The Mozilla Foundation has reported numerous security vulnerabilities related to Mozilla Firefox.
Package | www-client/mozilla-firefox on all architectures |
---|---|
Affected versions | < 1.5.0.5 |
Unaffected versions | >= 1.5.0.5 |
Package | www-client/mozilla-firefox-bin on all architectures |
---|---|
Affected versions | < 1.5.0.5 |
Unaffected versions | >= 1.5.0.5 |
Mozilla Firefox is a redesign of the Mozilla Navigator component. The goal is to produce a cross-platform stand-alone browser application.
The following vulnerabilities have been reported:
A user can be enticed to open specially crafted URLs, visit webpages containing malicious JavaScript or execute a specially crafted script. These events could lead to the execution of arbitrary code, or the installation of malware on the user's computer.
There is no known workaround at this time.
All Mozilla Firefox users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-client/mozilla-firefox-1.5.0.5"
Users of the binary package should upgrade as well:
# emerge --sync # emerge --ask --oneshot --verbose ">=www-client/mozilla-firefox-bin-1.5.0.5"
Release date
August 03, 2006
Latest revision
August 03, 2006: 01
Severity
normal
Exploitable
remote
Bugzilla entries