Seamonkey: Multiple vulnerabilities — GLSA 200610-04

The Seamonkey project has reported multiple security vulnerabilities in the application.

Affected Packages

www-client/seamonkey on all architectures
Affected versions < 1.0.5
Unaffected versions >= 1.0.5

Background

The SeaMonkey project is a community effort to deliver production-quality releases of code derived from the application formerly known as 'Mozilla Application Suite'.

Description

A number of vulnerabilities have been found and fixed in Seamonkey. For details please consult the references below.

Impact

The most severe vulnerability involves enticing a user to visit a malicious website, crashing the application and executing arbitrary code with the rights of the user running Seamonkey.

Workaround

There is no known workaround at this time.

Resolution

All Seamonkey users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=www-client/seamonkey-1.0.5"

References

Release Date
October 16, 2006

Latest Revision
October 16, 2006: 01

Severity
normal

Exploitable
remote

Bugzilla entries