Fedora 11 : Miro-2.5.4-2.fc11 / blam-1.8.5-18.fc11 / chmsee-1.0.1-15.fc11 / eclipse-3.4.2-20.fc11 / etc (2010-1936)

Critical Nessus Plugin ID 47288

New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.

VPR Score: 6.7

Synopsis

The remote Fedora host is missing one or more security updates.

Description

Update to new upstream Firefox version 3.5.8, fixing multiple security issues detailed in the upstream advisories:
http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.8

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected packages.

See Also

https://www.mozilla.org/en-US/security/known-

https://bugzilla.redhat.com/show_bug.cgi?id=566047

https://bugzilla.redhat.com/show_bug.cgi?id=566049

https://bugzilla.redhat.com/show_bug.cgi?id=566050

https://bugzilla.redhat.com/show_bug.cgi?id=566051

https://bugzilla.redhat.com/show_bug.cgi?id=566052

http://www.nessus.org/u?e22457d4

http://www.nessus.org/u?a4963399

http://www.nessus.org/u?a7ec2032

http://www.nessus.org/u?9f2e1aef

http://www.nessus.org/u?b116f4e7

http://www.nessus.org/u?b7b42529

http://www.nessus.org/u?3af1f66e

http://www.nessus.org/u?7a8a6599

http://www.nessus.org/u?07519c0d

http://www.nessus.org/u?d1b7f66c

http://www.nessus.org/u?db205d55

http://www.nessus.org/u?4dda7581

http://www.nessus.org/u?1da96e83

http://www.nessus.org/u?e872d5af

http://www.nessus.org/u?2a80ee6f

http://www.nessus.org/u?f3eb2b87

http://www.nessus.org/u?1cb7a6d7

http://www.nessus.org/u?7a23df2a

http://www.nessus.org/u?9baba1ae

http://www.nessus.org/u?ef199f2f

http://www.nessus.org/u?3273517b

Plugin Details

Severity: Critical

ID: 47288

File Name: fedora_2010-1936.nasl

Version: 1.17

Type: local

Agent: unix

Published: 2010/07/01

Updated: 2021/01/11

Dependencies: 12634

Risk Information

Risk Factor: Critical

VPR Score: 6.7

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:Miro, p-cpe:/a:fedoraproject:fedora:blam, p-cpe:/a:fedoraproject:fedora:chmsee, p-cpe:/a:fedoraproject:fedora:eclipse, p-cpe:/a:fedoraproject:fedora:epiphany, p-cpe:/a:fedoraproject:fedora:epiphany-extensions, p-cpe:/a:fedoraproject:fedora:evolution-rss, p-cpe:/a:fedoraproject:fedora:firefox, p-cpe:/a:fedoraproject:fedora:galeon, p-cpe:/a:fedoraproject:fedora:gnome-python2-extras, p-cpe:/a:fedoraproject:fedora:gnome-web-photo, p-cpe:/a:fedoraproject:fedora:google-gadgets, p-cpe:/a:fedoraproject:fedora:hulahop, p-cpe:/a:fedoraproject:fedora:kazehakase, p-cpe:/a:fedoraproject:fedora:monodevelop, p-cpe:/a:fedoraproject:fedora:mozvoikko, p-cpe:/a:fedoraproject:fedora:pcmanx-gtk2, p-cpe:/a:fedoraproject:fedora:perl-Gtk2-MozEmbed, p-cpe:/a:fedoraproject:fedora:ruby-gnome2, p-cpe:/a:fedoraproject:fedora:xulrunner, p-cpe:/a:fedoraproject:fedora:yelp, cpe:/o:fedoraproject:fedora:11

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2010/02/19

Vulnerability Publication Date: 2010/02/22

Reference Information

CVE: CVE-2009-1571, CVE-2009-3988, CVE-2010-0159, CVE-2010-0160, CVE-2010-0162

FEDORA: 2010-1936

CWE: 79, 94, 264, 399