First Last Prev Next    No search results available      Search page      Enter new bug
Bug#: 95199
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Aarni Honka <aarni.honka@gmail.com>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 95199 depends on: Show dependency tree
Bug 95199 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2005-06-06 04:29 0000 
TITLE:
Mozilla / Mozilla Firefox Frame Injection Vulnerability

SECUNIA ADVISORY ID:
SA15601

VERIFY ADVISORY:
http://secunia.com/advisories/15601/

CRITICAL:
Moderately critical

IMPACT:
Spoofing

WHERE:
From remote

SOFTWARE:
Mozilla Firefox 1.x
http://secunia.com/product/4227/
Mozilla 1.7.x
http://secunia.com/product/3691/

DESCRIPTION:
A seven year old vulnerability has been re-introduced in Mozilla and
Firefox, which can be exploited by malicious people to spoof the
contents of web sites.

For more information:
SA11978

Secunia has constructed a test, which can be used to check if your
browser is affected:
http://secunia.com/multiple_browsers_frame_injection_vulnerability_test/

The vulnerability has been confirmed in Firefox 1.0.4 and Mozilla
1.7.8. Other versions may also be affected.

SOLUTION:
Do not browse untrusted web sites while browsing trusted sites.

PROVIDED AND/OR DISCOVERED BY:
Reported in Firefox by:
brainsoft

OTHER REFERENCES:
SA11978:
http://secunia.com/advisories/11978/

------- Comment #1 From Thierry Carrez (RETIRED) 2005-06-24 05:36:22 0000 ------- 
https://bugzilla.mozilla.org/show_bug.cgi?id=296850

Was fixed by bug 246448 in Mozilla 1.7 and remained fixed through Firefox 1.0.2
Firefox 1.0.3 and Mozilla 1.7.7 are vulnerable again

Fixed on trunk and branches as of 2005-06-08.
Waiting for a release.

------- Comment #2 From Stefan Cornelius (RETIRED) 2005-07-12 21:28:31 0000 ------- 
Mozilla released a new version today, this and several other (also critical)
vulnerabilities seem to be fixed in 1.0.5.
http://www.mozilla.org/projects/security/known-vulnerabilities.html#Firefox

------- Comment #3 From Jory A. Pratt 2005-07-12 22:42:56 0000 ------- 
firefox-1.0.5 binary ebuild update. Will bump source as soon as mirrors are
seeded and we have a download for it.

------- Comment #4 From Tobias Sager 2005-07-13 00:40:29 0000 ------- 
See also bug 98846.

------- Comment #5 From Thierry Carrez (RETIRED) 2005-07-13 01:00:00 0000 ------- 
OK... Organizing stuff, this one is for the Firefox issues :

Fixed in Firefox 1.0.5
 MFSA 2005-56 Code execution through shared function objects
 MFSA 2005-55 XHTML node spoofing
 MFSA 2005-54 Javascript prompt origin spoofing
 MFSA 2005-53 Standalone applications can run arbitrary code through the browser
 MFSA 2005-52 Same origin violation: frame calling top.focus()
 MFSA 2005-51 The return of frame-injection spoofing
 MFSA 2005-50 Possibly exploitable crash in InstallVersion.compareTo()
 MFSA 2005-49 Script injection from Firefox sidebar panel using data:
 MFSA 2005-48 Same-origin violation with InstallTrigger callback
 MFSA 2005-47 Code execution via "Set as Wallpaper"
 MFSA 2005-46 XBL scripts ran even when Javascript disabled
 MFSA 2005-45 Content-generated event vulnerabilities

Waiting for the source ebuild.

------- Comment #6 From Jakub Moc (RETIRED) 2005-07-13 02:34:09 0000 ------- 
*** Bug 98838 has been marked as a duplicate of this bug. ***

------- Comment #7 From Giacomo Perale 2005-07-13 03:19:12 0000 ------- 
Any chance to see the enhancements of bug #86070 in the new firefox ebuild?

------- Comment #8 From Jory A. Pratt 2005-07-13 09:24:57 0000 ------- 
this is a security bump no time to add enhancemen. Source build is in portage
when security team is ready we can call for archs to stabilize.

------- Comment #9 From Sune Kloppenborg Jeppesen 2005-07-13 09:52:46 0000 ------- 
Arches please test and mark stable.  
  
Target keywords:  
  
mozilla-firefox-1.0.5: alpha amd64 arm hppa ia64 ppc sparc x86  
mozilla-firefox-bin-1.0.5: -* x86 amd64

------- Comment #10 From Jory A. Pratt 2005-07-13 10:29:49 0000 ------- 
Stable on PPC

------- Comment #11 From Herbie Hopkins (RETIRED) 2005-07-13 14:00:46 0000 ------- 
mozilla-firefox{,-bin} stable on amd64

------- Comment #12 From Gustavo Zacarias (RETIRED) 2005-07-13 14:14:03 0000 ------- 
sparc stable.

------- Comment #13 From René Nussbaumer 2005-07-14 08:46:29 0000 ------- 
Stable on hppa.

------- Comment #14 From Bryan Østergaard (RETIRED) 2005-07-14 13:34:38 0000 ------- 
Stable on alpha + ia64.

------- Comment #15 From Aron Griffis (RETIRED) 2005-07-14 14:57:11 0000 ------- 
stable on x86

------- Comment #16 From Sebastian 2005-07-14 22:21:40 0000 ------- 
Wouldn't it be a good idea to add a glsa so that hopefully all users will
update?

Cheers

Sebastian

------- Comment #17 From Sune Kloppenborg Jeppesen 2005-07-14 22:31:45 0000 ------- 
This one is ready for GLSA.

------- Comment #18 From Thierry Carrez (RETIRED) 2005-07-15 01:37:31 0000 ------- 
GLSA 200507-14
arm should mark stable to benefit from GLSA
First Last Prev Next    No search results available      Search page      Enter new bug