--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2009-9505
2009-09-11 22:40:07
--------------------------------------------------------------------------------

Name        : yelp
Product     : Fedora 11
Version     : 2.26.0
Release     : 7.fc11
URL         : https://wiki.gnome.org/action/show/Apps/Yelp
Summary     : Help browser for the GNOME desktop
Description :
Yelp is the help browser for the GNOME desktop. It is designed
to help you browse all the documentation on your system in
one central tool, including traditional man pages, info pages and
documentation written in DocBook.

--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.5.3, fixing multiple security issues
detailed in the upstream advisories:    https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/    Update also includes all packages
depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep  9 2009 Jan Horak  - 2.26.0-7
- Rebuild against newer gecko
* Mon Aug  3 2009 Christopher Aillon  - 2.26.0-6
- Rebuild against newer gecko
* Fri Jul 17 2009 Jan Horak  - 2.26.0-5
- Rebuild against newer gecko
* Tue Jun 30 2009 Christopher Aillon  - 2.26.0-4
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #521684 - CVE-2009-3069 Firefox 3.5 browser engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=521684
  [ 2 ] Bug #521686 - CVE-2009-3070 Firefox 3.5 3.0.14 browser engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=521686
  [ 3 ] Bug #521687 - CVE-2009-3071 Firefox 3.5.2 3.0.14 browser engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=521687
  [ 4 ] Bug #521688 - CVE-2009-3072 Firefox 3.5.3 3.0.14 browser engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=521688
  [ 5 ] Bug #521689 - CVE-2009-3073 Firefox 3.5 JavaScript engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=521689
  [ 6 ] Bug #521690 - CVE-2009-3074 Firefox 3.5 3.0.14 JavaScript engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=521690
  [ 7 ] Bug #521691 - CVE-2009-3075 Firefox 3.5.2 3.0.14 JavaScript engine crashes
        https://bugzilla.redhat.com/show_bug.cgi?id=521691
  [ 8 ] Bug #521693 - CVE-2009-3077 Firefox 3.5.3 3.0.14 TreeColumns dangling pointer vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=521693
  [ 9 ] Bug #521694 - CVE-2009-3078 Firefox 3.5.3 3.0.14 Location bar spoofing via tall line-height Unicode characters        https://bugzilla.redhat.com/show_bug.cgi?id=521694
  [ 10 ] Bug #521695 - CVE-2009-3079 Firefox 3.5.3 3.0.14 Chrome privilege escalation with FeedWriter
        https://bugzilla.redhat.com/show_bug.cgi?id=521695
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update yelp' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------

_______________________________________________
Fedora-package-announce mailing list
Fedora-package-announce@redhat.com
http://www.redhat.com/mailman/listinfo/fedora-package-announce

Fedora 11 Update: yelp-2.26.0-7.fc11

September 11, 2009
Update to new upstream Firefox version 3.5.3, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/...

Summary

Yelp is the help browser for the GNOME desktop. It is designed

to help you browse all the documentation on your system in

one central tool, including traditional man pages, info pages and

documentation written in DocBook.

Update Information:

Update to new upstream Firefox version 3.5.3, fixing multiple security issues detailed in the upstream advisories: https://www.mozilla.org/en-US/security/known-vulnerabilities/firefox-3.5/ Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.

Change Log

* Wed Sep 9 2009 Jan Horak - 2.26.0-7 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon - 2.26.0-6 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak - 2.26.0-5 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon - 2.26.0-4 - Rebuild against newer gecko

References

[ 1 ] Bug #521684 - CVE-2009-3069 Firefox 3.5 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521684 [ 2 ] Bug #521686 - CVE-2009-3070 Firefox 3.5 3.0.14 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521686 [ 3 ] Bug #521687 - CVE-2009-3071 Firefox 3.5.2 3.0.14 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521687 [ 4 ] Bug #521688 - CVE-2009-3072 Firefox 3.5.3 3.0.14 browser engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521688 [ 5 ] Bug #521689 - CVE-2009-3073 Firefox 3.5 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521689 [ 6 ] Bug #521690 - CVE-2009-3074 Firefox 3.5 3.0.14 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521690 [ 7 ] Bug #521691 - CVE-2009-3075 Firefox 3.5.2 3.0.14 JavaScript engine crashes https://bugzilla.redhat.com/show_bug.cgi?id=521691 [ 8 ] Bug #521693 - CVE-2009-3077 Firefox 3.5.3 3.0.14 TreeColumns dangling pointer vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=521693 [ 9 ] Bug #521694 - CVE-2009-3078 Firefox 3.5.3 3.0.14 Location bar spoofing via tall line-height Unicode characters https://bugzilla.redhat.com/show_bug.cgi?id=521694 [ 10 ] Bug #521695 - CVE-2009-3079 Firefox 3.5.3 3.0.14 Chrome privilege escalation with FeedWriter https://bugzilla.redhat.com/show_bug.cgi?id=521695

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update yelp' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : yelp
Product : Fedora 11
Version : 2.26.0
Release : 7.fc11
URL : https://wiki.gnome.org/action/show/Apps/Yelp
Summary : Help browser for the GNOME desktop

Related News

4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved