1. Ubuntu Security Notices
  2. USN-602-1

USN-602-1: Firefox vulnerabilities

Publication date

22 April 2008

Overview

Firefox vulnerabilities

Releases

Packages

Details

Flaws were discovered in Firefox which could lead to crashes during
JavaScript garbage collection. If a user were tricked into opening a
malicious web page, an attacker may be able to crash the browser or
possibly execute arbitrary code with the user’s privileges.
(CVE-2008-1380)

Flaws were discovered in Firefox which could lead to crashes during
JavaScript garbage collection. If a user were tricked into opening a
malicious web page, an attacker may be able to crash the browser or
possibly execute arbitrary code with the user’s privileges.
(CVE-2008-1380)

Update instructions

After a standard system upgrade you need to restart firefox to effect the necessary changes.

Learn more about how to get the fixes.

The problem can be corrected by updating your system to the following package versions:

Ubuntu Release Package Version
7.10 gutsy firefox –  2.0.0.14+2nobinonly-0ubuntu0.7.10
7.04 feisty firefox –  2.0.0.14+1nobinonly-0ubuntu0.7.4
6.10 edgy firefox –  2.0.0.14+0nobinonly-0ubuntu0.6.10
6.06 dapper firefox –  1.5.dfsg+1.5.0.15~prepatch080417a-0ubuntu1

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

References

Have additional questions?

Talk to a member of the team ›