Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 7 FEDORA-2007-1155 (epiphany-extensions)

The remote host is missing an update to epiphany-extensions
announced via advisory FEDORA-2007-1155.

Epiphany Extensions is a collection of extensions for Epiphany, the
GNOME web browser.

Update Information:

Updated Firefox packages that fix several security bugs are now available for Fedora 7.

Users of epiphany-extensions are advised to upgrade to this errata package, which has been rebuilt against the updated Firefox package.


* Wed Jul 18 2007 Peter Gordon - 2.18.3-2
- Rebuild against new Gecko release (Firefox
* Wed Jul 4 2007 Peter Gordon - 2.18.3-1
- Update to new upstream release (2.18.3).
* Wed Jun 6 2007 Christopher Aillon - 2.18.2-3
- Specfiles should _NOT_ call rpm directly. Fix the previous bug the
correct way, by doing explicit requires on the exact versions instead
of via rpm -q
* Tue Jun 5 2007 Peter Gordon - 2.18.2-2
- Add %{_target_cpu} to versioned Firefox dependency to avoid multilib
updating issues such as bug 242318, wherein the 32-bit older Firefox build
matches the versioned dependency, but the updated 64-bit Firefox build
matches the 64-bit shared library dependencies. (Thanks to Frederik Hertzum
for the bug report.)
* Wed May 30 2007 Peter Gordon - 2.18.2-1
- Update to new upstream bugfix release (2.18.2)
and rebuild for newer
Firefox/Gecko version (

[ 1 ] Bug #248518
[ 2 ] CVE-2007-3734
[ 3 ] CVE-2007-3735
[ 4 ] CVE-2007-3736
[ 5 ] CVE-2007-3089
[ 6 ] CVE-2007-3737
[ 7 ] CVE-2007-3656
[ 8 ] CVE-2007-3738
Updated packages:

09e0f52430e459f13eb9bfee9ec644b6a00a8ac5 epiphany-extensions-2.18.3-2.ppc64.rpm
729db8ef221b4dbd9e1286c0102d7af359831c2b epiphany-extensions-debuginfo-2.18.3-2.ppc64.rpm
5bc029911fc09b7351070afbe5d486619f924215 epiphany-extensions-2.18.3-2.i386.rpm
2a1f4984f3d1b2af8a8733d43f598b49bd61c36b epiphany-extensions-debuginfo-2.18.3-2.i386.rpm
26b52098ee0b9f1b76c47c015d4269c5e75d4349 epiphany-extensions-2.18.3-2.x86_64.rpm
108f4159a537962ea755f47dacc5ff3894db72cc epiphany-extensions-debuginfo-2.18.3-2.x86_64.rpm
0dd417f28ed97f05003cb9d33eb5ceac471eedea epiphany-extensions-2.18.3-2.ppc.rpm
0fc7df45d6ef70f0303b5e563577b16b1188aa85 epiphany-extensions-debuginfo-2.18.3-2.ppc.rpm
cc43601a3b450cf0ab7f9f71e225671e53d9a0a0 epiphany-extensions-2.18.3-2.src.rpm

This update can be installed with the 'yum' update program. Use 'yum update
package-name' at the command line. For more information, refer to 'Managing
Software with yum,' available at

Solution: Apply the appropriate updates.

Risk factor : Critical

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2007-3734
BugTraq ID: 24946
Bugtraq: 20070720 rPSA-2007-0148-1 firefox thunderbird (Google Search)
Bugtraq: 20070724 FLEA-2007-0033-1: firefox thunderbird (Google Search)
Debian Security Information: DSA-1337 (Google Search)
Debian Security Information: DSA-1338 (Google Search)
Debian Security Information: DSA-1339 (Google Search)
Debian Security Information: DSA-1391 (Google Search)
HPdes Security Advisory: HPSBUX02153
HPdes Security Advisory: HPSBUX02156
HPdes Security Advisory: SSRT061181
HPdes Security Advisory: SSRT061236
SGI Security Advisory: 20070701-01-P
SuSE Security Announcement: SUSE-SA:2007:049 (Google Search)
XForce ISS Database: mozilla-browser-engine-code-execution(35458)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3735
XForce ISS Database: mozilla-javascript-eng-code-execution(35459)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3736
XForce ISS Database: mozilla-addeventlistener-settimeout-xss(35462)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3089
BugTraq ID: 24286
Bugtraq: 20070604 Assorted browser vulnerabilities (Google Search)
Cert/CC Advisory: TA07-199A
CERT/CC vulnerability note: VU#143297
XForce ISS Database: firefox-iframe-security-bypass(34701)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3737
XForce ISS Database: firefox-eventhandler-code-execution(35461)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3656
BugTraq ID: 24831
Bugtraq: 20070709 Firefox wyciwyg:// cache zone bypass (Google Search)
XForce ISS Database: mozilla-wyciwyg-security-bypass(35298)
Common Vulnerability Exposure (CVE) ID: CVE-2007-3738
SuSE Security Announcement: SUSE-SA:2007:057 (Google Search)
XForce ISS Database: firefox-xpcnativewrapper-code-execution(35460)
CopyrightCopyright (c) 2007 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.