Linux distributor Debian issued a security advisory over the weekend, warning of several problems in Mozilla and associated products such as Mozilla Firefox.
The vulnerabilities include bugs in the layout engine which could allow a denial of service attack and the execution of arbitrary code.
Vulnerabilities in the JavaScript engine could allow the same attacks, and a 'shutdown' flaw could allow remote attackers to gain privileges and install malicious code via the watch JavaScript function.
For the stable distribution of Debian, known as 'sarge', these problems have been fixed in version 1.0.4-2sarge15.
For the testing and unstable distribution, known as 'sid' and 'etch', these problems have been fixed in version 2.0.0.1+dfsg-2 of 'Iceweasel'.
Debian recommends that users upgrade their Firefox and Iceweasel packages.
There have been no announcements from Mozilla or other Linux distributions, although Debian warned that the bugs are not Debian specific.
Debian warns of Mozilla bugs
By
Robert Jaques
on Jan 30, 2007 9:42AM
Time to upgrade Firefox and Iceweasel packages.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Promoted Content
IT’s control over digital infrastructure is slipping, reports The Economist Intelligence Unit
Promoted Content
Melbourne is now a more attractive location for IT geo-redundancy
Promoted Content
Critical considerations for moving to the cloud
Promoted Content
AWS She Builds seeks to bridge the great IT gender gap
Sponsored Whitepapers
The 5 steps to effective data protection
Understanding the next security control points: applications and workloads
Best security practices after rapid Digital Transformation
The CISO View 2021 Survey: Zero Trust and Privileged Access
How and why to backup your Office 365 tenant
