| Beschreibung: | Description:
The remote host is missing an update to firefox
announced via advisory MDVSA-2012:163.
Security issues were identified and fixed in mozilla firefox:
Mozilla developers identified and fixed several memory safety
bugs in the browser engine used in Firefox and other Mozilla-based
products. Some of these bugs showed evidence of memory corruption under
certain circumstances, and we presume that with enough effort at least
some of these could be exploited to run arbitrary code (CVE-2012-3982).
Mozilla developer Johnny Stenback discovered that several methods
of a feature used for testing (DOMWindowUtils) are not protected by
existing security checks, allowing these methods to be called through
script by web pages. This was addressed by adding the existing security
checks to these methods (CVE-2012-3986).
Security researcher Soroush Dalili reported that a combination of
invoking full screen mode and navigating backwards in history could,
in some circumstances, cause a hang or crash due to a timing dependent
use-after-free pointer reference. This crash may be potentially
exploitable (CVE-2012-3988).
Mozilla community member Alice White reported that when the GetProperty
function is invoked through JSAPI, security checking can be bypassed
when getting cross-origin properties. This potentially allowed for
arbitrary code execution (CVE-2012-3991).
Security researcher Mariusz Mlynski reported that the location property
can be accessed by binary plugins through top.location and top can be
shadowed by Object.defineProperty as well. This can allow for possible
cross-site scripting (XSS) attacks through plugins (CVE-2012-3994).
Security researcher Mariusz Mlynski reported that when InstallTrigger
fails, it throws an error wrapped in a Chrome Object Wrapper (COW)
that fails to specify exposed properties. These can then be added
to the resulting object by an attacker, allowing access to chrome
privileged functions through script.
While investigating this issue, Mozilla security researcher
moz_bug_r_a4 found that COW did not disallow accessing of properties
from a standard prototype in some situations, even when the original
issue had been fixed (CVE-2012-3993, CVE-2012-4184).
Security researcher Mariusz Mlynski reported an issue with spoofing of
the location property. In this issue, writes to location.hash can be
used in concert with scripted history navigation to cause a specific
website to be loaded into the history object. The baseURI can then
be changed to this stored site, allowing an attacker to inject a
script or intercept posted data posted to a location specified with
a relative path (CVE-2012-3992).
Security researcher Abhishek Arya (Inferno) of the Google Chrome
Security Team discovered a series of use-after-free, buffer overflow,
and out of bounds read issues using the Address Sanitizer tool in
shipped software. These issues are potentially exploitable, allowing
for remote code execution. We would also like to thank Abhishek
for reporting two additional use-after-free flaws introduced
during Firefox 16 development and fixed before general release
(CVE-2012-3995, CVE-2012-4179, CVE-2012-4180, CVE-2012-4181,
CVE-2012-4182, CVE-2012-4183).
Security researcher Atte Kettunen from OUSPG reported several heap
memory corruption issues found using the Address Sanitizer tool. These
issues are potentially exploitable, allowing for remote code execution
(CVE-2012-4185, CVE-2012-4186, CVE-2012-4187, CVE-2012-4188).
Security researcher miaubiz used the Address Sanitizer tool to discover
a use-after-free in the IME State Manager code. This could lead to
a potentially exploitable crash (CVE-2012-3990).
The mozilla firefox packages has been upgraded to the latest version
which is unaffected by these security flaws.
Affected: Enterprise Server 5.0
Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2012:163
http://www.mozilla.org/security/announce/2012/mfsa2012-74.html
http://www.mozilla.org/security/announce/2012/mfsa2012-77.html
http://www.mozilla.org/security/announce/2012/mfsa2012-79.html
http://www.mozilla.org/security/announce/2012/mfsa2012-81.html
http://www.mozilla.org/security/announce/2012/mfsa2012-82.html
http://www.mozilla.org/security/announce/2012/mfsa2012-83.html
http://www.mozilla.org/security/announce/2012/mfsa2012-84.html
http://www.mozilla.org/security/announce/2012/mfsa2012-85.html
http://www.mozilla.org/security/announce/2012/mfsa2012-86.html
http://www.mozilla.org/security/announce/2012/mfsa2012-87.html
Risk factor : High
|
