of", "full_product_name": { "name": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64 as a component of Red Hat Enterprise Linux (v. 5 server)", "product_id": "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" }, "product_reference": "xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "relates_to_product_reference": "5Server" } ] }, "vulnerabilities": [ { "cve": "CVE-2009-1392", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503568" } ], "notes": [ { "category": "description", "text": "The browser engine in Mozilla Firefox 3 before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1) nsEventStateManager::GetContentState and nsNativeTheme::CheckBooleanAttr; (2) UnhookTextRunFromFrames and ClearAllTextRunReferences; (3) nsTextFrame::ClearTextRun; (4) IsPercentageAware; (5) PL_DHashTableFinish; (6) nsListBoxBodyFrame::GetNextItemBox; (7) AtomTableClearEntry, related to the atom table, DOM mutation events, and Unicode surrogates; (8) nsHTMLEditor::HideResizers; and (9) nsWindow::SetCursor, related to changing the cursor; and other vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox browser engine crashes", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1392" }, { "category": "external", "summary": "RHBZ#503568", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503568" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1392", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1392" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1392", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1392" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox browser engine crashes" }, { "cve": "CVE-2009-1832", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503569" } ], "notes": [ { "category": "description", "text": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors involving \"double frame construction.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox double frame construction flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1832" }, { "category": "external", "summary": "RHBZ#503569", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503569" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1832", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1832" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1832", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1832" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox double frame construction flaw" }, { "cve": "CVE-2009-1833", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503570" } ], "notes": [ { "category": "description", "text": "The JavaScript engine in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to (1) js_LeaveSharpObject, (2) ParseXMLSource, and (3) a certain assertion in jsinterp.c; and other vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox JavaScript engine crashes", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1833" }, { "category": "external", "summary": "RHBZ#503570", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503570" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1833", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1833" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1833", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1833" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox JavaScript engine crashes" }, { "cve": "CVE-2009-1834", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503573" } ], "notes": [ { "category": "description", "text": "Visual truncation vulnerability in netwerk/dns/src/nsIDNService.cpp in Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 allows remote attackers to spoof the location bar via an IDN with invalid Unicode characters that are displayed as whitespace, as demonstrated by the \\u115A through \\u115E characters.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox URL spoofing with invalid unicode characters", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1834" }, { "category": "external", "summary": "RHBZ#503573", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503573" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1834", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1834" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1834", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1834" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "Firefox URL spoofing with invalid unicode characters" }, { "cve": "CVE-2009-1835", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503576" } ], "notes": [ { "category": "description", "text": "Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 associate local documents with external domain names located after the file:// substring in a URL, which allows user-assisted remote attackers to read arbitrary cookies via a crafted HTML document, as demonstrated by a URL with file://example.com/C:/ at the beginning.", "title": "Vulnerability description" }, { "category": "summary", "text": "file: resources", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1835" }, { "category": "external", "summary": "RHBZ#503576", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503576" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1835", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1835" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1835", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1835" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "file: resources" }, { "cve": "CVE-2009-1836", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503578" } ], "notes": [ { "category": "description", "text": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox SSL tampering via non-200 responses to proxy CONNECT requests", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1836" }, { "category": "external", "summary": "RHBZ#503578", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1836", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1836" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1836", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1836" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "Firefox SSL tampering via non-200 responses to proxy CONNECT requests" }, { "cve": "CVE-2009-1837", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503579" } ], "notes": [ { "category": "description", "text": "Race condition in the NPObjWrapper_NewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for memory associated with a destroyed Java object.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox Race condition while accessing the private data of a NPObject JS wrapper class object", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1837" }, { "category": "external", "summary": "RHBZ#503579", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503579" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1837", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1837" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1837", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1837" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox Race condition while accessing the private data of a NPObject JS wrapper class object" }, { "cve": "CVE-2009-1838", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503580" } ], "notes": [ { "category": "description", "text": "The garbage-collection implementation in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 sets an element\u0027s owner document to null in unspecified circumstances, which allows remote attackers to execute arbitrary JavaScript with chrome privileges via a crafted event handler, related to an incorrect context for this event handler.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox arbitrary code execution flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1838" }, { "category": "external", "summary": "RHBZ#503580", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503580" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1838", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1838" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1838", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1838" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox arbitrary code execution flaw" }, { "cve": "CVE-2009-1839", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503581" } ], "notes": [ { "category": "description", "text": "Mozilla Firefox 3 before 3.0.11 associates an incorrect principal with a file: URL loaded through the location bar, which allows user-assisted remote attackers to bypass intended access restrictions and read files via a crafted HTML document, aka a \"file-URL-to-file-URL scripting\" attack.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox information disclosure flaw", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1839" }, { "category": "external", "summary": "RHBZ#503581", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503581" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1839", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1839" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1839", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1839" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.2, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "Firefox information disclosure flaw" }, { "cve": "CVE-2009-1840", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503582" } ], "notes": [ { "category": "description", "text": "Mozilla Firefox before 3.0.11, Thunderbird, and SeaMonkey do not check content policy before loading a script file into a XUL document, which allows remote attackers to bypass intended access restrictions via a crafted HTML document, as demonstrated by a \"web bug\" in an e-mail message, or web script or an advertisement in a web page.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox XUL scripts skip some security checks", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1840" }, { "category": "external", "summary": "RHBZ#503582", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503582" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1840", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1840" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1840", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1840" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:A/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "Firefox XUL scripts skip some security checks" }, { "cve": "CVE-2009-1841", "discovery_date": "2009-05-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "503583" } ], "notes": [ { "category": "description", "text": "js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to execute arbitrary web script with the privileges of a chrome object, as demonstrated by the browser sidebar and the FeedWriter.", "title": "Vulnerability description" }, { "category": "summary", "text": "Firefox JavaScript arbitrary code execution", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2009-1841" }, { "category": "external", "summary": "RHBZ#503583", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503583" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2009-1841", "url": "https://www.cve.org/CVERecord?id=CVE-2009-1841" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2009-1841", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1841" } ], "release_date": "2009-06-11T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2009-06-11T22:41:00+00:00", "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.\n\nThis update is available via Red Hat Network. Details on how to use\nthe Red Hat Network to apply this update are available at\nhttp://kbase.redhat.com/faq/docs/DOC-11259", "product_ids": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2009:1095" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "4AS:firefox-0:3.0.11-4.el4.i386", "4AS:firefox-0:3.0.11-4.el4.ia64", "4AS:firefox-0:3.0.11-4.el4.ppc", "4AS:firefox-0:3.0.11-4.el4.s390", "4AS:firefox-0:3.0.11-4.el4.s390x", "4AS:firefox-0:3.0.11-4.el4.src", "4AS:firefox-0:3.0.11-4.el4.x86_64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4AS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4AS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4AS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-0:3.0.11-4.el4.i386", "4Desktop:firefox-0:3.0.11-4.el4.ia64", "4Desktop:firefox-0:3.0.11-4.el4.ppc", "4Desktop:firefox-0:3.0.11-4.el4.s390", "4Desktop:firefox-0:3.0.11-4.el4.s390x", "4Desktop:firefox-0:3.0.11-4.el4.src", "4Desktop:firefox-0:3.0.11-4.el4.x86_64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.i386", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4Desktop:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4ES:firefox-0:3.0.11-4.el4.i386", "4ES:firefox-0:3.0.11-4.el4.ia64", "4ES:firefox-0:3.0.11-4.el4.ppc", "4ES:firefox-0:3.0.11-4.el4.s390", "4ES:firefox-0:3.0.11-4.el4.s390x", "4ES:firefox-0:3.0.11-4.el4.src", "4ES:firefox-0:3.0.11-4.el4.x86_64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.i386", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4ES:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390", "4ES:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4ES:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "4WS:firefox-0:3.0.11-4.el4.i386", "4WS:firefox-0:3.0.11-4.el4.ia64", "4WS:firefox-0:3.0.11-4.el4.ppc", "4WS:firefox-0:3.0.11-4.el4.s390", "4WS:firefox-0:3.0.11-4.el4.s390x", "4WS:firefox-0:3.0.11-4.el4.src", "4WS:firefox-0:3.0.11-4.el4.x86_64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.i386", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ia64", "4WS:firefox-debuginfo-0:3.0.11-4.el4.ppc", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390", "4WS:firefox-debuginfo-0:3.0.11-4.el4.s390x", "4WS:firefox-debuginfo-0:3.0.11-4.el4.x86_64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client-Workstation:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client-Workstation:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Client:firefox-0:3.0.11-2.el5_3.i386", "5Client:firefox-0:3.0.11-2.el5_3.ia64", "5Client:firefox-0:3.0.11-2.el5_3.ppc", "5Client:firefox-0:3.0.11-2.el5_3.s390", "5Client:firefox-0:3.0.11-2.el5_3.s390x", "5Client:firefox-0:3.0.11-2.el5_3.src", "5Client:firefox-0:3.0.11-2.el5_3.x86_64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Client:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-0:1.9.0.11-3.el5_3.src", "5Client:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Client:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64", "5Server:firefox-0:3.0.11-2.el5_3.i386", "5Server:firefox-0:3.0.11-2.el5_3.ia64", "5Server:firefox-0:3.0.11-2.el5_3.ppc", "5Server:firefox-0:3.0.11-2.el5_3.s390", "5Server:firefox-0:3.0.11-2.el5_3.s390x", "5Server:firefox-0:3.0.11-2.el5_3.src", "5Server:firefox-0:3.0.11-2.el5_3.x86_64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.i386", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ia64", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.ppc", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.s390x", "5Server:firefox-debuginfo-0:3.0.11-2.el5_3.x86_64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-0:1.9.0.11-3.el5_3.src", "5Server:xulrunner-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-debuginfo-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.ppc64", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-0:1.9.0.11-3.el5_3.x86_64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.i386", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ia64", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.ppc", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.s390x", "5Server:xulrunner-devel-unstable-0:1.9.0.11-3.el5_3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "Firefox JavaScript arbitrary code execution" } ] }
gsd-2009-1836
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2009-1836", "description": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack.", "id": "GSD-2009-1836", "references": [ "https://www.suse.com/security/cve/CVE-2009-1836.html", "https://www.debian.org/security/2009/dsa-1830", "https://www.debian.org/security/2009/dsa-1820", "https://access.redhat.com/errata/RHSA-2009:1126", "https://access.redhat.com/errata/RHSA-2009:1095", "https://linux.oracle.com/cve/CVE-2009-1836.html" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2009-1836" ], "details": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack.", "id": "GSD-2009-1836", "modified": "2023-12-13T01:19:47.870263Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-1836", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_affected": "=", "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "http://secunia.com/advisories/35331", "refsource": "MISC", "url": "http://secunia.com/advisories/35331" }, { "name": "http://secunia.com/advisories/35415", "refsource": "MISC", "url": "http://secunia.com/advisories/35415" }, { "name": "http://secunia.com/advisories/35431", "refsource": "MISC", "url": "http://secunia.com/advisories/35431" }, { "name": "http://secunia.com/advisories/35439", "refsource": "MISC", "url": "http://secunia.com/advisories/35439" }, { "name": "http://secunia.com/advisories/35440", "refsource": "MISC", "url": "http://secunia.com/advisories/35440" }, { "name": "http://secunia.com/advisories/35468", "refsource": "MISC", "url": "http://secunia.com/advisories/35468" }, { "name": "http://secunia.com/advisories/35561", "refsource": "MISC", "url": "http://secunia.com/advisories/35561" }, { "name": "http://secunia.com/advisories/35602", "refsource": "MISC", "url": "http://secunia.com/advisories/35602" }, { "name": "http://secunia.com/advisories/35882", "refsource": "MISC", "url": "http://secunia.com/advisories/35882" }, { "name": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468", "refsource": "MISC", "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468" }, { "name": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408", "refsource": "MISC", "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408" }, { "name": "http://www.debian.org/security/2009/dsa-1820", "refsource": "MISC", "url": "http://www.debian.org/security/2009/dsa-1820" }, { "name": "http://www.debian.org/security/2009/dsa-1830", "refsource": "MISC", "url": "http://www.debian.org/security/2009/dsa-1830" }, { "name": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:141", "refsource": "MISC", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:141" }, { "name": "http://www.securityfocus.com/bid/35326", "refsource": "MISC", "url": "http://www.securityfocus.com/bid/35326" }, { "name": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275", "refsource": "MISC", "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275" }, { "name": "http://www.vupen.com/english/advisories/2009/1572", "refsource": "MISC", "url": "http://www.vupen.com/english/advisories/2009/1572" }, { "name": "https://rhn.redhat.com/errata/RHSA-2009-1095.html", "refsource": "MISC", "url": "https://rhn.redhat.com/errata/RHSA-2009-1095.html" }, { "name": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html", "refsource": "MISC", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html" }, { "name": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html", "refsource": "MISC", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html" }, { "name": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html", "refsource": "MISC", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html" }, { "name": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html", "refsource": "MISC", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html" }, { "name": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1", "refsource": "MISC", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1" }, { "name": "http://secunia.com/advisories/35536", "refsource": "MISC", "url": "http://secunia.com/advisories/35536" }, { "name": "http://www.redhat.com/support/errata/RHSA-2009-1126.html", "refsource": "MISC", "url": "http://www.redhat.com/support/errata/RHSA-2009-1126.html" }, { "name": "http://www.ubuntu.com/usn/usn-782-1", "refsource": "MISC", "url": "http://www.ubuntu.com/usn/usn-782-1" }, { "name": "http://osvdb.org/55160", "refsource": "MISC", "url": "http://osvdb.org/55160" }, { "name": "http://research.microsoft.com/apps/pubs/default.aspx?id=79323", "refsource": "MISC", "url": "http://research.microsoft.com/apps/pubs/default.aspx?id=79323" }, { "name": "http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf", "refsource": "MISC", "url": "http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf" }, { "name": "http://www.mozilla.org/security/announce/2009/mfsa2009-27.html", "refsource": "MISC", "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-27.html" }, { "name": "http://www.securityfocus.com/bid/35380", "refsource": "MISC", "url": "http://www.securityfocus.com/bid/35380" }, { "name": "http://www.securitytracker.com/id?1022396", "refsource": "MISC", "url": "http://www.securitytracker.com/id?1022396" }, { "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=479880", "refsource": "MISC", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=479880" }, { "name": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764", "refsource": "MISC", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=503578", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.5:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0:*:alpha:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0:*:beta:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1:alpha:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.5:1.1.10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.9.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0:beta_1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0:beta2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5:beta2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0:alpha:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0:*:dev:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.1.16", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.10.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0:beta5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0:alpha:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_.14:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.19:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.9.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.9_rc:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.6:*:linux:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5:beta1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0:preview_release:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5:beta2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0:beta1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:2.0_8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.0.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.0.99:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:seamonkey:1.1.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "2.0.0.19", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "3.0.10", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.9.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.9:rc:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0_8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:1.5.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0:rc3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:2.0:rc2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:mozilla:firefox:3.0beta5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert@redhat.com", "ID": "CVE-2009-1836" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "CWE-287" } ] } ] }, "references": { "reference_data": [ { "name": "http://research.microsoft.com/apps/pubs/default.aspx?id=79323", "refsource": "MISC", "tags": [], "url": "http://research.microsoft.com/apps/pubs/default.aspx?id=79323" }, { "name": "35440", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/35440" }, { "name": "https://bugzilla.redhat.com/show_bug.cgi?id=503578", "refsource": "CONFIRM", "tags": [ "Exploit" ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "name": "35431", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/35431" }, { "name": "35439", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/35439" }, { "name": "https://bugzilla.mozilla.org/show_bug.cgi?id=479880", "refsource": "CONFIRM", "tags": [ "Exploit" ], "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=479880" }, { "name": "RHSA-2009:1095", "refsource": "REDHAT", "tags": [ "Patch" ], "url": "https://rhn.redhat.com/errata/RHSA-2009-1095.html" }, { "name": "ADV-2009-1572", "refsource": "VUPEN", "tags": [ "Patch", "Vendor Advisory" ], "url": "http://www.vupen.com/english/advisories/2009/1572" }, { "name": "http://www.mozilla.org/security/announce/2009/mfsa2009-27.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-27.html" }, { "name": "http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf", "refsource": "MISC", "tags": [], "url": "http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf" }, { "name": "35331", "refsource": "SECUNIA", "tags": [ "Vendor Advisory" ], "url": "http://secunia.com/advisories/35331" }, { "name": "35326", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/35326" }, { "name": "35380", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/35380" }, { "name": "FEDORA-2009-6366", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html" }, { "name": "1022396", "refsource": "SECTRACK", "tags": [], "url": "http://www.securitytracker.com/id?1022396" }, { "name": "FEDORA-2009-6411", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html" }, { "name": "55160", "refsource": "OSVDB", "tags": [], "url": "http://osvdb.org/55160" }, { "name": "35468", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/35468" }, { "name": "DSA-1820", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2009/dsa-1820" }, { "name": "USN-782-1", "refsource": "UBUNTU", "tags": [], "url": "http://www.ubuntu.com/usn/usn-782-1" }, { "name": "RHSA-2009:1126", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2009-1126.html" }, { "name": "35536", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/35536" }, { "name": "35602", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/35602" }, { "name": "35561", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/35561" }, { "name": "MDVSA-2009:141", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:141" }, { "name": "SSA:2009-176-01", "refsource": "SLACKWARE", "tags": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408" }, { "name": "SSA:2009-178-01", "refsource": "SLACKWARE", "tags": [], "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275" }, { "name": "35415", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/35415" }, { "name": "SSA:2009-167-01", "refsource": "SLACKWARE", "tags": [], "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468" }, { "name": "FEDORA-2009-7614", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html" }, { "name": "35882", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/35882" }, { "name": "FEDORA-2009-7567", "refsource": "FEDORA", "tags": [], "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html" }, { "name": "264308", "refsource": "SUNALERT", "tags": [], "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1" }, { "name": "DSA-1830", "refsource": "DEBIAN", "tags": [], "url": "http://www.debian.org/security/2009/dsa-1830" }, { "name": "oval:org.mitre.oval:def:11764", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": true } }, "lastModifiedDate": "2018-10-30T16:25Z", "publishedDate": "2009-06-12T21:30Z" } } }
ghsa-xw48-x32w-4m9r
Vulnerability from github
Published
2022-05-02 03:29
Modified
2022-05-02 03:29
Details
Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
{ "affected": [], "aliases": [ "CVE-2009-1836" ], "database_specific": { "cwe_ids": [ "CWE-287" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2009-06-12T21:30:00Z", "severity": "MODERATE" }, "details": "Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an \"SSL tampering\" attack.", "id": "GHSA-xw48-x32w-4m9r", "modified": "2022-05-02T03:29:08Z", "published": "2022-05-02T03:29:08Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-1836" }, { "type": "WEB", "url": "https://bugzilla.mozilla.org/show_bug.cgi?id=479880" }, { "type": "WEB", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=503578" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11764" }, { "type": "WEB", "url": "https://rhn.redhat.com/errata/RHSA-2009-1095.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00444.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00504.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00574.html" }, { "type": "WEB", "url": "https://www.redhat.com/archives/fedora-package-announce/2009-June/msg00657.html" }, { "type": "WEB", "url": "http://osvdb.org/55160" }, { "type": "WEB", "url": "http://research.microsoft.com/apps/pubs/default.aspx?id=79323" }, { "type": "WEB", "url": "http://research.microsoft.com/pubs/79323/pbp-final-with-update.pdf" }, { "type": "WEB", "url": "http://secunia.com/advisories/35331" }, { "type": "WEB", "url": "http://secunia.com/advisories/35415" }, { "type": "WEB", "url": "http://secunia.com/advisories/35431" }, { "type": "WEB", "url": "http://secunia.com/advisories/35439" }, { "type": "WEB", "url": "http://secunia.com/advisories/35440" }, { "type": "WEB", "url": "http://secunia.com/advisories/35468" }, { "type": "WEB", "url": "http://secunia.com/advisories/35536" }, { "type": "WEB", "url": "http://secunia.com/advisories/35561" }, { "type": "WEB", "url": "http://secunia.com/advisories/35602" }, { "type": "WEB", "url": "http://secunia.com/advisories/35882" }, { "type": "WEB", "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.372468" }, { "type": "WEB", "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.425408" }, { "type": "WEB", "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-264308-1" }, { "type": "WEB", "url": "http://www.debian.org/security/2009/dsa-1820" }, { "type": "WEB", "url": "http://www.debian.org/security/2009/dsa-1830" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:141" }, { "type": "WEB", "url": "http://www.mozilla.org/security/announce/2009/mfsa2009-27.html" }, { "type": "WEB", "url": "http://www.redhat.com/support/errata/RHSA-2009-1126.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/35326" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/35380" }, { "type": "WEB", "url": "http://www.securitytracker.com/id?1022396" }, { "type": "WEB", "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2009\u0026m=slackware-security.454275" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/usn-782-1" }, { "type": "WEB", "url": "http://www.vupen.com/english/advisories/2009/1572" } ], "schema_version": "1.4.0", "severity": [] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.