New Search

RHSA-2009:0397 -- firefox security update (Critical)

oval:org.mitre.oval:def:29178

Updated firefox packages that fix two security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. A memory corruption flaw was discovered in the way Firefox handles XML files containing an XSLT transform. A remote attacker could use this flaw to crash Firefox or potentially execute arbitrary code as the user running Firefox. (CVE-2009-1169)

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 5
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 4
Class:
patch
Reference(s):
  • RHSA-2009:0397
  • CESA-2009:0397-CentOS 5
  • CVE-2009-1044
  • CVE-2009-1169
Product(s):
  • firefox
  • xulrunner