CentOS Update For Seamonkey CESA-2012:0141 Centos4 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

SeaMonkey is an open source web browser, e-mail and newsgroup client, IRC chat client, and HTML editor. A heap-based buffer overflow flaw was found in the way SeaMonkey handled PNG (Portable Network Graphics) images. A web page containing a malicious PNG image could cause SeaMonkey to crash or, possibly, execute arbitrary code with the privileges of the user running SeaMonkey. (CVE-2011-3026) All SeaMonkey users should upgrade to these updated packages, which correct this issue. After installing the update, SeaMonkey must be restarted for the changes to take effect.

Affected

seamonkey on CentOS 4

References

http://lists.centos.org/pipermail/centos-announce/2012-February/018442.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-3026
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

CentOS Security Advisory CESA-2009:0420 (ghostscript)
CentOS Security Advisory CESA-2009:1307 (ecryptfs-utils)
CentOS Security Advisory CESA-2009:1432 (seamonkey)
CentOS Security Advisory CESA-2009:1127 (kdelibs)
CentOS Security Advisory CESA-2009:0377 (java-1.6.0-openjdk)

CentOS Update for seamonkey CESA-2012:0141 centos4

Take action and discover your vulnerabilities