Firefox多个内存破坏漏洞
发布日期:2009-12-15
更新日期:2009-12-17
受影响系统:
Mozilla Firefox 3.5.x
Mozilla Firefox 3.0.x
Mozilla SeaMonkey 2.0
不受影响系统:
Mozilla Firefox 3.5.6
Mozilla Firefox 3.0.16
Mozilla SeaMonkey 2.0.1
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 37361,37362,37363,37364,37369
CVE ID: CVE-2009-3979,CVE-2009-3980,CVE-2009-3981,CVE-2009-3982,CVE-2009-3388
Firefox是一款流行的开源WEB浏览器。
Firefox所使用的浏览器引擎、JavaScript引擎和liboggplay媒体库中存在多个内存破坏漏洞。如果用户受骗打开了恶意网页或媒体文件链接的话,就可以触发这些漏洞,导致浏览器崩溃或执行任意代码。
<*来源:Jeremy Lea
Jesse Ruderman (jruderman@gmail.com)
链接:
https://www.RedHat.com/support/errata/RHSA-2009-1674.html
https://www.redhat.com/support/errata/RHSA-2009-1673.html
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Debian
------
Debian已经为此发布了一个安全公告(DSA-1956-1)以及相应补丁:
DSA-1956-1:New xulrunner packages fix several vulnerabilities
链接:
补丁下载:
Source archives:
Size/MD5 checksum: 1755 661a7213945541c3aff7c1225f4a4e4b
Size/MD5 checksum: 44158276 49eccba737701abfd9f0405dc91fb848
Size/MD5 checksum: 116218 6d5380e0a12ea65cbfa98059641c5b1b
Architecture independent packages:
Size/MD5 checksum: 1464570 40a5ae6f705fe11bb244e039804233ea
alpha architecture (DEC Alpha)
Size/MD5 checksum: 51094414 36f539011a5ee228fae0195020709cc7
Size/MD5 checksum: 432242 c5110bdb4836a6e20a9b9b8e6959c1e9
Size/MD5 checksum: 9494198 0139dd56d61b77e77316ab24937df305
Size/MD5 checksum: 938424 b52ef8d6a5671df01a179e42379af747
Size/MD5 checksum: 72044 2fe658f8d17e1547d7c18d7e382b1c02
Size/MD5 checksum: 163948 ee725d4c448ebf6d3c3def1ec0302e8a
Size/MD5 checksum: 3651674 4f728529795d19de42ee07c1a994d84e
Size/MD5 checksum: 221628 578247ecd3b3c21230b272fe446c85b8
Size/MD5 checksum: 112068 52292e961eea13ac499f0923f8f56afe
amd64 architecture (AMD x86_64 (AMD64))
Size/MD5 checksum: 3288346 c4994fb96c217a3d16d718b919c5488a
Size/MD5 checksum: 151976 db96efb00277b2eae199c26b99ea043e
Size/MD5 checksum: 69948 db7a93f30248ee123430c0ec8fc51388
Size/MD5 checksum: 101544 804243e7ed5e3fadb407f16d9d78f081
Size/MD5 checksum: 890384 5dfe153e3eafca3a3590d44692088152
Size/MD5 checksum: 374232 dfee7250cbe693362d58228d815b17a1
Size/MD5 checksum: 50332174 0c1988f9cff6d4718d0965f6fe2ca00c
Size/MD5 checksum: 7724684 2ece5643c14ae34a0270d1bb740d0190
Size/MD5 checksum: 223014 368b9f81b97bedfd51ea46cef4bfed9c
hppa architecture (HP PA RISC)
Size/MD5 checksum: 223372 f14b9641604130cbd1316684ce80eea4
Size/MD5 checksum: 72040 cee4430fd91f516a3a6b64a851cba9d1
Size/MD5 checksum: 898940 adc9f60d3478ac3efac390b54f758c08
Size/MD5 checksum: 413076 fa0451857abe00213b1c2fdbbeeb9216
Size/MD5 checksum: 158510 c33508922abba00e2db82b4330cfe556
Size/MD5 checksum: 51227746 215c15bee82bd5ee69c1603c93e47c74
Size/MD5 checksum: 3629732 24ae38db87e085986b45cbfbf51596b5
Size/MD5 checksum: 106760 9d9f796627813bf63d3d59cbc80cae94
Size/MD5 checksum: 9512538 053e525101326d09b2b302090b172496
i386 architecture (Intel ia32)
Size/MD5 checksum: 6603188 5a7d3778788b71f3214ed981d2158481
Size/MD5 checksum: 141452 0281b88b7c5efcd28e70283d9083a78c
Size/MD5 checksum: 350878 d2977664d676cf868f1945c7949ff91b
Size/MD5 checksum: 3565586 3a069b19bc73d53ace1bd816412b4672
Size/MD5 checksum: 851826 a7b7b5596d788b006125e1af9f50b9e2
Size/MD5 checksum: 223270 46166eab3e8d094223f19cf7024f00f5
Size/MD5 checksum: 49496458 37d985ecce882e81a20e797ad1ea3618
Size/MD5 checksum: 68158 8b79e51fcd2e87aba9db39b000027e5f
Size/MD5 checksum: 79204 52f55479a92095e5e410680a64c35a69
ia64 architecture (Intel ia64)
Size/MD5 checksum: 223178 56b4d13963a5417365ac98e7cb68f9c2
Size/MD5 checksum: 180234 118576ab26bd4bc6e98a32574d30aa21
Size/MD5 checksum: 76530 5d78eca360e0d75cb28ca38fed899d91
Size/MD5 checksum: 811202 72192683bea462cc1f5f672c7988d9e9
Size/MD5 checksum: 121554 ac350b3e945c3d6b619d07f099af37ce
Size/MD5 checksum: 3397796 8d200fb548f982d0752ade5d0c28f593
Size/MD5 checksum: 49671280 16b4ad4e4ab3f9eab9ff83baf69e098f
Size/MD5 checksum: 11302800 b071e5b863130a778ab494c853617ca6
Size/MD5 checksum: 542146 141726b2753b7921fed58c5ffba4c2df
mips architecture (MIPS (Big Endian))