July 2006
SCO Security Advisory: SCOSA-2006.26 - UnixWare 7.1.3 UnixWare 7.1.4 : Mozilla Multiple Vulnerabilities
ID: 00478
Ref: 464/2006
Date: 13 July 2006:15:23:36
Version: 1
Title: SCO Security Advisory: SCOSA-2006.26 - UnixWare 7.1.3 UnixWare 7.1.4 : Mozilla Multiple Vulnerabilities
Abstract: The Mozilla 1.7.13 browser contains fixes for several security issues resolved by Mozilla.org developers since the release of Mozilla 1.7.12.
Vendors affected: SCO
Operating systems affected: SCO
Applications affected: SCO
Title
=====
SCO Security Advisory: SCOSA-2006.26 - UnixWare 7.1.3 UnixWare 7.1.4 : Mozilla
Multiple Vulnerabilities
Detail
======
The Mozilla 1.7.13 browser contains fixes for several security
issues resolved by Mozilla.org developers since the release
of Mozilla 1.7.12.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
______________________________________________________________________________
SCO Security Advisory
Subject: UnixWare 7.1.3 UnixWare 7.1.4 : Mozilla Multiple Vulnerabilities
Advisory number: SCOSA-2006.26
Issue date: 2006 July 12
Cross reference: fz533443 fz533769
______________________________________________________________________________
1. Problem Description
The Mozilla 1.7.13 browser contains fixes for several security
issues resolved by Mozilla.org developers since the release
of Mozilla 1.7.12.
For a complete listing of the security issues
fixed in Mozilla 1.7.13 see Mozilla.org's
Known Vulnerabilities in Mozilla page at
http://www.mozilla.org/projects/security/known-vulnerabilities.html#Mozilla
2. Vulnerable Supported Versions
System Binaries
----------------------------------------------------------------------
UnixWare 7.1.3 Mozilla
UnixWare 7.1.4 Mozilla
3. Solution
The proper solution is to install the latest packages.
4. UnixWare 7.1.3
4.1 Location of Fixed Binaries
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26
4.2 Verification
MD5 (mozilla-1.7.13.pkg) = bdda3fc54e1f43f708a0620aa4cb0248
md5 is available for download from
ftp://ftp.sco.com/pub/security/tools
4.3 Installing Fixed Binaries
Upgrade the affected binaries with the following sequence:
Read and follow the installation instructions at ftp://ftp.sco.com/pub/unixware7/714/other/mozilla_1_7_13/UW7.README.html
Download mozilla-1.7.13.pkg to the /var/spool/pkg directory.
# pkgadd -d /var/spool/pkg/mozilla-1.7.13.pkg
5. UnixWare 7.1.4
5.1 Location of Fixed Binaries
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.26
5.2 Verification
MD5 (mozilla-1.7.13.pkg) = bdda3fc54e1f43f708a0620aa4cb0248
md5 is available for download from
ftp://ftp.sco.com/pub/security/tools
5.3 Installing Fixed Binaries
Upgrade the affected binaries with the following sequence:
Read and follow the installation instructions at ftp://ftp.sco.com/pub/unixware7/714/other/mozilla_1_7_13/UW7.README.html
Download mozilla-1.7.13.pkg to the /var/spool/pkg directory.
# pkgadd -d /var/spool/pkg/mozilla-1.7.13.pkg
6. References
Specific references for this advisory:
http://www.mozilla.org/projects/security/known-vulnerabilities.html#Mozilla
SCO security resources:
http://www.sco.com/support/security/index.html
SCO security advisories via email
http://www.sco.com/support/forums/security.html
This security fix closes SCO incidents fz533443 fz533769.
7. Disclaimer
SCO is not responsible for the misuse of any of the information
we provide on this website and/or through our security
advisories. Our advisories are a service to our customers intended
to promote secure installation and use of SCO products.
______________________________________________________________________________
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (SCO_SV)
iD8DBQFEtYchaqoBO7ipriERAl20AKCRMrds2pJbbUtDMYqbCeAzg5KppACfXHcU
BLBcZNfK7yaBjaWPwyiDVuE=
=wr8R
- -----END PGP SIGNATURE-----