Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 7 FEDORA-2007-1138 (epiphany)

The remote host is missing an update to epiphany
announced via advisory FEDORA-2007-1138.

epiphany is a simple GNOME web browser based on the Mozilla rendering

Update Information:

Updated firefox packages that fix several security bugs are now available for Fedora Core 7.

Users of epiphany are advised to upgrade to these erratum packages, which contain an update to epiphany built against the updated Firefox packages.


* Wed Jul 18 2007 Kai Engert - 2.18.3-2
- Rebuild against newer gecko
* Mon Jul 2 2007 Matthias Clasen 2.18.3-1
- Update to 2.18.3
* Tue May 29 2007 Matthias Clasen 2.18.2-1
- Update to 2.18.2
* Thu May 24 2007 Christopher Aillon 2.18.1-3
- Rebuild against newer gecko

[ 1 ] Bug #248518
[ 2 ] CVE-2007-3734
[ 3 ] CVE-2007-3735
[ 4 ] CVE-2007-3736
[ 5 ] CVE-2007-3089
[ 6 ] CVE-2007-3737
[ 7 ] CVE-2007-3656
[ 8 ] CVE-2007-3738
Updated packages:

109dd331a224e7f37f4a7919a94050b4e7e580a4 epiphany-debuginfo-2.18.3-2.fc7.ppc64.rpm
2c07369f94afbb11f209e928cc1fc901847c2b2a epiphany-2.18.3-2.fc7.ppc64.rpm
373ad8cd6fc6d545b02156a60fd12d3a85c21911 epiphany-devel-2.18.3-2.fc7.ppc64.rpm
d0a03887ed20f2de18b5e60d4925b1ecf2235e11 epiphany-devel-2.18.3-2.fc7.i386.rpm
ad49ec3f5523ae9effee4725da3cdbb8f2923116 epiphany-debuginfo-2.18.3-2.fc7.i386.rpm
69d4339c98ff4784229a9ed0b4621b89ab437ebb epiphany-2.18.3-2.fc7.i386.rpm
4973bfd06389f8f20b214560098487de8b42665f epiphany-2.18.3-2.fc7.x86_64.rpm
ee2a38b1164bb2e64222cdaa04aa9d3f48337914 epiphany-devel-2.18.3-2.fc7.x86_64.rpm
dba8dc14abfd5c6208bb55ad277110fe8fb1e72b epiphany-debuginfo-2.18.3-2.fc7.x86_64.rpm
c81325fb98d1cdb1a8ce73f0d5b178fcab70dc28 epiphany-2.18.3-2.fc7.ppc.rpm
debf96a83433b6c1c678670c3ef402615d1d12b0 epiphany-debuginfo-2.18.3-2.fc7.ppc.rpm
a65002b5f5bfd85d1069638afd4b9e6d839fdaec epiphany-devel-2.18.3-2.fc7.ppc.rpm
817c64d671361e37154839dae4a4e69f61b66217 epiphany-2.18.3-2.fc7.src.rpm

This update can be installed with the 'yum' update program. Use 'yum update
package-name' at the command line. For more information, refer to 'Managing
Software with yum,' available at

Solution: Apply the appropriate updates.

Risk factor : Critical

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2007-3734
BugTraq ID: 24946
Bugtraq: 20070720 rPSA-2007-0148-1 firefox thunderbird (Google Search)
Bugtraq: 20070724 FLEA-2007-0033-1: firefox thunderbird (Google Search)
Debian Security Information: DSA-1337 (Google Search)
Debian Security Information: DSA-1338 (Google Search)
Debian Security Information: DSA-1339 (Google Search)
Debian Security Information: DSA-1391 (Google Search)
HPdes Security Advisory: HPSBUX02153
HPdes Security Advisory: HPSBUX02156
HPdes Security Advisory: SSRT061181
HPdes Security Advisory: SSRT061236
SGI Security Advisory: 20070701-01-P
SuSE Security Announcement: SUSE-SA:2007:049 (Google Search)
XForce ISS Database: mozilla-browser-engine-code-execution(35458)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3735
XForce ISS Database: mozilla-javascript-eng-code-execution(35459)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3736
XForce ISS Database: mozilla-addeventlistener-settimeout-xss(35462)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3089
BugTraq ID: 24286
Bugtraq: 20070604 Assorted browser vulnerabilities (Google Search)
Cert/CC Advisory: TA07-199A
CERT/CC vulnerability note: VU#143297
XForce ISS Database: firefox-iframe-security-bypass(34701)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3737
XForce ISS Database: firefox-eventhandler-code-execution(35461)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3656
BugTraq ID: 24831
Bugtraq: 20070709 Firefox wyciwyg:// cache zone bypass (Google Search)
XForce ISS Database: mozilla-wyciwyg-security-bypass(35298)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3738
SuSE Security Announcement: SUSE-SA:2007:057 (Google Search)
XForce ISS Database: firefox-xpcnativewrapper-code-execution(35460)
CopyrightCopyright (c) 2007 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.