USN-602-1: Firefox vulnerabilities

22 April 2008

Firefox vulnerabilities

Releases

Packages

  • firefox -

Details

Flaws were discovered in Firefox which could lead to crashes during
JavaScript garbage collection. If a user were tricked into opening a
malicious web page, an attacker may be able to crash the browser or
possibly execute arbitrary code with the user's privileges.
(CVE-2008-1380)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 7.10
Ubuntu 7.04
Ubuntu 6.10
Ubuntu 6.06

After a standard system upgrade you need to restart firefox to effect
the necessary changes.

References