Debian: 2554-1: iceape: Multiple vulnerabilities
Posted by Benjamin D. Thomas   
Debian Several vulnerabilities have been discovered in Iceape, an internet suite based on Seamonkey. The reported vulnerabilities could lead to the execution of arbitrary [More...]
- -------------------------------------------------------------------------
Debian Security Advisory DSA-2554-1                   security@debian.org
http://www.debian.org/security/                         Yves-Alexis Perez
September 26, 2012                     http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : iceape
Vulnerability  : several
Problem type   : remote
Debian-specific: no
CVE ID         : CVE-2012-1970 CVE-2012-1972 CVE-2012-1973 CVE-2012-1974 
                 CVE-2012-1975 CVE-2012-1976 CVE-2012-3959 CVE-2012-3962
                 CVE-2012-3969 CVE-2012-3972 CVE-2012-3978

Several vulnerabilities have been discovered in Iceape, an internet suite based
on Seamonkey.

The reported vulnerabilities could lead to the execution of arbitrary
code or the bypass of content-loading restrictions via the location
object.

For the stable distribution (squeeze), these problems have been fixed in
version 2.0.11-15.

For the testing distribution (wheezy), these problems have been fixed in
version 2.7.7-1.

For the unstable distribution (sid), these problems have been fixed in
version 2.7.7-1.

We recommend that you upgrade your iceape packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----