Search:

July 2007

3274 - Red Hat Security Advisories

ID: 3274
Date: 26 July 2007 12:09

Title: 3274 - Red Hat Security Advisories
Abstract: Details of several Red Hat security advisories
Vendors affected:Red Hat
Applications affected:Seamonkey, Thunderbird, Firefox, Bind
Warning Status: Imminent
Availability of fix: Available
Type of fix: Patch
Source: Red Hat
Reliability of source: Trusted
Source URL: https://rhn.redhat.com/errata/

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ---------------------------------------------------------------------
Red Hat Security Advisory

Synopsis:          Critical: seamonkey security update
Advisory ID:       RHSA-2007:0722-01
Advisory URL:      https://rhn.redhat.com/errata/RHSA-2007-0722.html
Issue date:        2007-07-18
Updated on:        2007-07-18
Product:           Red Hat Enterprise Linux
CVE Names:         CVE-2007-3089 CVE-2007-3656 CVE-2007-3734
                   CVE-2007-3735 CVE-2007-3736 CVE-2007-3737
                   CVE-2007-3738
- ---------------------------------------------------------------------

1. Summary:

Updated seamonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux 2.1, 3, and 4.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64 Red Hat Linux Advanced Workstation 2.1 - ia64 Red Hat Enterprise Linux ES version 2.1 - i386 Red Hat Enterprise Linux WS version 2.1 - i386 Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

SeaMonkey is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor.

Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738)

Several content injection flaws were found in the way SeaMonkey handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736,
CVE-2007-3089)

A flaw was found in the way SeaMonkey cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656)

Users of SeaMonkey are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

5. Bug IDs fixed (http://bugzilla.redhat.com/):

248518 - CVE-2007-3089 various flaws in mozilla products (CVE-2007-3734 CVE-2007-3735 CVE-2007-3736 CVE-2007-3737 CVE-2007-3656 CVE-2007-3738)

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/seamonkey-1.0.9-0.4.el2.src.rpm
cc5686c2b8327050a5f0552dd38b5d93 seamonkey-1.0.9-0.4.el2.src.rpm

i386:
1a15608b2a2fc835a71e1edf3a744543 seamonkey-1.0.9-0.4.el2.i386.rpm
196c3fc1324d3fa490cedd5ae6e98463 seamonkey-chat-1.0.9-0.4.el2.i386.rpm
781c3808d71b8826a0ba28a864e2d923 seamonkey-devel-1.0.9-0.4.el2.i386.rpm
84b0590158b76317e63d564371d051c5 seamonkey-dom-inspector-1.0.9-0.4.el2.i386.rpm
9b36fc7633921e659b599157897f80c9 seamonkey-js-debugger-1.0.9-0.4.el2.i386.rpm
46a848d49fd3c96e7e2b3777c26a68c2 seamonkey-mail-1.0.9-0.4.el2.i386.rpm
02d57365ee09b6b18c84c9ceb0aa931e seamonkey-nspr-1.0.9-0.4.el2.i386.rpm
9def5b224ff408da5b1d6e64d5e8c54e seamonkey-nspr-devel-1.0.9-0.4.el2.i386.rpm
b1dd916e414f069427270e4e7892a13a seamonkey-nss-1.0.9-0.4.el2.i386.rpm
d96691107f4fca50a43d4f4aa4b3a518 seamonkey-nss-devel-1.0.9-0.4.el2.i386.rpm

ia64:
e8478f38fbf8db1cf93fd773e8e97b67 seamonkey-1.0.9-0.4.el2.ia64.rpm
ae107967ae0c51e6f5a02d1c818ff5d1 seamonkey-chat-1.0.9-0.4.el2.ia64.rpm
ba127ee830383f86ad75e0adc4bffd38 seamonkey-devel-1.0.9-0.4.el2.ia64.rpm
b2e9296dbbd8f8f69d48bf343c5924a2 seamonkey-dom-inspector-1.0.9-0.4.el2.ia64.rpm
5b0be8fce5f18618709206359a7316e7 seamonkey-js-debugger-1.0.9-0.4.el2.ia64.rpm
c2b59b5b6c32ac616341922ed364a735 seamonkey-mail-1.0.9-0.4.el2.ia64.rpm
ca9275e59156d54b8c8cb4758996dfff seamonkey-nspr-1.0.9-0.4.el2.ia64.rpm
2c654985d18845feb81654612592867c seamonkey-nspr-devel-1.0.9-0.4.el2.ia64.rpm
e14d9acbe7c867267419519f3ec203c0 seamonkey-nss-1.0.9-0.4.el2.ia64.rpm
6720a8fb720889c22a1499f5ac7c4d27 seamonkey-nss-devel-1.0.9-0.4.el2.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW-ia64/en/os/SRPMS/seamonkey-1.0.9-0.4.el2.src.rpm
cc5686c2b8327050a5f0552dd38b5d93 seamonkey-1.0.9-0.4.el2.src.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/seamonkey-1.0.9-0.4.el2.src.rpm
cc5686c2b8327050a5f0552dd38b5d93 seamonkey-1.0.9-0.4.el2.src.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/seamonkey-1.0.9-0.4.el2.src.rpm
cc5686c2b8327050a5f0552dd38b5d93 seamonkey-1.0.9-0.4.el2.src.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/seamonkey-1.0.9-0.3.el3.src.rpm
e5bb1f82dd5f03819bdd717ef2d39a80 seamonkey-1.0.9-0.3.el3.src.rpm

i386:
e856dba14dc80e87ab36bda0ca021404 seamonkey-1.0.9-0.3.el3.i386.rpm
9a221a57ec9ee48158c60e0b0f5c4d72 seamonkey-chat-1.0.9-0.3.el3.i386.rpm
0a088a47124ee480bba8c3f1cbb46ca5 seamonkey-debuginfo-1.0.9-0.3.el3.i386.rpm
e733e2c431cf8f44e6164ad38cf023ef seamonkey-devel-1.0.9-0.3.el3.i386.rpm
be28bf5db94129511ddf39610249e921 seamonkey-dom-inspector-1.0.9-0.3.el3.i386.rpm
0d7a9436ee8a0774aada00759c12add1 seamonkey-js-debugger-1.0.9-0.3.el3.i386.rpm
16128bf8ba6de01663b67ca5ea049b58 seamonkey-mail-1.0.9-0.3.el3.i386.rpm
ae27f705e38d5e779b7c8b6cf353839a seamonkey-nspr-1.0.9-0.3.el3.i386.rpm
ae269d3e2192ce5bef754a7af1988c8b seamonkey-nspr-devel-1.0.9-0.3.el3.i386.rpm
eb1936b7be5a30faa9962a160292cc0e seamonkey-nss-1.0.9-0.3.el3.i386.rpm
b186c7f7759ac43cb977a0de2aab21ca seamonkey-nss-devel-1.0.9-0.3.el3.i386.rpm

ia64:
72bc69413c8731443f39f71f8176413b seamonkey-1.0.9-0.3.el3.ia64.rpm
b21030e07bb4c7d9085dcaf5896a2636 seamonkey-chat-1.0.9-0.3.el3.ia64.rpm
0a088a47124ee480bba8c3f1cbb46ca5 seamonkey-debuginfo-1.0.9-0.3.el3.i386.rpm
3d89fa31faf785925e9c52f49b5e7daa seamonkey-debuginfo-1.0.9-0.3.el3.ia64.rpm
c996b9114f37fe6c548136aa89501853 seamonkey-devel-1.0.9-0.3.el3.ia64.rpm
d191af760ba6833962f7668a5f569efb seamonkey-dom-inspector-1.0.9-0.3.el3.ia64.rpm
134eddda6e95949a670fb8281fec1ee1 seamonkey-js-debugger-1.0.9-0.3.el3.ia64.rpm
576909796e04383bd6ba3da164149f51 seamonkey-mail-1.0.9-0.3.el3.ia64.rpm
ae27f705e38d5e779b7c8b6cf353839a seamonkey-nspr-1.0.9-0.3.el3.i386.rpm
782e7c631096ce90066f4e3141949621 seamonkey-nspr-1.0.9-0.3.el3.ia64.rpm
b7211be56fd11aab035a057a15e12faf seamonkey-nspr-devel-1.0.9-0.3.el3.ia64.rpm
eb1936b7be5a30faa9962a160292cc0e seamonkey-nss-1.0.9-0.3.el3.i386.rpm
16b5789ec76c719364ad71b76e2d3b4a seamonkey-nss-1.0.9-0.3.el3.ia64.rpm
cefe882d099d19df9a11459c3def8124 seamonkey-nss-devel-1.0.9-0.3.el3.ia64.rpm

ppc:
bc25230eb64ce7e04070516c9dfcdd4f seamonkey-1.0.9-0.3.el3.ppc.rpm fa3e73a126de90d2bb7385e349d6d0eb seamonkey-chat-1.0.9-0.3.el3.ppc.rpm
49b42c1525d6c1c89f0bf79a0e556102 seamonkey-debuginfo-1.0.9-0.3.el3.ppc.rpm
bce56b5e21c4db944dcaa8b97fc9b114 seamonkey-devel-1.0.9-0.3.el3.ppc.rpm
71a5f1869b6defeb51cd64fb548bdd2a seamonkey-dom-inspector-1.0.9-0.3.el3.ppc.rpm
79c51eea67d20ef3b6001e9304dd3db0 seamonkey-js-debugger-1.0.9-0.3.el3.ppc.rpm
6a87c1f87e0415c62f91bf8e5e7774f3 seamonkey-mail-1.0.9-0.3.el3.ppc.rpm
97a63b4f078905b041f3fad895f9b067 seamonkey-nspr-1.0.9-0.3.el3.ppc.rpm
5cf843d2e483980a58ff278c669f9a19 seamonkey-nspr-devel-1.0.9-0.3.el3.ppc.rpm
5b647f69414bf189374f1022f4d7e777 seamonkey-nss-1.0.9-0.3.el3.ppc.rpm
b3c1f6f576a6cbfc1ba0296675c58d2b seamonkey-nss-devel-1.0.9-0.3.el3.ppc.rpm

s390:
c1f51de6bf8b438a72a0699bcd5da18e seamonkey-1.0.9-0.3.el3.s390.rpm 3ced10f1a1daabcecba8b63f36f79c9e seamonkey-chat-1.0.9-0.3.el3.s390.rpm
8413b1a614e767f95072f0fecf7390ed seamonkey-debuginfo-1.0.9-0.3.el3.s390.rpm
3f03c8fead5ddb0751eb9c6b15c9115e seamonkey-devel-1.0.9-0.3.el3.s390.rpm
a8a1480c60f51b059028d0ab9ad493cc seamonkey-dom-inspector-1.0.9-0.3.el3.s390.rpm
55e1bd7b1774afd398f0aa3c3f6ae0c9 seamonkey-js-debugger-1.0.9-0.3.el3.s390.rpm
182257cb6c8d4215eb4467d3bcc15ee3 seamonkey-mail-1.0.9-0.3.el3.s390.rpm
a8d78b8563062f85de44e7d4465c095d seamonkey-nspr-1.0.9-0.3.el3.s390.rpm
38c8fbfd57e0b27add2470054607a9f1 seamonkey-nspr-devel-1.0.9-0.3.el3.s390.rpm
038fa5d941c7471dd1e735314d2e1689 seamonkey-nss-1.0.9-0.3.el3.s390.rpm
419a865d7c927d90a3f80469915116ec seamonkey-nss-devel-1.0.9-0.3.el3.s390.rpm

s390x:
aa6f0c5a57688e6aae6a995ceb06bfe0 seamonkey-1.0.9-0.3.el3.s390x.rpm
d00cd579989b30f68f16934162b60664 seamonkey-chat-1.0.9-0.3.el3.s390x.rpm
8413b1a614e767f95072f0fecf7390ed seamonkey-debuginfo-1.0.9-0.3.el3.s390.rpm
6688f9ca9a6bc6c470e490ada7b94372 seamonkey-debuginfo-1.0.9-0.3.el3.s390x.rpm
8fd1dfe62ae1cd942566fd47b404ad35 seamonkey-devel-1.0.9-0.3.el3.s390x.rpm
ed1411e8df125bd2cb1bed2d52458ee0 seamonkey-dom-inspector-1.0.9-0.3.el3.s390x.rpm
20c79b15bbc79423597208dd82d09999 seamonkey-js-debugger-1.0.9-0.3.el3.s390x.rpm
b9d6ed3ac5690ba161769b5212470c11 seamonkey-mail-1.0.9-0.3.el3.s390x.rpm
a8d78b8563062f85de44e7d4465c095d seamonkey-nspr-1.0.9-0.3.el3.s390.rpm
78bd1b2872529c912d2b18eecc5e6fda seamonkey-nspr-1.0.9-0.3.el3.s390x.rpm
8e4c5a3007c6021067861a9928f0b0b1 seamonkey-nspr-devel-1.0.9-0.3.el3.s390x.rpm
038fa5d941c7471dd1e735314d2e1689 seamonkey-nss-1.0.9-0.3.el3.s390.rpm
f0ccdecbe77940b67c27641018b629cc seamonkey-nss-1.0.9-0.3.el3.s390x.rpm
d62269d63833af63927cb43323300791 seamonkey-nss-devel-1.0.9-0.3.el3.s390x.rpm

x86_64:
e856dba14dc80e87ab36bda0ca021404 seamonkey-1.0.9-0.3.el3.i386.rpm
1cb71b0410dc7966e92a684874e80c42 seamonkey-1.0.9-0.3.el3.x86_64.rpm
4c21728b0154de54646ae4c10eed7d56 seamonkey-chat-1.0.9-0.3.el3.x86_64.rpm
0a088a47124ee480bba8c3f1cbb46ca5 seamonkey-debuginfo-1.0.9-0.3.el3.i386.rpm
be89ac8c9c08cdc6d54487c3ee62a9da seamonkey-debuginfo-1.0.9-0.3.el3.x86_64.rpm
38efe889815f5365101ca8da65afb438 seamonkey-devel-1.0.9-0.3.el3.x86_64.rpm
47d7834dee20c5ad937e8279544342a7 seamonkey-dom-inspector-1.0.9-0.3.el3.x86_64.rpm
b9bca22754afea7df78ae8d17227d9af seamonkey-js-debugger-1.0.9-0.3.el3.x86_64.rpm
5dfb885a5ff5da51670dbacbdc28644e seamonkey-mail-1.0.9-0.3.el3.x86_64.rpm
ae27f705e38d5e779b7c8b6cf353839a seamonkey-nspr-1.0.9-0.3.el3.i386.rpm
3a3f7ae97d87c1714613dea93ac8f352 seamonkey-nspr-1.0.9-0.3.el3.x86_64.rpm
785659f59bf6625ca5bc2a9c867fb8e5 seamonkey-nspr-devel-1.0.9-0.3.el3.x86_64.rpm
eb1936b7be5a30faa9962a160292cc0e seamonkey-nss-1.0.9-0.3.el3.i386.rpm
dc154254aae7a6795243d3c02dbace32 seamonkey-nss-1.0.9-0.3.el3.x86_64.rpm
8b2932e14c04ef485f5310714c177c9a seamonkey-nss-devel-1.0.9-0.3.el3.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/seamonkey-1.0.9-0.3.el3.src.rpm
e5bb1f82dd5f03819bdd717ef2d39a80 seamonkey-1.0.9-0.3.el3.src.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/seamonkey-1.0.9-0.3.el3.src.rpm
e5bb1f82dd5f03819bdd717ef2d39a80 seamonkey-1.0.9-0.3.el3.src.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/seamonkey-1.0.9-0.3.el3.src.rpm
e5bb1f82dd5f03819bdd717ef2d39a80 seamonkey-1.0.9-0.3.el3.src.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/seamonkey-1.0.9-4.el4.src.rpm
12c0fdcbf01d77fba1b15c66989f63c9 seamonkey-1.0.9-4.el4.src.rpm

i386:
c4118c933cb1028b5cf87ec519fae6c7 seamonkey-1.0.9-4.el4.i386.rpm
b36d32fdfe498ffe572bf97bfa166e23 seamonkey-chat-1.0.9-4.el4.i386.rpm
79663b606b4131d3690dd8bf9815ed63 seamonkey-debuginfo-1.0.9-4.el4.i386.rpm
36ccbae1f601229db112961dcd04cf1c seamonkey-devel-1.0.9-4.el4.i386.rpm
c69bf574450d37c02b26513510eada58 seamonkey-dom-inspector-1.0.9-4.el4.i386.rpm
6a41609c239181f8f33e518641da825f seamonkey-js-debugger-1.0.9-4.el4.i386.rpm
8933fe7d0686b174b88dcdbf222eb4f9 seamonkey-mail-1.0.9-4.el4.i386.rpm
2a744088981d322a85a3f9dafa6cb27d seamonkey-nspr-1.0.9-4.el4.i386.rpm
82bea13d4d86ac767c69459ffe23cc64 seamonkey-nspr-devel-1.0.9-4.el4.i386.rpm
454755fe92dfc238f76e54987f200173 seamonkey-nss-1.0.9-4.el4.i386.rpm
68b908f98aeb5e911d2c89810e0ac6a5 seamonkey-nss-devel-1.0.9-4.el4.i386.rpm

ia64:
f1addec176e0c5013c5974c5e0e70a3f seamonkey-1.0.9-4.el4.ia64.rpm 1f5fc3b344ac664b893da332f3bf04ec seamonkey-chat-1.0.9-4.el4.ia64.rpm
79663b606b4131d3690dd8bf9815ed63 seamonkey-debuginfo-1.0.9-4.el4.i386.rpm
a299f72eac38cd374bcee95808de66fe seamonkey-debuginfo-1.0.9-4.el4.ia64.rpm
8ca8422a881d5014470a6e3ef5ef97b1 seamonkey-devel-1.0.9-4.el4.ia64.rpm
0588498207e07ec95a549c678a228cb2 seamonkey-dom-inspector-1.0.9-4.el4.ia64.rpm
167c41cdcb5f8b8af8a47feb34336aa5 seamonkey-js-debugger-1.0.9-4.el4.ia64.rpm
afb1e270bd9eeff7b58ff9595c1513df seamonkey-mail-1.0.9-4.el4.ia64.rpm
2a744088981d322a85a3f9dafa6cb27d seamonkey-nspr-1.0.9-4.el4.i386.rpm
238e90ec4bfc1dfb34faa9d5420a950b seamonkey-nspr-1.0.9-4.el4.ia64.rpm
4921d8397a97d06f20599d531a5baa50 seamonkey-nspr-devel-1.0.9-4.el4.ia64.rpm
454755fe92dfc238f76e54987f200173 seamonkey-nss-1.0.9-4.el4.i386.rpm
516a1513a2086041ffcad6c30fd48d1e seamonkey-nss-1.0.9-4.el4.ia64.rpm
314efd79ea2c3028f0e8d38a03fda58b seamonkey-nss-devel-1.0.9-4.el4.ia64.rpm

ppc:
c3d39a852c4a5c59e051a228c2341a53 seamonkey-1.0.9-4.el4.ppc.rpm
9f0bb49f7c425392b3e6f50efdec40e8 seamonkey-chat-1.0.9-4.el4.ppc.rpm
d140072f636504b6a4db9dca1a32243d seamonkey-debuginfo-1.0.9-4.el4.ppc.rpm
0c889113418b1620c9d06ac2971b92ed seamonkey-devel-1.0.9-4.el4.ppc.rpm
946fc5e72f117d24282f996f95f02183 seamonkey-dom-inspector-1.0.9-4.el4.ppc.rpm
fe483e8e76283f414fb65f8f12d71fdb seamonkey-js-debugger-1.0.9-4.el4.ppc.rpm
eed0c4b023aea620d11915500e994336 seamonkey-mail-1.0.9-4.el4.ppc.rpm
387d3b0e0c8d6879583accee3547cb96 seamonkey-nspr-1.0.9-4.el4.ppc.rpm
028e6e13323944560b684b2afae17573 seamonkey-nspr-devel-1.0.9-4.el4.ppc.rpm
536e20001f1767592fa722a221e620ca seamonkey-nss-1.0.9-4.el4.ppc.rpm d8cbcd54c8ad1edbcf6f3ac2a466a98a seamonkey-nss-devel-1.0.9-4.el4.ppc.rpm

s390:
bd551795d70510eb8b3e05d9a4855d21 seamonkey-1.0.9-4.el4.s390.rpm 0cb7a330912db7e8ddd81f946615d25d seamonkey-chat-1.0.9-4.el4.s390.rpm
58358bfb08beb9b34b798d1403f86057 seamonkey-debuginfo-1.0.9-4.el4.s390.rpm
3640f26a642baf6d5f37202fdf5f3403 seamonkey-devel-1.0.9-4.el4.s390.rpm
77c392a4ecaafc8e933cb06bff0c8f6c seamonkey-dom-inspector-1.0.9-4.el4.s390.rpm
9e127df4338c0de21260430468ce6a84 seamonkey-js-debugger-1.0.9-4.el4.s390.rpm
faeee0c20fa6cbe1fce982947dcd1869 seamonkey-mail-1.0.9-4.el4.s390.rpm
7ef26f040366a3da73ddf6f9389cb6f1 seamonkey-nspr-1.0.9-4.el4.s390.rpm
5c0ae09188210ce6637eaecb420d7ba5 seamonkey-nspr-devel-1.0.9-4.el4.s390.rpm
f2d32980e9524143e8c0505a26a43894 seamonkey-nss-1.0.9-4.el4.s390.rpm
f8be0757c19417d5dec7107d329c956b seamonkey-nss-devel-1.0.9-4.el4.s390.rpm

s390x:
79358041c38f9fed60100db290c904fb seamonkey-1.0.9-4.el4.s390x.rpm
e8b0e066342e5cf4308057565ad6cd81 seamonkey-chat-1.0.9-4.el4.s390x.rpm
58358bfb08beb9b34b798d1403f86057 seamonkey-debuginfo-1.0.9-4.el4.s390.rpm
d9cba9a24ed287ef8ff21814b6004fca seamonkey-debuginfo-1.0.9-4.el4.s390x.rpm
0bd17b30419e4e452a4a72df0c453493 seamonkey-devel-1.0.9-4.el4.s390x.rpm
d1ab971b9ecba5d6cefbfe045ed3d1d5 seamonkey-dom-inspector-1.0.9-4.el4.s390x.rpm
6cf91690c62eb6fcd15e6f1b9a7695e9 seamonkey-js-debugger-1.0.9-4.el4.s390x.rpm
ff565ffbac8151a6a0504e1aeb0192fe seamonkey-mail-1.0.9-4.el4.s390x.rpm
7ef26f040366a3da73ddf6f9389cb6f1 seamonkey-nspr-1.0.9-4.el4.s390.rpm
87d66756ccd32ca0e60a3665fbc2c637 seamonkey-nspr-1.0.9-4.el4.s390x.rpm
94a1e10211e14d030696d1c1f9048928 seamonkey-nspr-devel-1.0.9-4.el4.s390x.rpm
f2d32980e9524143e8c0505a26a43894 seamonkey-nss-1.0.9-4.el4.s390.rpm
9c54d79add8b6c8b9fbfd2e8c7ac0e87 seamonkey-nss-1.0.9-4.el4.s390x.rpm
1c28b387a41118994f116572ca822dde seamonkey-nss-devel-1.0.9-4.el4.s390x.rpm

x86_64:
6f09c211403d2ba22ea80b465fd57905 seamonkey-1.0.9-4.el4.x86_64.rpm
3493659d3f4afae0ba8c702e274fd011 seamonkey-chat-1.0.9-4.el4.x86_64.rpm
79663b606b4131d3690dd8bf9815ed63 seamonkey-debuginfo-1.0.9-4.el4.i386.rpm
04c2b1d6c711f6336692447f66c7da51 seamonkey-debuginfo-1.0.9-4.el4.x86_64.rpm
32a22a59b5edf1c94fee0df39dd3df3d seamonkey-devel-1.0.9-4.el4.x86_64.rpm
402974102a9ecff44840041789d2952a seamonkey-dom-inspector-1.0.9-4.el4.x86_64.rpm
f7cdfc6bdbe94fe38417f58c9fec7f29 seamonkey-js-debugger-1.0.9-4.el4.x86_64.rpm
dbbb583340a4da526d20edcf63041058 seamonkey-mail-1.0.9-4.el4.x86_64.rpm
2a744088981d322a85a3f9dafa6cb27d seamonkey-nspr-1.0.9-4.el4.i386.rpm
ebfd48ae1be4bcdd58e165a515186766 seamonkey-nspr-1.0.9-4.el4.x86_64.rpm
17e4353d537ee49cf7569da5d53026bd seamonkey-nspr-devel-1.0.9-4.el4.x86_64.rpm
454755fe92dfc238f76e54987f200173 seamonkey-nss-1.0.9-4.el4.i386.rpm
2ee8f2bdc38881b7b26442bfe06b9d4e seamonkey-nss-1.0.9-4.el4.x86_64.rpm
c45cda5222fb5d92ef6002f3f0dd4b4c seamonkey-nss-devel-1.0.9-4.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/seamonkey-1.0.9-4.el4.src.rpm
12c0fdcbf01d77fba1b15c66989f63c9 seamonkey-1.0.9-4.el4.src.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/seamonkey-1.0.9-4.el4.src.rpm
12c0fdcbf01d77fba1b15c66989f63c9 seamonkey-1.0.9-4.el4.src.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/seamonkey-1.0.9-4.el4.src.rpm
12c0fdcbf01d77fba1b15c66989f63c9 seamonkey-1.0.9-4.el4.src.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3656
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3734
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3735
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3736
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3737
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3738
http://www.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

iD8DBQFGntDyXlSAg2UNWIIRAj8QAKC1OVw1oaC9oNPY21aeoZVXuR9HdQCgj8c9
jYDai+OTngQ4eIyP18rNBD8=
=ZwKo
-----END PGP SIGNATURE-----

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ---------------------------------------------------------------------
Red Hat Security Advisory

Synopsis:          Moderate: thunderbird security update
Advisory ID:       RHSA-2007:0723-01
Advisory URL:      https://rhn.redhat.com/errata/RHSA-2007-0723.html
Issue date:        2007-07-18
Updated on:        2007-07-18
Product:           Red Hat Enterprise Linux
CVE Names:         CVE-2007-3089 CVE-2007-3734 CVE-2007-3735
                   CVE-2007-3736 CVE-2007-3737 CVE-2007-3738
- ---------------------------------------------------------------------

1. Summary:

Updated thunderbird packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 RHEL Optional Productivity Applications (v. 5 server) - i386, x86_64

3. Problem description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the way Thunderbird processed certain malformed JavaScript code. A malicious HTML email message containing JavaScript code could cause Thunderbird to crash or potentially execute arbitrary code as the user running Thunderbird. JavaScript support is disabled by default in Thunderbird; these issues are not exploitable unless the user has enabled JavaScript. (CVE-2007-3089, CVE-2007-3734, CVE-2007-3735, CVE-2007-3736, CVE-2007-3737, CVE-2007-3738)

Users of Thunderbird are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

5. Bug IDs fixed (http://bugzilla.redhat.com/):

248518 - CVE-2007-3089 various flaws in mozilla products (CVE-2007-3734 CVE-2007-3735 CVE-2007-3736 CVE-2007-3737 CVE-2007-3656 CVE-2007-3738)

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/thunderbird-1.5.0.12-0.3.el4.src.rpm
538c43a537434bf87d1e426e9d1dd165 thunderbird-1.5.0.12-0.3.el4.src.rpm

i386:
6f70b6a69cdb029118b546fd51471ba5 thunderbird-1.5.0.12-0.3.el4.i386.rpm
23e9d83d8ca383c4fa31375ea6739c21 thunderbird-debuginfo-1.5.0.12-0.3.el4.i386.rpm

ia64:
e16916261b3fdac23f8a3f44e9801a93 thunderbird-1.5.0.12-0.3.el4.ia64.rpm
ba23bf28e73878031d709384d118ff3c thunderbird-debuginfo-1.5.0.12-0.3.el4.ia64.rpm

ppc:
7ea6c491fe5e4231e2835a0f17f631e0 thunderbird-1.5.0.12-0.3.el4.ppc.rpm
c9fa0388d9a7bf958cb234d9d1cddaa2 thunderbird-debuginfo-1.5.0.12-0.3.el4.ppc.rpm

s390:
a04a2f762f6639db33595db7730749a0 thunderbird-1.5.0.12-0.3.el4.s390.rpm
3161e0788560ba0a730d1a60004679f8 thunderbird-debuginfo-1.5.0.12-0.3.el4.s390.rpm

s390x:
db326caf35d4b24a5cd39dc671d7aaa2 thunderbird-1.5.0.12-0.3.el4.s390x.rpm
d505b9b26392b922700106caedd20e96 thunderbird-debuginfo-1.5.0.12-0.3.el4.s390x.rpm

x86_64:
ed4e5c71027cc960b299865691099eb2 thunderbird-1.5.0.12-0.3.el4.x86_64.rpm
0200ab2c5a402a570c626b8de6aa532c thunderbird-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/thunderbird-1.5.0.12-0.3.el4.src.rpm
538c43a537434bf87d1e426e9d1dd165 thunderbird-1.5.0.12-0.3.el4.src.rpm

i386:
6f70b6a69cdb029118b546fd51471ba5 thunderbird-1.5.0.12-0.3.el4.i386.rpm
23e9d83d8ca383c4fa31375ea6739c21 thunderbird-debuginfo-1.5.0.12-0.3.el4.i386.rpm

x86_64:
ed4e5c71027cc960b299865691099eb2 thunderbird-1.5.0.12-0.3.el4.x86_64.rpm
0200ab2c5a402a570c626b8de6aa532c thunderbird-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/thunderbird-1.5.0.12-0.3.el4.src.rpm
538c43a537434bf87d1e426e9d1dd165 thunderbird-1.5.0.12-0.3.el4.src.rpm

i386:
6f70b6a69cdb029118b546fd51471ba5 thunderbird-1.5.0.12-0.3.el4.i386.rpm
23e9d83d8ca383c4fa31375ea6739c21 thunderbird-debuginfo-1.5.0.12-0.3.el4.i386.rpm

ia64:
e16916261b3fdac23f8a3f44e9801a93 thunderbird-1.5.0.12-0.3.el4.ia64.rpm
ba23bf28e73878031d709384d118ff3c thunderbird-debuginfo-1.5.0.12-0.3.el4.ia64.rpm

x86_64:
ed4e5c71027cc960b299865691099eb2 thunderbird-1.5.0.12-0.3.el4.x86_64.rpm
0200ab2c5a402a570c626b8de6aa532c thunderbird-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/thunderbird-1.5.0.12-0.3.el4.src.rpm
538c43a537434bf87d1e426e9d1dd165 thunderbird-1.5.0.12-0.3.el4.src.rpm

i386:
6f70b6a69cdb029118b546fd51471ba5 thunderbird-1.5.0.12-0.3.el4.i386.rpm
23e9d83d8ca383c4fa31375ea6739c21 thunderbird-debuginfo-1.5.0.12-0.3.el4.i386.rpm

ia64:
e16916261b3fdac23f8a3f44e9801a93 thunderbird-1.5.0.12-0.3.el4.ia64.rpm
ba23bf28e73878031d709384d118ff3c thunderbird-debuginfo-1.5.0.12-0.3.el4.ia64.rpm

x86_64:
ed4e5c71027cc960b299865691099eb2 thunderbird-1.5.0.12-0.3.el4.x86_64.rpm
0200ab2c5a402a570c626b8de6aa532c thunderbird-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop (v. 5 client):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/thunderbird-1.5.0.12-3.el5.src.rpm
4373c55c246ecebbf9bf1ba333678676 thunderbird-1.5.0.12-3.el5.src.rpm

i386:
fbb7947309c94885611478b94f31cd70 thunderbird-1.5.0.12-3.el5.i386.rpm
067a33e1d0fabbe722e2f8ded2b2057e thunderbird-debuginfo-1.5.0.12-3.el5.i386.rpm

x86_64:
6654c7bed76f6d1470fd3e7d6ff81327 thunderbird-1.5.0.12-3.el5.x86_64.rpm
34840f0236cd5bbd9f42c03d30c42828 thunderbird-debuginfo-1.5.0.12-3.el5.x86_64.rpm

RHEL Optional Productivity Applications (v. 5 server):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/thunderbird-1.5.0.12-3.el5.src.rpm
4373c55c246ecebbf9bf1ba333678676 thunderbird-1.5.0.12-3.el5.src.rpm

i386:
fbb7947309c94885611478b94f31cd70 thunderbird-1.5.0.12-3.el5.i386.rpm
067a33e1d0fabbe722e2f8ded2b2057e thunderbird-debuginfo-1.5.0.12-3.el5.i386.rpm

x86_64:
6654c7bed76f6d1470fd3e7d6ff81327 thunderbird-1.5.0.12-3.el5.x86_64.rpm
34840f0236cd5bbd9f42c03d30c42828 thunderbird-debuginfo-1.5.0.12-3.el5.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3734
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3735
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3736
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3737
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3738
http://www.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

iD8DBQFGntEfXlSAg2UNWIIRArrUAKC1v2D5bXht37doLu2Hkl6m22R1lACfSUg+
TFceYxLxnAJudv0GHs3XiYg=
=fvw6
-----END PGP SIGNATURE-----

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ---------------------------------------------------------------------
Red Hat Security Advisory

Synopsis:          Critical: firefox security update
Advisory ID:       RHSA-2007:0724-01
Advisory URL:      https://rhn.redhat.com/errata/RHSA-2007-0724.html
Issue date:        2007-07-18
Updated on:        2007-07-18
Product:           Red Hat Enterprise Linux
CVE Names:         CVE-2007-3089 CVE-2007-3656 CVE-2007-3734
                   CVE-2007-3735 CVE-2007-3736 CVE-2007-3737
                   CVE-2007-3738
- ---------------------------------------------------------------------

1. Summary:

Updated firefox packages that fix several security bugs are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 RHEL Desktop Workstation (v. 5 client) - i386, x86_64 Red Hat Enterprise Linux (v. 5 server) - i386, ia64, ppc, s390x, x86_64

3. Problem description:

Mozilla Firefox is an open source Web browser.

Several flaws were found in the way Firefox processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause Firefox to crash or potentially execute arbitrary code as the user running Firefox. (CVE-2007-3734, CVE-2007-3735, CVE-2007-3737, CVE-2007-3738)

Several content injection flaws were found in the way Firefox handled certain JavaScript code. A web page containing malicious JavaScript code could inject arbitrary content into other web pages. (CVE-2007-3736,
CVE-2007-3089)

A flaw was found in the way Firefox cached web pages on the local disk. A malicious web page may be able to inject arbitrary HTML into a browsing session if the user reloads a targeted site. (CVE-2007-3656)

Users of Firefox are advised to upgrade to these erratum packages, which contain backported patches that correct these issues.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

5. Bug IDs fixed (http://bugzilla.redhat.com/):

248518 - CVE-2007-3089 various flaws in mozilla products (CVE-2007-3734 CVE-2007-3735 CVE-2007-3736 CVE-2007-3737 CVE-2007-3656 CVE-2007-3738)

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/firefox-1.5.0.12-0.3.el4.src.rpm
f07113979e83ca0e3b0f9caa8e34a4a6 firefox-1.5.0.12-0.3.el4.src.rpm

i386:
7622fec562eb6248eed19ac4903695fb firefox-1.5.0.12-0.3.el4.i386.rpm 6359107ef13d6a6a21e1acd6e22b12cb firefox-debuginfo-1.5.0.12-0.3.el4.i386.rpm

ia64:
27da182682ae877ea07b154c45ea8edc firefox-1.5.0.12-0.3.el4.ia64.rpm aeee3e428309d64bbe9c4714ad48b28d firefox-debuginfo-1.5.0.12-0.3.el4.ia64.rpm

ppc:
732fe2238d90fd91ae72be8816fe8772 firefox-1.5.0.12-0.3.el4.ppc.rpm
89fea0cc921d3cc113dd28b6eed91022 firefox-debuginfo-1.5.0.12-0.3.el4.ppc.rpm

s390:
666483674e567946cb9c07e202814518 firefox-1.5.0.12-0.3.el4.s390.rpm
68f501a441bac6e34fca1582ca871b52 firefox-debuginfo-1.5.0.12-0.3.el4.s390.rpm

s390x:
9af7bbfc652a0e7f6b58b72fa2f598e9 firefox-1.5.0.12-0.3.el4.s390x.rpm
91c6e2324de24864de6cfbde5d058567 firefox-debuginfo-1.5.0.12-0.3.el4.s390x.rpm

x86_64:
ee0e7204d23c2a6109baf4610593c5af firefox-1.5.0.12-0.3.el4.x86_64.rpm
29f780a7080136522b9339ac46af2414 firefox-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/firefox-1.5.0.12-0.3.el4.src.rpm
f07113979e83ca0e3b0f9caa8e34a4a6 firefox-1.5.0.12-0.3.el4.src.rpm

i386:
7622fec562eb6248eed19ac4903695fb firefox-1.5.0.12-0.3.el4.i386.rpm 6359107ef13d6a6a21e1acd6e22b12cb firefox-debuginfo-1.5.0.12-0.3.el4.i386.rpm

x86_64:
ee0e7204d23c2a6109baf4610593c5af firefox-1.5.0.12-0.3.el4.x86_64.rpm
29f780a7080136522b9339ac46af2414 firefox-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/firefox-1.5.0.12-0.3.el4.src.rpm
f07113979e83ca0e3b0f9caa8e34a4a6 firefox-1.5.0.12-0.3.el4.src.rpm

i386:
7622fec562eb6248eed19ac4903695fb firefox-1.5.0.12-0.3.el4.i386.rpm 6359107ef13d6a6a21e1acd6e22b12cb firefox-debuginfo-1.5.0.12-0.3.el4.i386.rpm

ia64:
27da182682ae877ea07b154c45ea8edc firefox-1.5.0.12-0.3.el4.ia64.rpm aeee3e428309d64bbe9c4714ad48b28d firefox-debuginfo-1.5.0.12-0.3.el4.ia64.rpm

x86_64:
ee0e7204d23c2a6109baf4610593c5af firefox-1.5.0.12-0.3.el4.x86_64.rpm
29f780a7080136522b9339ac46af2414 firefox-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/firefox-1.5.0.12-0.3.el4.src.rpm
f07113979e83ca0e3b0f9caa8e34a4a6 firefox-1.5.0.12-0.3.el4.src.rpm

i386:
7622fec562eb6248eed19ac4903695fb firefox-1.5.0.12-0.3.el4.i386.rpm 6359107ef13d6a6a21e1acd6e22b12cb firefox-debuginfo-1.5.0.12-0.3.el4.i386.rpm

ia64:
27da182682ae877ea07b154c45ea8edc firefox-1.5.0.12-0.3.el4.ia64.rpm aeee3e428309d64bbe9c4714ad48b28d firefox-debuginfo-1.5.0.12-0.3.el4.ia64.rpm

x86_64:
ee0e7204d23c2a6109baf4610593c5af firefox-1.5.0.12-0.3.el4.x86_64.rpm
29f780a7080136522b9339ac46af2414 firefox-debuginfo-1.5.0.12-0.3.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop (v. 5 client):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/firefox-1.5.0.12-3.el5.src.rpm
9c788fafd5691d3345f053e3134ca2ea firefox-1.5.0.12-3.el5.src.rpm

i386:
41f9235be61710608c049fed0c39ba19 firefox-1.5.0.12-3.el5.i386.rpm d4d2e8f63a26bb7137ca0f62a034446c firefox-debuginfo-1.5.0.12-3.el5.i386.rpm

RHEL Desktop Workstation (v. 5 client):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/firefox-1.5.0.12-3.el5.src.rpm
9c788fafd5691d3345f053e3134ca2ea firefox-1.5.0.12-3.el5.src.rpm

i386:
d4d2e8f63a26bb7137ca0f62a034446c firefox-debuginfo-1.5.0.12-3.el5.i386.rpm
be1322bcd982139d6bd88a739af188a8 firefox-devel-1.5.0.12-3.el5.i386.rpm

x86_64:
d4d2e8f63a26bb7137ca0f62a034446c firefox-debuginfo-1.5.0.12-3.el5.i386.rpm
9848654d72200a04b5e7c729711412f1 firefox-debuginfo-1.5.0.12-3.el5.x86_64.rpm
be1322bcd982139d6bd88a739af188a8 firefox-devel-1.5.0.12-3.el5.i386.rpm
ecfcecad587c5b5a87ecb990407768c1 firefox-devel-1.5.0.12-3.el5.x86_64.rpm

Red Hat Enterprise Linux (v. 5 server):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/firefox-1.5.0.12-3.el5.src.rpm
9c788fafd5691d3345f053e3134ca2ea firefox-1.5.0.12-3.el5.src.rpm

i386:
41f9235be61710608c049fed0c39ba19 firefox-1.5.0.12-3.el5.i386.rpm d4d2e8f63a26bb7137ca0f62a034446c firefox-debuginfo-1.5.0.12-3.el5.i386.rpm
be1322bcd982139d6bd88a739af188a8 firefox-devel-1.5.0.12-3.el5.i386.rpm

ia64:
6dda2d0463fe1e15117224e263fd8646 firefox-1.5.0.12-3.el5.ia64.rpm
17165a01a2e49f826167d383eae245b2 firefox-debuginfo-1.5.0.12-3.el5.ia64.rpm
8eacfbf523a9e5bf9f7f5f24232da9bf firefox-devel-1.5.0.12-3.el5.ia64.rpm

ppc:
0e17d445a346697a695c708dd4ff7f77 firefox-1.5.0.12-3.el5.ppc.rpm
7df6f3aa268061dbc540b78163c03266 firefox-debuginfo-1.5.0.12-3.el5.ppc.rpm
8a604711c03a1e383e2dc86689c9b1f6 firefox-devel-1.5.0.12-3.el5.ppc.rpm

s390x:
85527cdc87805574e6cea54cd997bf08 firefox-1.5.0.12-3.el5.s390.rpm ce660ba2b2af5bcea03789ce1c197e5f firefox-1.5.0.12-3.el5.s390x.rpm 1782f86797fd6c8ef1e79628262e4abd firefox-debuginfo-1.5.0.12-3.el5.s390.rpm
d1bfa2b33e6e7115d53d14563b525379 firefox-debuginfo-1.5.0.12-3.el5.s390x.rpm
47818dff9de4c75518ae322ae2887213 firefox-devel-1.5.0.12-3.el5.s390.rpm
1177441caa8e95e7fffab1fe036f7128 firefox-devel-1.5.0.12-3.el5.s390x.rpm

x86_64:
41f9235be61710608c049fed0c39ba19 firefox-1.5.0.12-3.el5.i386.rpm
5d2539b4e150e2ebea6c6304a4c08325 firefox-1.5.0.12-3.el5.x86_64.rpm d4d2e8f63a26bb7137ca0f62a034446c firefox-debuginfo-1.5.0.12-3.el5.i386.rpm
9848654d72200a04b5e7c729711412f1 firefox-debuginfo-1.5.0.12-3.el5.x86_64.rpm
be1322bcd982139d6bd88a739af188a8 firefox-devel-1.5.0.12-3.el5.i386.rpm
ecfcecad587c5b5a87ecb990407768c1 firefox-devel-1.5.0.12-3.el5.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

iD8DBQFGntE6XlSAg2UNWIIRAs+0AKC+b+OgzqV5WDh/Yu0Xj004bEVncgCbBY9V
qKRzX2H1qWFJ272wudZIGAM=
=bMiF
-----END PGP SIGNATURE-----

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- ---------------------------------------------------------------------
Red Hat Security Advisory

Synopsis:          Moderate: bind security update
Advisory ID:       RHSA-2007:0740-01
Advisory URL:      https://rhn.redhat.com/errata/RHSA-2007-0740.html
Issue date:        2007-07-24
Updated on:        2007-07-24
Product:           Red Hat Enterprise Linux
CVE Names:         CVE-2007-2926
- ---------------------------------------------------------------------

1. Summary:

Updated bind packages that fix a security issue are now available.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

3. Problem description:

ISC BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols.

A flaw was found in the way BIND generates outbound DNS query ids. If an attacker is able to acquire a finite set of query IDs, it becomes possible to accurately predict future query IDs. Future query ID prediction may allow an attacker to conduct a DNS cache poisoning attack, which can result in the DNS server returning incorrect client query data. (CVE-2007-2926)

Users of BIND are advised to upgrade to these updated packages, which contain backported patches to correct this issue.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

5. Bug IDs fixed (http://bugzilla.redhat.com/):

248851 - CVE-2007-2926 bind cryptographically weak query ids

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/bind-9.2.1-9.el2.src.rpm
0c8ba4b33efe377cc1548d6aaacbee5a bind-9.2.1-9.el2.src.rpm

i386:
e48ca05661626002eb8921bdb19a012d bind-9.2.1-9.el2.i386.rpm 60056d9e993ee88620ac0014e423e56f bind-devel-9.2.1-9.el2.i386.rpm b444d42d156b3d33f6a25f8801364b6a bind-utils-9.2.1-9.el2.i386.rpm

ia64:
86b0ce8a82bd86465662813a93e2a63c bind-9.2.1-9.el2.ia64.rpm 26fb2751fda3863829902b04ac857c8e bind-devel-9.2.1-9.el2.ia64.rpm
d2680d23cbacbf992dc5f6ca8aecf892 bind-utils-9.2.1-9.el2.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW-ia64/en/os/SRPMS/bind-9.2.1-9.el2.src.rpm
0c8ba4b33efe377cc1548d6aaacbee5a bind-9.2.1-9.el2.src.rpm

ia64:
86b0ce8a82bd86465662813a93e2a63c bind-9.2.1-9.el2.ia64.rpm 26fb2751fda3863829902b04ac857c8e bind-devel-9.2.1-9.el2.ia64.rpm
d2680d23cbacbf992dc5f6ca8aecf892 bind-utils-9.2.1-9.el2.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/bind-9.2.1-9.el2.src.rpm
0c8ba4b33efe377cc1548d6aaacbee5a bind-9.2.1-9.el2.src.rpm

i386:
e48ca05661626002eb8921bdb19a012d bind-9.2.1-9.el2.i386.rpm 60056d9e993ee88620ac0014e423e56f bind-devel-9.2.1-9.el2.i386.rpm b444d42d156b3d33f6a25f8801364b6a bind-utils-9.2.1-9.el2.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/bind-9.2.1-9.el2.src.rpm
0c8ba4b33efe377cc1548d6aaacbee5a bind-9.2.1-9.el2.src.rpm

i386:
e48ca05661626002eb8921bdb19a012d bind-9.2.1-9.el2.i386.rpm 60056d9e993ee88620ac0014e423e56f bind-devel-9.2.1-9.el2.i386.rpm b444d42d156b3d33f6a25f8801364b6a bind-utils-9.2.1-9.el2.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/bind-9.2.4-21.el3.src.rpm
a09211046f0c17bbce5a3d0aca3285aa bind-9.2.4-21.el3.src.rpm

i386:
d220f6e34eb2836bab33f7f2e02ad518 bind-9.2.4-21.el3.i386.rpm
b25792ce44ea885a6d8377f23d40ced5 bind-chroot-9.2.4-21.el3.i386.rpm
2985aae45dc185d2f7abeb652979d104 bind-debuginfo-9.2.4-21.el3.i386.rpm
6f13daf54f2cb167f5f6fb7718544925 bind-devel-9.2.4-21.el3.i386.rpm 7aa5341f3ee41c4c0220e6cb17e9ee2d bind-libs-9.2.4-21.el3.i386.rpm
2e8120b18fcb4da93ec510aa578ae4d5 bind-utils-9.2.4-21.el3.i386.rpm

ia64:
f03bb01f9d99992e594a019fcb8d8271 bind-9.2.4-21.el3.ia64.rpm
f8d58989891cc13c779c8a8f5ef0fe78 bind-chroot-9.2.4-21.el3.ia64.rpm 15fc1aaf613a62d72f5e96aeac1f6e8b bind-debuginfo-9.2.4-21.el3.ia64.rpm
758a232733ae6a7208ce67d34b0a756a bind-devel-9.2.4-21.el3.ia64.rpm 10b2efb14cbbe49bdbe2dca7a100a36a bind-libs-9.2.4-21.el3.ia64.rpm 5fb1bab98d17cbbaeb604ac4030a5bad bind-utils-9.2.4-21.el3.ia64.rpm

ppc:
2ee7b4f0a61965cf3316750f00c03dcf bind-9.2.4-21.el3.ppc.rpm 76a3bee916d7b07bb31e92444764ded0 bind-chroot-9.2.4-21.el3.ppc.rpm
3046655a30cabf7f335d364737486562 bind-debuginfo-9.2.4-21.el3.ppc.rpm
da368704f7f4e99c9e2f0dd569b090d7 bind-devel-9.2.4-21.el3.ppc.rpm
530dda99956d14037610101e70cad342 bind-libs-9.2.4-21.el3.ppc.rpm 080e29ab2bdd10c05ad44619681dc26c bind-utils-9.2.4-21.el3.ppc.rpm

s390:
4b93ed7288a769f3380241c3d5980bcc bind-9.2.4-21.el3.s390.rpm
eacfec840d06fa01cb7c3dda00d54982 bind-chroot-9.2.4-21.el3.s390.rpm
027bc48a844400e087deec7a46868973 bind-debuginfo-9.2.4-21.el3.s390.rpm
c144728ad5fa42f150a9b7356d36c9c5 bind-devel-9.2.4-21.el3.s390.rpm
95f09e5e9f070047782b5ee4cc375569 bind-libs-9.2.4-21.el3.s390.rpm c92ca96add0c279e7f0f8d1169966f9d bind-utils-9.2.4-21.el3.s390.rpm

s390x:
f0d3618d980296a91664c28128d77505 bind-9.2.4-21.el3.s390x.rpm 5137c1dea90cd1f6de0e53d9f515a6ad bind-chroot-9.2.4-21.el3.s390x.rpm
5f562c3689bac9601be20968a09d7b84 bind-debuginfo-9.2.4-21.el3.s390x.rpm
79668a8bdd9b0c853bbab65a35400c5c bind-devel-9.2.4-21.el3.s390x.rpm dab29336483b2852e736ce9c5f95abcc bind-libs-9.2.4-21.el3.s390x.rpm
24720c291687c00ecb33c076e2445d29 bind-utils-9.2.4-21.el3.s390x.rpm

x86_64:
baa4454faf09df30d63ea4744bb73af6 bind-9.2.4-21.el3.x86_64.rpm
ac898a361e0121e74519dc4611d718a2 bind-chroot-9.2.4-21.el3.x86_64.rpm
24d3f2e45b56154d8755c433824d6205 bind-debuginfo-9.2.4-21.el3.x86_64.rpm
9361d0b01a1cb287ba74803b1aa19158 bind-devel-9.2.4-21.el3.x86_64.rpm
1d857634f9f60e80959aa4c498deed6f bind-libs-9.2.4-21.el3.x86_64.rpm
f5086d3e177b473a173ebfd167a35d08 bind-utils-9.2.4-21.el3.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/bind-9.2.4-21.el3.src.rpm
a09211046f0c17bbce5a3d0aca3285aa bind-9.2.4-21.el3.src.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/bind-9.2.4-21.el3.src.rpm
a09211046f0c17bbce5a3d0aca3285aa bind-9.2.4-21.el3.src.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/bind-9.2.4-21.el3.src.rpm
a09211046f0c17bbce5a3d0aca3285aa bind-9.2.4-21.el3.src.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/bind-9.2.4-27.0.1.el4.src.rpm
8a62840b27e5451813b66b03ec777950 bind-9.2.4-27.0.1.el4.src.rpm

i386:
404c5929efc3d820aac5eb1538fe050f bind-9.2.4-27.0.1.el4.i386.rpm 0a195740ef290f0297af3fa2dc3cb4af bind-chroot-9.2.4-27.0.1.el4.i386.rpm
6bad906f13f3b64b2b86534bcd43f81d bind-debuginfo-9.2.4-27.0.1.el4.i386.rpm
1d0afc187b1deb1fe2ad9639dfd7813b bind-devel-9.2.4-27.0.1.el4.i386.rpm
7d554753c5b105a54af7c139559930fb bind-libs-9.2.4-27.0.1.el4.i386.rpm
c7c64dc6a7697e95e3e591d7b69985b2 bind-utils-9.2.4-27.0.1.el4.i386.rpm

ia64:
baadc286c87f1fb45f247a356732ec83 bind-9.2.4-27.0.1.el4.ia64.rpm
671ba0b04f6b47a0d9cca1806ec011f6 bind-chroot-9.2.4-27.0.1.el4.ia64.rpm
6bad906f13f3b64b2b86534bcd43f81d bind-debuginfo-9.2.4-27.0.1.el4.i386.rpm
425ecd7fcbd453ac7ab8206e98bd7343 bind-debuginfo-9.2.4-27.0.1.el4.ia64.rpm
ac4cdbd7404bea3892dfc8d029673887 bind-devel-9.2.4-27.0.1.el4.ia64.rpm
7d554753c5b105a54af7c139559930fb bind-libs-9.2.4-27.0.1.el4.i386.rpm
ead36e38eaa85ee5bf9f18dad3bac36c bind-libs-9.2.4-27.0.1.el4.ia64.rpm
8cd76da5dfb938640a55acf3b3294f6c bind-utils-9.2.4-27.0.1.el4.ia64.rpm

ppc:
b2ee792fda8b2da42150d6fc3e0d65ac bind-9.2.4-27.0.1.el4.ppc.rpm e8ea6d2338338b3afbc19ba653af6e2b bind-chroot-9.2.4-27.0.1.el4.ppc.rpm
ccc95dbcab8c2cdedf66ffbdd89f2559 bind-debuginfo-9.2.4-27.0.1.el4.ppc.rpm
2be43960fa80ae53cba62398127f4871 bind-debuginfo-9.2.4-27.0.1.el4.ppc64.rpm
65e2fe2f3a090c99bee4ffb86d9d048c bind-devel-9.2.4-27.0.1.el4.ppc.rpm
007fa5c46e47b358f140a4d9d3e223c7 bind-libs-9.2.4-27.0.1.el4.ppc.rpm
f9705fce3628d1885694335cf399f345 bind-libs-9.2.4-27.0.1.el4.ppc64.rpm
5802fb380f31c38a77af6277944b8cb1 bind-utils-9.2.4-27.0.1.el4.ppc.rpm

s390:
0351948e7eaeec8234bdc63e947efb9c bind-9.2.4-27.0.1.el4.s390.rpm c29293a5e7a69d31c549887a390fa4cb bind-chroot-9.2.4-27.0.1.el4.s390.rpm
fbbebd8edf84f02af688e7078652a10a bind-debuginfo-9.2.4-27.0.1.el4.s390.rpm
83429676cfd49913f9d3db3bdb00b6d5 bind-devel-9.2.4-27.0.1.el4.s390.rpm
87f9139bc7d7a854316d7e3f8bbf1519 bind-libs-9.2.4-27.0.1.el4.s390.rpm
f32313ae178f3f1a8b235118b5d3d1c7 bind-utils-9.2.4-27.0.1.el4.s390.rpm

s390x:
5bd461791d4e11fa5f2b90fe3f1706e8 bind-9.2.4-27.0.1.el4.s390x.rpm 4614b6cc11e72385a6a60c5cc7fd5d70 bind-chroot-9.2.4-27.0.1.el4.s390x.rpm
fbbebd8edf84f02af688e7078652a10a bind-debuginfo-9.2.4-27.0.1.el4.s390.rpm
f424cdb3b5273df5cedea92d1d87b2ba bind-debuginfo-9.2.4-27.0.1.el4.s390x.rpm
8617fbefc64d05ae07cb8a340c37cccc bind-devel-9.2.4-27.0.1.el4.s390x.rpm
87f9139bc7d7a854316d7e3f8bbf1519 bind-libs-9.2.4-27.0.1.el4.s390.rpm
6b0c86c26ef6afe72c1b935e914ef278 bind-libs-9.2.4-27.0.1.el4.s390x.rpm
395151594ef7d8c8f9637e3aafff4e3b bind-utils-9.2.4-27.0.1.el4.s390x.rpm

x86_64:
8895bbd051d7a219ff1c85f1ad169a86 bind-9.2.4-27.0.1.el4.x86_64.rpm f7bb381d5bf8c7085c4fe3a4ed160ac0 bind-chroot-9.2.4-27.0.1.el4.x86_64.rpm
6bad906f13f3b64b2b86534bcd43f81d bind-debuginfo-9.2.4-27.0.1.el4.i386.rpm
5816a66b5187279acb35c2d30066749e bind-debuginfo-9.2.4-27.0.1.el4.x86_64.rpm
e56fbac1b22fdc3616f2e2e6fb1cd106 bind-devel-9.2.4-27.0.1.el4.x86_64.rpm
7d554753c5b105a54af7c139559930fb bind-libs-9.2.4-27.0.1.el4.i386.rpm
fc021fd760bef26761894e2b62372b25 bind-libs-9.2.4-27.0.1.el4.x86_64.rpm
f7fa67d0cee9193411dbc4df1e176365 bind-utils-9.2.4-27.0.1.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/bind-9.2.4-27.0.1.el4.src.rpm
8a62840b27e5451813b66b03ec777950 bind-9.2.4-27.0.1.el4.src.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/bind-9.2.4-27.0.1.el4.src.rpm
8a62840b27e5451813b66b03ec777950 bind-9.2.4-27.0.1.el4.src.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/bind-9.2.4-27.0.1.el4.src.rpm
8a62840b27e5451813b66b03ec777950 bind-9.2.4-27.0.1.el4.src.rpm

Red Hat Enterprise Linux Desktop (v. 5 client):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/bind-9.3.3-9.0.1.el5.src.rpm
a0278783db96704c362d5ad57432a03a bind-9.3.3-9.0.1.el5.src.rpm

i386:
3af182bc295cb2ca6d2ef6f564241089 bind-9.3.3-9.0.1.el5.i386.rpm 4eafa0b2fa017c4dfe40ae9953bbb0ba bind-debuginfo-9.3.3-9.0.1.el5.i386.rpm
03a6f324046d5100a0fd237ccd82cad8 bind-libs-9.3.3-9.0.1.el5.i386.rpm
a82c4c553632ecaa9799b3aa933e3e7c bind-sdb-9.3.3-9.0.1.el5.i386.rpm
28dff6e25f133fd686cdd9e144a85546 bind-utils-9.3.3-9.0.1.el5.i386.rpm

x86_64:
cf69e975e7221f9c09abfdda33502a34 bind-9.3.3-9.0.1.el5.x86_64.rpm 4eafa0b2fa017c4dfe40ae9953bbb0ba bind-debuginfo-9.3.3-9.0.1.el5.i386.rpm
af8823dbe4681143a591d94e47ac39f9 bind-debuginfo-9.3.3-9.0.1.el5.x86_64.rpm
03a6f324046d5100a0fd237ccd82cad8 bind-libs-9.3.3-9.0.1.el5.i386.rpm
b362d99d4d619799f328dde6aa5ccb53 bind-libs-9.3.3-9.0.1.el5.x86_64.rpm
5dd31d761156e33022e38cf75a10511f bind-sdb-9.3.3-9.0.1.el5.x86_64.rpm
b9c21f996cfeccdbfc403d85dec7b9d4 bind-utils-9.3.3-9.0.1.el5.x86_64.rpm

RHEL Desktop Workstation (v. 5 client):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/bind-9.3.3-9.0.1.el5.src.rpm
a0278783db96704c362d5ad57432a03a bind-9.3.3-9.0.1.el5.src.rpm

i386:
01b1f971ee4a113f83644fa7aa587c96 bind-chroot-9.3.3-9.0.1.el5.i386.rpm
4eafa0b2fa017c4dfe40ae9953bbb0ba bind-debuginfo-9.3.3-9.0.1.el5.i386.rpm
ceef367ad5340c9c91e105df8bee33ee bind-devel-9.3.3-9.0.1.el5.i386.rpm
5314d3396abd2f12a230a7d45c21fed6 bind-libbind-devel-9.3.3-9.0.1.el5.i386.rpm
ea4129d240b0d7ea56b7b560fb4e22b1 caching-nameserver-9.3.3-9.0.1.el5.i386.rpm

x86_64:
4b97875dae8eae0e8494228e7a731a0c bind-chroot-9.3.3-9.0.1.el5.x86_64.rpm
4eafa0b2fa017c4dfe40ae9953bbb0ba bind-debuginfo-9.3.3-9.0.1.el5.i386.rpm
af8823dbe4681143a591d94e47ac39f9 bind-debuginfo-9.3.3-9.0.1.el5.x86_64.rpm
ceef367ad5340c9c91e105df8bee33ee bind-devel-9.3.3-9.0.1.el5.i386.rpm
715cc95c0904875f2e018be81587a248 bind-devel-9.3.3-9.0.1.el5.x86_64.rpm
5314d3396abd2f12a230a7d45c21fed6 bind-libbind-devel-9.3.3-9.0.1.el5.i386.rpm
87711d9226a74c6936eef018d81f78ff bind-libbind-devel-9.3.3-9.0.1.el5.x86_64.rpm
041b4e88566f1721734630c581efc2ff caching-nameserver-9.3.3-9.0.1.el5.x86_64.rpm

Red Hat Enterprise Linux (v. 5 server):

SRPMS:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/bind-9.3.3-9.0.1.el5.src.rpm
a0278783db96704c362d5ad57432a03a bind-9.3.3-9.0.1.el5.src.rpm

i386:
3af182bc295cb2ca6d2ef6f564241089 bind-9.3.3-9.0.1.el5.i386.rpm
01b1f971ee4a113f83644fa7aa587c96 bind-chroot-9.3.3-9.0.1.el5.i386.rpm
4eafa0b2fa017c4dfe40ae9953bbb0ba bind-debuginfo-9.3.3-9.0.1.el5.i386.rpm
ceef367ad5340c9c91e105df8bee33ee bind-devel-9.3.3-9.0.1.el5.i386.rpm
5314d3396abd2f12a230a7d45c21fed6 bind-libbind-devel-9.3.3-9.0.1.el5.i386.rpm
03a6f324046d5100a0fd237ccd82cad8 bind-libs-9.3.3-9.0.1.el5.i386.rpm
a82c4c553632ecaa9799b3aa933e3e7c bind-sdb-9.3.3-9.0.1.el5.i386.rpm
28dff6e25f133fd686cdd9e144a85546 bind-utils-9.3.3-9.0.1.el5.i386.rpm
ea4129d240b0d7ea56b7b560fb4e22b1 caching-nameserver-9.3.3-9.0.1.el5.i386.rpm

ia64:
f077dba7178a67359a1f2e9676b26a07 bind-9.3.3-9.0.1.el5.ia64.rpm 91e1030edd1d4078765a7c453b56cd9a bind-chroot-9.3.3-9.0.1.el5.ia64.rpm
4eafa0b2fa017c4dfe40ae9953bbb0ba bind-debuginfo-9.3.3-9.0.1.el5.i386.rpm
ce6c3ce05c553b7e973b0fb34a04cfc1 bind-debuginfo-9.3.3-9.0.1.el5.ia64.rpm
c5de5965334badde512b4d07de271c76 bind-devel-9.3.3-9.0.1.el5.ia64.rpm
d25c2eb2cc379acae8b8225621735f39 bind-libbind-devel-9.3.3-9.0.1.el5.ia64.rpm
03a6f324046d5100a0fd237ccd82cad8 bind-libs-9.3.3-9.0.1.el5.i386.rpm
6921faaf3751d5ca1bd35ff2390af380 bind-libs-9.3.3-9.0.1.el5.ia64.rpm
5e5d6a07eb2538cb11bb346058465501 bind-sdb-9.3.3-9.0.1.el5.ia64.rpm
fc959470c8fb9803b4739b9878c437e5 bind-utils-9.3.3-9.0.1.el5.ia64.rpm
4e43d79957f62c5cb85fb4850e7fbcd7 caching-nameserver-9.3.3-9.0.1.el5.ia64.rpm

ppc:
b0a798bed5c5ba1403287a59aa8ce355 bind-9.3.3-9.0.1.el5.ppc.rpm ae12df90cf5d25876fe86620dbe2981c bind-chroot-9.3.3-9.0.1.el5.ppc.rpm
48229cdcb687ca601b0e57807bd596a0 bind-debuginfo-9.3.3-9.0.1.el5.ppc.rpm
db96d1aed6f0707e33c44b532d294943 bind-debuginfo-9.3.3-9.0.1.el5.ppc64.rpm
83b5de1aee3509018715e754eefd345f bind-devel-9.3.3-9.0.1.el5.ppc.rpm
6972463412b54425c25b90bed1804521 bind-devel-9.3.3-9.0.1.el5.ppc64.rpm
ca01cf8550df329f04fb84993f3317fe bind-libbind-devel-9.3.3-9.0.1.el5.ppc.rpm
bb3f7685e7f124125ba5ed86987236b7 bind-libbind-devel-9.3.3-9.0.1.el5.ppc64.rpm
bb9b60bbceb4ae79741f3104eaac854a bind-libs-9.3.3-9.0.1.el5.ppc.rpm
560a72818e5e8dbefc7c1fa260f090b9 bind-libs-9.3.3-9.0.1.el5.ppc64.rpm
fe867b512d670856fea05bdf32064b54 bind-sdb-9.3.3-9.0.1.el5.ppc.rpm b4e6540caa8640f7650e0f214d4a5d50 bind-utils-9.3.3-9.0.1.el5.ppc.rpm
8f4ee539966e0daea7696418ada1f301 caching-nameserver-9.3.3-9.0.1.el5.ppc.rpm

s390x:
51bee837f11dfdea802c59a69c6ee61c bind-9.3.3-9.0.1.el5.s390x.rpm
baedf167fc3aa96fd18a2f25d6bfc984 bind-chroot-9.3.3-9.0.1.el5.s390x.rpm
5547c081012bc7396b0720c6ec46cd56 bind-debuginfo-9.3.3-9.0.1.el5.s390.rpm
c3c7942594d94eddc467972913023254 bind-debuginfo-9.3.3-9.0.1.el5.s390x.rpm
ee4b8d979bbd687fabb10a2e1677c1b2 bind-devel-9.3.3-9.0.1.el5.s390.rpm
ced42a12887a44a4aa8d346e091db0c3 bind-devel-9.3.3-9.0.1.el5.s390x.rpm
d34e95d411db09c92cd174df69195002 bind-libbind-devel-9.3.3-9.0.1.el5.s390.rpm
e7ef97f03aaf4aeaf02cf56111e2ed98 bind-libbind-devel-9.3.3-9.0.1.el5.s390x.rpm
84401687e2f5b2394a713dc0f99c43f6 bind-libs-9.3.3-9.0.1.el5.s390.rpm
8ea91964cfc4715631cb8e2004e54591 bind-libs-9.3.3-9.0.1.el5.s390x.rpm
59babd1fd6475a51fcfdd2d1b9af6245 bind-sdb-9.3.3-9.0.1.el5.s390x.rpm
b4c8df5f8890195aa03aad8c4edc5996 bind-utils-9.3.3-9.0.1.el5.s390x.rpm
894470d84a153158fbcbece16e6a167a caching-nameserver-9.3.3-9.0.1.el5.s390x.rpm

x86_64:
cf69e975e7221f9c09abfdda33502a34 bind-9.3.3-9.0.1.el5.x86_64.rpm 4b97875dae8eae0e8494228e7a731a0c bind-chroot-9.3.3-9.0.1.el5.x86_64.rpm
4eafa0b2fa017c4dfe40ae9953bbb0ba bind-debuginfo-9.3.3-9.0.1.el5.i386.rpm
af8823dbe4681143a591d94e47ac39f9 bind-debuginfo-9.3.3-9.0.1.el5.x86_64.rpm
ceef367ad5340c9c91e105df8bee33ee bind-devel-9.3.3-9.0.1.el5.i386.rpm
715cc95c0904875f2e018be81587a248 bind-devel-9.3.3-9.0.1.el5.x86_64.rpm
5314d3396abd2f12a230a7d45c21fed6 bind-libbind-devel-9.3.3-9.0.1.el5.i386.rpm
87711d9226a74c6936eef018d81f78ff bind-libbind-devel-9.3.3-9.0.1.el5.x86_64.rpm
03a6f324046d5100a0fd237ccd82cad8 bind-libs-9.3.3-9.0.1.el5.i386.rpm
b362d99d4d619799f328dde6aa5ccb53 bind-libs-9.3.3-9.0.1.el5.x86_64.rpm
5dd31d761156e33022e38cf75a10511f bind-sdb-9.3.3-9.0.1.el5.x86_64.rpm
b9c21f996cfeccdbfc403d85dec7b9d4 bind-utils-9.3.3-9.0.1.el5.x86_64.rpm
041b4e88566f1721734630c581efc2ff caching-nameserver-9.3.3-9.0.1.el5.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2926
http://www.redhat.com/security/updates/classification/#moderate

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

iD8DBQFGpgs9XlSAg2UNWIIRAvQVAJ9MzH+mze6usWDC88GllmAsIZrTpQCfXvXF
rzY2r07s78UiBM2ljOlz6vI=
=h9KD
-----END PGP SIGNATURE-----

This advisory contains information released by the original author. Some of the information may have changed since it was released. If the issue affects you, it may be prudent to retrieve the advisory from the site of the original source to ensure that you receive the most current information concerning that problem. Reference to any specific commercial product, process, or service by trade name, trademark manufacturer, or otherwise, does not constitute or imply its endorsement, recommendation, or favouring by CPNI.

The views and opinions of authors expressed within this notice shall not be used for advertising or product endorsement purposes. CPNI shall not accept responsibility for any errors or omissions contained within this advisory. In particular, they shall not be liable for any loss or damage whatsoever, arising from or in connection with the usage of information contained within this advisory.

CSIRTUK is a member of the Forum of Incident Response and Security Teams (FIRST) and has contacts with other international Incident Response Teams (IRTs) in order to foster cooperation and coordination in incident prevention, to prompt rapid reaction to incidents, and to promote information sharing amongst its members and the community at large.