firefox-3.6.17-1.0.1.AXS3, xulrunner-1.9.2.17-3.0.1.AXS3
エラータID: AXSA:2011-199:03
以下項目について対処しました。<br />
<br />
[Security Fix]<br />
- Mozilla Firefox と SeaMonkey には開放後使用脆弱性が存在し, オブジェクトの mChannel によって, リモートの攻撃者が任意のコードを実行する脆弱性があります。(CVE-2011-0065)<br />
<br />
- Mozilla Firefox と SeaMonkey には開放後使用脆弱性が存在し, オブジェクトの mObserverList によって,リモートの攻撃者が任意のコードを実行する脆弱性があります。(CVE-2011-0066)<br />
<br />
- Mozilla Firefox と SeaMonkey はフォームのオートコンプリートを適切に実装しておらず, Java アプレットによって, リモートの攻撃者にフォームの履歴のエントリを読まれる脆弱性があります。(CVE-2011-0067)<br />
<br />
- Mozilla Firefox, Thunderbird, SeaMonkey のブラウザエンジンには詳細不明の脆弱性が存在し, リモートの攻撃者がサービス拒否 (メモリ破壊とアプリケーションのクラッシュ) を引き起こしたり, あるいは任意のコードを実行する可能性のある脆弱性があり<br />
ます。<br />
なお, CVE-2011-0069, CVE-2011-0070 はそれぞれ異なる脆弱性です。(CVE-2011-0069), (CVE-2011-0070)<br />
<br />
- Mozilla Firefox, Thunderbird, SeaMonkeyにはディレクトリトラバーサル脆弱性が存在し, resource:URL によって, リモートの攻撃者が任意のファイルの存在を割り出し, リソースをロードする可能性のある脆弱性があります。(CVE-2011-0071)<br />
<br />
- Mozilla Firefox, Thunderbird, SeaMonkey のブラウザエンジンには詳細不明の脆弱性が存在し, リモートの攻撃者がサービス拒否 (メモリ破壊とアプリケーションのクラッシュ) を引き起こしたり, 任意のコードを実行する可能性のある脆弱性があります。<br />
なお、CVE-2011-0072, CVE-2011-0074, CVE-2011-0075, CVE-2011-0077, CVE-2011-0078 はそれぞれ異なる脆弱性です。(CVE-2011-0072) , (CVE-2011-0074) , (CVE-2011-0075) , (CVE-2011-0077) , (CVE-2011-0078)<br />
<br />
- Mozilla Firefox と SeaMonkey は nsTreeRange データ構造を適切に使用しておらず, ダングリングポインタによってリモートの攻撃者が任意のコードを実行する脆弱性があります。(CVE-2011-0073)<br />
<br />
- Mozilla Firefox と Thunderbird には, リモートの攻撃者がサービス拒否 (メモリ破壊とアプリケーションのクラッシュ) を引き起こしたり, 任意のコードを実行する脆弱性があります。(CVE-2011-0080), (CVE-2011-0081)<br />
<br />
- libxslt の xsltGenerateIdFunction 関数には, XSLT generate-id XPath 関数の呼び出しを含む XML ドキュメントによって, リモートの攻撃者がヒープメモリアドレスについての情報を取得する脆弱性があります。(CVE-2011-1202)<br />
<br />
一部CVEの翻訳文はJVNからの引用になります。<br />
http://jvndb.jvn.jp/
パッケージをアップデートしてください。
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's mChannel.
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's mObserverList.
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls.
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1; Thunderbird before 3.1.10; and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0070.
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19, 3.6.x before 3.6.17, and 4.x before 4.0.1; Thunderbird before 3.1.10; and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0069.
Directory traversal vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 on Windows allows remote attackers to determine the existence of arbitrary files, and possibly load resources, via vectors involving a resource: URL.
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0074, CVE-2011-0075, CVE-2011-0077, and CVE-2011-0078.
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly use nsTreeRange data structures, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0072, CVE-2011-0075, CVE-2011-0077, and CVE-2011-0078.
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0072, CVE-2011-0074, CVE-2011-0077, and CVE-2011-0078.
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0072, CVE-2011-0074, CVE-2011-0075, and CVE-2011-0078.
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0072, CVE-2011-0074, CVE-2011-0075, and CVE-2011-0077.
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.17 and 4.x before 4.0.1, and Thunderbird 3.1.x before 3.1.10, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
The xsltGenerateIdFunction function in functions.c in libxslt 1.1.26 and earlier, as used in Google Chrome before 10.0.648.127 and other products, allows remote attackers to obtain potentially sensitive information about heap memory addresses via an XML document containing a call to the XSLT generate-id XPath function.
N/A
SRPMS
- firefox-3.6.17-1.0.1.AXS3.src.rpm
MD5: c5fb0e299a450a46c7d5241631b79e38
SHA-256: dcaf677cb4fae81630c1494015e827aefbfae17ace1ee9027e453cb7d5acbd45
Size: 58.03 MB - xulrunner-1.9.2.17-3.0.1.AXS3.src.rpm
MD5: dbff555fc6df562676b890e213f4602b
SHA-256: 9befb1a56c6efb03400c7da653b30f9a38b77344976ba05cd97d8d8b776b732d
Size: 48.90 MB
Asianux Server 3 for x86
- firefox-3.6.17-1.0.1.AXS3.i386.rpm
MD5: b0fa56ba0fb158c2d89d9eb02869dd47
SHA-256: 0d47608a98107f764f27b3f74e08ad5a0c36e80794da8cf4cb1d0e0648383ea7
Size: 14.49 MB - xulrunner-1.9.2.17-3.0.1.AXS3.i386.rpm
MD5: 49297cbd568881f1d90a141706e339cd
SHA-256: 63b2bc48cd751e7af275e7a84ef53a5c551c346c9224031575caa835092e8982
Size: 11.65 MB
Asianux Server 3 for x86_64
- firefox-3.6.17-1.0.1.AXS3.x86_64.rpm
MD5: f45ab8968da71eb74feb1240db94f684
SHA-256: cda659dd5671d3f6d50bddf60ebd7732825c11f2ddd3c9abaf38d9d9522cabd2
Size: 14.48 MB - xulrunner-1.9.2.17-3.0.1.AXS3.x86_64.rpm
MD5: 8d223708ec3d07fb5384440a40966546
SHA-256: fc44fdf558255767f0cc1472942b00023857d7b280db34b5aeb80b54f6ba23df
Size: 11.08 MB