LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 06-22-2011, 12:19 AM   #241
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380

Firefox 3.6.18 has been released.

It addresses various vulnerabilities rated as Critical.

The relevant Secunia Advisory is here.
 
Old 06-22-2011, 10:42 AM   #242
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
BTW, Firefox 5 was also released.
 
Old 07-24-2011, 09:01 PM   #243
commoditytrainer
LQ Newbie
 
Registered: Dec 2010
Posts: 5

Rep: Reputation: 1
New Firefox 5 which is a great browser, however disappointed with some features that are not working, and rate vulnerabilities are cautionary. Does anyone have update for Firefox 5? Please advise.

Last edited by unSpawn; 07-25-2011 at 01:01 AM. Reason: //Removed commercial links from signature.
 
Old 08-17-2011, 12:46 AM   #244
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Firefox 3.6.20 has been released. Relevant Secunia Advisory is here.

Last edited by win32sux; 08-18-2011 at 10:06 AM.
 
Old 08-18-2011, 10:03 AM   #245
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Mozilla Firefox / Thunderbird Multiple Vulnerabilities

Quote:
Multiple vulnerabilities have been reported in Mozilla Firefox and Thunderbird, which can be exploited by malicious people to bypass certain security restrictions, disclose certain sensitive information, and compromise a vulnerable system.
Secunia Advisory
 
Old 09-30-2011, 12:21 AM   #246
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Mozilla Firefox Multiple Vulnerabilities

Quote:
Multiple vulnerabilities have been reported in Mozilla Firefox, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.
Secunia Advisory
 
Old 09-30-2011, 11:15 AM   #247
craigevil
Senior Member
 
Registered: Apr 2005
Location: OZ
Distribution: Debian Sid/RPIOS
Posts: 4,883
Blog Entries: 28

Rep: Reputation: 533Reputation: 533Reputation: 533Reputation: 533Reputation: 533Reputation: 533
Firefox 7 updated to 7.0.1 today, for Linux, Windows, and Android
https://www.mozilla.org/en-US/firefo.../releasenotes/
 
Old 11-11-2011, 12:40 AM   #248
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Mozilla Firefox / Thunderbird Multiple Vulnerabilities

Quote:
Multiple vulnerabilities have been reported in Mozilla Firefox and Thunderbird, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, and compromise a user's system.
Secunia Advisory
 
Old 11-11-2011, 02:43 AM   #249
H_TeXMeX_H
LQ Guru
 
Registered: Oct 2005
Location: $RANDOM
Distribution: slackware64
Posts: 12,928
Blog Entries: 2

Rep: Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301
Quote:
Originally Posted by win32sux View Post
Well, this is for old FF versions, and it depends or XSS (blocked by noscript).
 
Old 11-12-2011, 02:07 AM   #250
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Quote:
Originally Posted by H_TeXMeX_H View Post
Well, this is for old FF versions, and it depends or XSS (blocked by noscript).
Whether you consider the 3.6.x branch old or not, it's still used by tons of GNU/Linux users so it's important to get this information out regardless. That said, I seem to have missed the relevant (and larger) advisory for the more recent branch (7.x), so here you go:
Quote:
Multiple vulnerabilities have been reported in Mozilla Firefox and Thunderbird, which can be exploited by malicious people to disclose potentially sensitive information, conduct cross-site scripting attacks, bypass certain security restrictions, and potentially compromise a user's system.
Secunia Advisory

BTW, at the time of this post the Bugzilla pages for the 3.6.x vulnerabilities above are still not public. Perhaps it would be a good idea to at least wait for those to open up before you make specific claims. Of course, if you presently have evidence which does illustrate that the vulnerabilities are indeed mitigated by NoScript, that may be an interesting read and I'd encourage you to post it. TIA.

Last edited by win32sux; 11-12-2011 at 02:08 AM.
 
Old 12-09-2011, 12:03 AM   #251
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Mozilla Firefox Cache Objects History Enumeration Weakness

Quote:
A weakness has been discovered in Mozilla Firefox, which can be exploited by malicious people to disclose sensitive information.

The weakness is caused due to an error when handling cache objects and can be exploited to enumerate visited sites.

The weakness is confirmed in version 8.0.1. Other versions may also be affected.
Secunia Advisory
 
Old 12-14-2011, 09:52 PM   #252
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Google rigs browser security test to make Firefox fail

Quote:
A testing lab has slammed a recent Google-sponsored test which found that Firefox was the least secure of the top three browsers and has warned it was likely rigged in an attempt to kill-off its rival.
Complete Article
 
1 members found this post helpful.
Old 12-15-2011, 04:36 AM   #253
H_TeXMeX_H
LQ Guru
 
Registered: Oct 2005
Location: $RANDOM
Distribution: slackware64
Posts: 12,928
Blog Entries: 2

Rep: Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301Reputation: 1301
Interesting. I wouldn't put it past Google to do such a thing.
 
Old 12-21-2011, 11:58 PM   #254
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Original Poster
Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
Mozilla Firefox / Thunderbird Multiple Vulnerabilities

Quote:
Multiple vulnerabilities have been reported in Mozilla Firefox and Thunderbird, where one has an unknown impact and others can be exploited by malicious people to disclose sensitive information and compromise a user's system.
Secunia Advisory
 
Old 12-28-2011, 05:33 AM   #255
toysitem
LQ Newbie
 
Registered: Dec 2011
Posts: 1

Rep: Reputation: Disabled
thank you for your update
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Mozilla Thunderbird to Find New Home as Mozilla Foundation Focuses on Mozilla Firefox LXer Syndicated Linux News 0 07-27-2007 09:16 AM
LXer: Mozilla Firefox 1.5.0.8 and Mozilla Thunderbird 1.5.0.8 Released LXer Syndicated Linux News 0 11-09-2006 05:21 PM
LXer: Mozilla Corporation Signs Mozilla Firefox Distribution Deal with RealNetworks LXer Syndicated Linux News 0 08-03-2006 03:21 PM
LXer: Mozilla Firefox and Mozilla Thunderbird 1.5.0.5 Community Test Day LXer Syndicated Linux News 0 07-14-2006 08:54 AM
Mozilla flaws could allow attacks, data access into Firefox & Mozilla web browsers! t3gah Linux - Security 6 04-09-2006 04:00 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 01:52 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration