SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 6771)
Medium Nessus Plugin ID 44380
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionMozilla Firefox was upgraded to 3.5.7 fixing some bugs and regressions.
The following security bug has been fixed :
- The nsObserverList::FillObserverArray function in xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote attackers to cause a denial of service (application crash) via a crafted website that triggers memory consumption and an accompanying Low Memory alert dialog, and also triggers attempted removal of an observer from an empty observers array.
SolutionApply ZYPP patch number 6771.