RHEL 4 : firefox (RHSA-2006:0200)
High Nessus Plugin ID 20858
SynopsisThe remote Red Hat host is missing a security update.
DescriptionAn updated firefox package that fixes several security bugs is now available.
This update has been rated as having critical security impact by the Red Hat Security Response Team.
Mozilla Firefox is an open source Web browser.
A denial of service bug was found in the way Firefox saves history information. If a user visits a web page with a very long title, it is possible Firefox will crash or take a very long time the next time it is run. (CVE-2005-4134)
This update also fixes a bug when using XSLT to transform documents.
Passing DOM Nodes as parameters to functions expecting an xsl:param could cause Firefox to throw an exception.
Users of Firefox are advised to upgrade to this updated package, which contains backported patches to correct these issues.
SolutionUpdate the affected firefox package.