|
Elders/PU_IAS security updates: flac, firefox, kernel, openssl, thunderbird, seamonkey |
|
|
|
firefox security update for 1WS, 2/2WS, 5 Client/Server and seamonkey security update for 1/1WS, 2/2WS fix various security issues including improper processing of certain web content that could be used to execute arbitrary code as the user viewing a specially crafted website.
firefox advisory
seamonkey advisory
thunderbird security update for 1WS, 2/2WS and 5 Client/Server fixes various security issues including improper processing of html e-mails that, if javascript (off by default) were to be unabled, could be used to run arbitrary code as the user viewing specially crafted html e-mails.
thunderbird advisory
openssl security update for 1/1WS fixes a
one byte overflow in SSL_get_shared_ciphers functions (rarely used).
Other fixed issues involve possible side-channel attacks that in
unlikely scenario might be used to obtain private RSA keys.
openssl advisory
flac security update for 2/2WS and 5 Client/Server fixes a flaw in the way flac library processes audio data. This flaw could be used to execute arbitrary code if an application linked against flac were to open a specially crafted flac audio file.
flac advisory
kernel security update for 5 Client/Server fixes various issues ranging from denial of service, sensitive information leak to possible privilege escalation.
kernel advisory
|
