SuSE 11 Security Update : XULRunner (SAT Patch Number 1716)
High Nessus Plugin ID 43388
The remote SuSE 11 host is missing one or more security updates.
The Mozilla XULRunner engine was updated to version 126.96.36.199, fixing lots of bugs and various security issues. The following issues were fixed : - Crashes with evidence of memory corruption (188.8.131.52). (MFSA 2009-65 / CVE-2009-3979 / CVE-2009-3981) - (bmo#487872) NTLM reflection vulnerability. (MFSA 2009-68 / CVE-2009-3983) - (bmo#521461,bmo#514232) Location bar spoofing vulnerabilities. (MFSA 2009-69 / CVE-2009-3984 / CVE-2009-3985) - (bmo#522430) Privilege escalation via chrome window.opener. (MFSA 2009-70 / CVE-2009-3986)