Fedora 11 : Miro-2.5.4-2.fc11 / blam-1.8.5-18.fc11 / chmsee-1.0.1-15.fc11 / eclipse-3.4.2-20.fc11 / etc (2010-1936)

critical Nessus Plugin ID 47288

Language:

New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

The remote Fedora host is missing one or more security updates.

Description

Update to new upstream Firefox version 3.5.8, fixing multiple security issues detailed in the upstream advisories:
http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.8

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected packages.

See Also

https://www.mozilla.org/en-US/security/known-

https://bugzilla.redhat.com/show_bug.cgi?id=566047

https://bugzilla.redhat.com/show_bug.cgi?id=566049

https://bugzilla.redhat.com/show_bug.cgi?id=566050

https://bugzilla.redhat.com/show_bug.cgi?id=566051

https://bugzilla.redhat.com/show_bug.cgi?id=566052

http://www.nessus.org/u?e22457d4

http://www.nessus.org/u?a4963399

http://www.nessus.org/u?a7ec2032

http://www.nessus.org/u?9f2e1aef

http://www.nessus.org/u?b116f4e7

http://www.nessus.org/u?b7b42529

http://www.nessus.org/u?3af1f66e

http://www.nessus.org/u?7a8a6599

http://www.nessus.org/u?07519c0d

http://www.nessus.org/u?d1b7f66c

http://www.nessus.org/u?db205d55

http://www.nessus.org/u?4dda7581

http://www.nessus.org/u?1da96e83

http://www.nessus.org/u?e872d5af

http://www.nessus.org/u?2a80ee6f

http://www.nessus.org/u?f3eb2b87

http://www.nessus.org/u?1cb7a6d7

http://www.nessus.org/u?7a23df2a

http://www.nessus.org/u?9baba1ae

http://www.nessus.org/u?ef199f2f

http://www.nessus.org/u?3273517b

Plugin Details

Severity: Critical

ID: 47288

File Name: fedora_2010-1936.nasl

Version: 1.17

Type: local

Agent: unix

Published: 7/1/2010

Updated: 1/11/2021

Dependencies: ssh_get_info.nasl

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:Miro, p-cpe:/a:fedoraproject:fedora:blam, p-cpe:/a:fedoraproject:fedora:chmsee, p-cpe:/a:fedoraproject:fedora:eclipse, p-cpe:/a:fedoraproject:fedora:epiphany, p-cpe:/a:fedoraproject:fedora:epiphany-extensions, p-cpe:/a:fedoraproject:fedora:evolution-rss, p-cpe:/a:fedoraproject:fedora:firefox, p-cpe:/a:fedoraproject:fedora:galeon, p-cpe:/a:fedoraproject:fedora:gnome-python2-extras, p-cpe:/a:fedoraproject:fedora:gnome-web-photo, p-cpe:/a:fedoraproject:fedora:google-gadgets, p-cpe:/a:fedoraproject:fedora:hulahop, p-cpe:/a:fedoraproject:fedora:kazehakase, p-cpe:/a:fedoraproject:fedora:monodevelop, p-cpe:/a:fedoraproject:fedora:mozvoikko, p-cpe:/a:fedoraproject:fedora:pcmanx-gtk2, p-cpe:/a:fedoraproject:fedora:perl-Gtk2-MozEmbed, p-cpe:/a:fedoraproject:fedora:ruby-gnome2, p-cpe:/a:fedoraproject:fedora:xulrunner, p-cpe:/a:fedoraproject:fedora:yelp, cpe:/o:fedoraproject:fedora:11

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2/19/2010

Vulnerability Publication Date: 2/22/2010

Reference Information

CVE: CVE-2009-1571, CVE-2009-3988, CVE-2010-0159, CVE-2010-0160, CVE-2010-0162

FEDORA: 2010-1936

CWE: 79, 94, 264, 399