Advisories ยป MGASA-2017-0323

Updated iceape packages fix security vulnerabilities

Publication date: 01 Sep 2017
Modification date: 01 Sep 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2016-5287 , CVE-2016-5288 , CVE-2016-5289 , CVE-2016-5290 , CVE-2016-5292 , CVE-2016-5297 , CVE-2016-9064 , CVE-2016-9066 , CVE-2016-9067 , CVE-2016-9068 , CVE-2016-9075 , CVE-2016-9077 , CVE-2016-5291 , CVE-2016-9063 , CVE-2016-9070 , CVE-2016-9071 , CVE-2016-9073 , CVE-2016-9076 , CVE-2016-9078 , CVE-2016-9080 , CVE-2016-9893 , CVE-2016-9894 , CVE-2016-9895 , CVE-2016-9896 , CVE-2016-9897 , CVE-2016-9898 , CVE-2016-9899 , CVE-2016-9900 , CVE-2016-9901 , CVE-2016-9902 , CVE-2016-9903 , CVE-2016-9904 , CVE-2017-5373 , CVE-2017-5374 , CVE-2017-5375 , CVE-2017-5376 , CVE-2017-5377 , CVE-2017-5378 , CVE-2017-5379 , CVE-2017-5380 , CVE-2017-5381 , CVE-2017-5382 , CVE-2017-5383 , CVE-2017-5384 , CVE-2017-5385 , CVE-2017-5386 , CVE-2017-5387 , CVE-2017-5388 , CVE-2017-5389 , CVE-2017-5390 , CVE-2017-5391 , CVE-2017-5393 , CVE-2017-5396

Description

Updated Iceape packages include security fixes from upstream Seamonkey:

Multiple flaws were found in the way Iceape 2.46 processes various types
of web content, where loading a web page containing malicious content
could cause Iceape to crash, execute arbitrary code, or disclose
sensitive information. (CVE-2016-5287, CVE-2016-5288, CVE-2016-5289,
CVE-2016-5290, CVE-2016-5292, CVE-2016-5297, CVE-2016-9064,
CVE-2016-9066, CVE-2016-9067, CVE-2016-9068, CVE-2016-9075,
CVE-2016-9077, CVE-2016-5291, CVE-2016-9063, CVE-2016-9070,
CVE-2016-9071, CVE-2016-9073, CVE-2016-9076, CVE-2016-9078,
CVE-2016-9080, CVE-2016-9893, CVE-2016-9894, CVE-2016-9895,
CVE-2016-9896, CVE-2016-9897, CVE-2016-9898, CVE-2016-9899,
CVE-2016-9900, CVE-2016-9901, CVE-2016-9902, CVE-2016-9903,
CVE-2016-9904, CVE-2017-5373, CVE-2017-5374, CVE-2017-5375,
CVE-2017-5376, CVE-2017-5377, CVE-2017-5378, CVE-2017-5379,
CVE-2017-5380, CVE-2017-5381, CVE-2017-5382, CVE-2017-5383,
CVE-2017-5384, CVE-2017-5385, CVE-2017-5386, CVE-2017-5387,
CVE-2017-5388, CVE-2017-5389, CVE-2017-5390, CVE-2017-5391,
CVE-2017-5393, CVE-2017-5396)
                

References

SRPMS

6/core

5/core