SuSE 10 Security Update : Mozilla XULrunner (ZYPP Patch Number 6777)
Medium Nessus Plugin ID 49899
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionMozilla XULrunner was upgraded to 188.8.131.52 fixing some bugs and regressions.
The following security bug has been fixed :
- The nsObserverList::FillObserverArray function in xpcom/ds/nsObserverList.cpp in Mozilla Firefox before 3.5.7 allows remote attackers to cause a denial of service (application crash) via a crafted website that triggers memory consumption and an accompanying Low Memory alert dialog, and also triggers attempted removal of an observer from an empty observers array.
SolutionApply ZYPP patch number 6777.