-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 -------------------------------------------------------------------------- Turbolinux Security Advisory TLSA-2008-37 http://www.turbolinux.co.jp/security/ security-team@turbolinux.co.jp -------------------------------------------------------------------------- Original released date: 02 Oct 2008 Last revised: 02 Oct 2008 Package: firefox, webnavi Summary: Multiple vulnerabilities exist in firefox More information: Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Multiple vulnerabilities have been discovered in firefox. Impact: Please refer to the "References" section. Affected Products: - Turbolinux Client 2008 - Turbolinux 11 Server x64 Edition - Turbolinux 11 Server - wizpy - Turbolinux FUJI Source Packages Size: MD5 http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-source/webnavi-3.0.3-1.src.rpm 43906140 cf47a09570904078f8a7fde84f385469 http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-source/xulrunner-1.9.0.3-1.src.rpm 36943824 320eab11dd08491b4635c3e405fe79d4 Binary Packages Size: MD5 http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/webnavi-3.0.3-1.i586.rpm 1642058 8bf64908d28b4d82d5a63817df472c79 http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/webnavi-ja-3.0.3-1.i586.rpm 223272 a9e759a251b36545c3723137f3fbb036 http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/webnavi-zh_CN-3.0.3-1.i586.rpm 186043 ef837d37efd49c280d4f16debe5bc405 http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/xulrunner-1.9.0.3-1.i586.rpm 8682776 c0d7a028e91fdf3d8997fb81d78ff57e http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/xulrunner-devel-1.9.0.3-1.i586.rpm 4036247 a4486e84c4fa7d635cfe3af95c691f67 http://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Client/12/turbolinux-updates/xulrunner-devel-unstable-1.9.0.3-1.i586.rpm 3467090 d37eeaa69df88dfd5f6820840529f1c9 Source Packages Size: MD5 ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/11/updates/SRPMS/firefox-2.0.0.17-1.src.rpm 40883948 86a301a5f72fd555b45a0afdcc774bbf Binary Packages Size: MD5 firefox-2.0.0.17-1.x86_64.rpm 12719530 319611b7e9cb8dd97491161d36499847 firefox-devel-2.0.0.17-1.x86_64.rpm 4297015 6e1b5af769510dc8c15dc7bb85cedb9e Source Packages Size: MD5 ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/11/updates/SRPMS/firefox-2.0.0.17-1.src.rpm 40883948 86a301a5f72fd555b45a0afdcc774bbf Binary Packages Size: MD5 firefox-2.0.0.17-1.i686.rpm 11374401 45d8e3cbe1c8095da6bbbf6aeece0765 firefox-devel-2.0.0.17-1.i686.rpm 4298563 bad38276eba3f34fd946f30668a285ab Source Packages Size: MD5 ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/wizpy/updates/SRPMS/firefox-2.0.0.17-1.src.rpm 40883948 845faa873e718d49d77f0b5003a2536c Binary Packages Size: MD5 firefox-2.0.0.17-1.i386.rpm 10220832 343f30b1c6d54e84a46e85d0fe92f545 Source Packages Size: MD5 ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/11/updates/SRPMS/firefox-2.0.0.17-1.src.rpm 40883948 abe9b1f73b495b367755b947d28545b7 Binary Packages Size: MD5 firefox-2.0.0.17-1.i686.rpm 11884278 36ad1a27db2e4f03a5af8e4bd3b600b0 References: Mozilla Foundation [Known Vulnerabilities in Mozilla] http://www.mozilla.org/projects/security/known-vulnerabilities.html -------------------------------------------------------------------------- Revision History 02 Oct 2008 Initial release -------------------------------------------------------------------------- Copyright(C) 2008 Turbolinux, Inc. All rights reserved. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAkjkqloACgkQK0LzjOqIJMzcTACfRi8GmCvBdFHAewfQ2VcZEQ29 65sAn2hLsfB7aNLevcgI3WdlASlyhKAD =kkU0 -----END PGP SIGNATURE-----