Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Fedora Local Security Checks
Title:Fedora Core 10 FEDORA-2009-9494 (epiphany)
The remote host is missing an update to epiphany
announced via advisory FEDORA-2009-9494.

Update Information:

Update to new upstream Firefox version 3.0.14, fixing multiple security issues
detailed in the upstream advisories:

Update also includes all packages depending on gecko-libs rebuilt
against new version of Firefox / XULRunner.


* Wed Sep 9 2009 Jan Horak - 2.24.3-10
- Rebuild against newer gecko


[ 1 ] Bug #521686 - CVE-2009-3070 Firefox 3.5 3.0.14 browser engine crashes
[ 2 ] Bug #521687 - CVE-2009-3071 Firefox 3.5.2 3.0.14 browser engine crashes
[ 3 ] Bug #521688 - CVE-2009-3072 Firefox 3.5.3 3.0.14 browser engine crashes
[ 4 ] Bug #521690 - CVE-2009-3074 Firefox 3.5 3.0.14 JavaScript engine crashes
[ 5 ] Bug #521691 - CVE-2009-3075 Firefox 3.5.2 3.0.14 JavaScript engine crashes
[ 6 ] Bug #521692 - CVE-2009-3076 Firefox 3.0.14 Insufficient warning for PKCS11 module installation and removal
[ 7 ] Bug #521693 - CVE-2009-3077 Firefox 3.5.3 3.0.14 TreeColumns dangling pointer vulnerability
[ 8 ] Bug #521694 - CVE-2009-3078 Firefox 3.5.3 3.0.14 Location bar spoofing via tall line-height Unicode characters
[ 9 ] Bug #521695 - CVE-2009-3079 Firefox 3.5.3 3.0.14 Chrome privilege escalation with FeedWriter

Solution: Apply the appropriate updates.

This update can be installed with the yum update program. Use
su -c 'yum update epiphany' at the command line.
For more information, refer to Managing Software with yum,
available at

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2009-3070
BugTraq ID: 36343
Debian Security Information: DSA-1885 (Google Search)
SuSE Security Announcement: SUSE-SA:2009:048 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2009-3071
Common Vulnerability Exposure (CVE) ID: CVE-2009-3072
SuSE Security Announcement: SUSE-SR:2010:013 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2009-3074
XForce ISS Database: firefox-javascript-code-exec(53157)
Common Vulnerability Exposure (CVE) ID: CVE-2009-3075
XForce ISS Database: mozilla-javascript-engine-code-exec(53158)
Common Vulnerability Exposure (CVE) ID: CVE-2009-3076
Common Vulnerability Exposure (CVE) ID: CVE-2009-3077
Common Vulnerability Exposure (CVE) ID: CVE-2009-3078
Common Vulnerability Exposure (CVE) ID: CVE-2009-3079
Debian Security Information: DSA-1886 (Google Search)
CopyrightCopyright (c) 2009 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2022 E-Soft Inc. All rights reserved.