Alert GCSA-14024 - Vulnerabilita' nei prodotti Mozilla (firefox, thunderbird)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14024
Data: 25 luglio 2014
Titolo: Vulnerabilita' nei prodotti Mozilla (firefox, thunderbird)
******************************************************************
:: Descrizione del problema
Sono state rilasciate nuove versioni dei prodotti Mozilla
Firefox e Thunderbird che risolvono varie vulnerabilita'
potenzialmente sfruttabili da aggressori remoti e locali
per condurre attacchi.
:: Software interessato
Firefox versioni precedenti alla 31.0
Thunderbird versioni precedenti alla 31.0
:: Impatto
Denial of service
Esecuzione di codice arbitrario da remoto
Accesso al sistema
Modifica di informazioni di sistema
:: Soluzioni
Aggiornare Firefox alla versione 31.0
http://www.mozilla.org/it/firefox/new/
Aggiornare Thunderbird alla versione 31.0
http://www.mozilla.org/it/thunderbird/
:: Riferimenti
Mozilla Security Advisory
http://www.mozilla.org/en-US/firefox/31.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefox.html
https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
https://www.mozilla.org/security/announce/2014/mfsa2014-56.html
https://www.mozilla.org/security/announce/2014/mfsa2014-57.html
https://www.mozilla.org/security/announce/2014/mfsa2014-58.html
https://www.mozilla.org/security/announce/2014/mfsa2014-59.html
https://www.mozilla.org/security/announce/2014/mfsa2014-60.html
https://www.mozilla.org/security/announce/2014/mfsa2014-61.html
https://www.mozilla.org/security/announce/2014/mfsa2014-62.html
https://www.mozilla.org/security/announce/2014/mfsa2014-63.html
https://www.mozilla.org/security/announce/2014/mfsa2014-64.html
https://www.mozilla.org/security/announce/2014/mfsa2014-65.html
https://www.mozilla.org/security/announce/2014/mfsa2014-66.html
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1544
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1548
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1550
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1551
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1552
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1556
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1558
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1559
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1560
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1561
Ubuntu Security Notice
http://www.ubuntu.com/usn/usn-2296-1/
http://www.ubuntu.com/usn/usn-2295-1/
Red Hat Security Advisory
https://rhn.redhat.com/errata/RHSA-2014-0918.html
https://rhn.redhat.com/errata/RHSA-2014-0919.html
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFT0hZUwZxMk2USYEIRAvEzAJ94HzI8bzbWfxQ79Lvcp45+9OUHfwCgvL2d
f+FKJ0gMxLZzlIkW+sVDUts=
=ELsb
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14024
Data: 25 luglio 2014
Titolo: Vulnerabilita' nei prodotti Mozilla (firefox, thunderbird)
******************************************************************
:: Descrizione del problema
Sono state rilasciate nuove versioni dei prodotti Mozilla
Firefox e Thunderbird che risolvono varie vulnerabilita'
potenzialmente sfruttabili da aggressori remoti e locali
per condurre attacchi.
:: Software interessato
Firefox versioni precedenti alla 31.0
Thunderbird versioni precedenti alla 31.0
:: Impatto
Denial of service
Esecuzione di codice arbitrario da remoto
Accesso al sistema
Modifica di informazioni di sistema
:: Soluzioni
Aggiornare Firefox alla versione 31.0
http://www.mozilla.org/it/firefox/new/
Aggiornare Thunderbird alla versione 31.0
http://www.mozilla.org/it/thunderbird/
:: Riferimenti
Mozilla Security Advisory
http://www.mozilla.org/en-US/firefox/31.0/releasenotes/
https://www.mozilla.org/security/known-vulnerabilities/firefox.html
https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html
https://www.mozilla.org/security/announce/2014/mfsa2014-56.html
https://www.mozilla.org/security/announce/2014/mfsa2014-57.html
https://www.mozilla.org/security/announce/2014/mfsa2014-58.html
https://www.mozilla.org/security/announce/2014/mfsa2014-59.html
https://www.mozilla.org/security/announce/2014/mfsa2014-60.html
https://www.mozilla.org/security/announce/2014/mfsa2014-61.html
https://www.mozilla.org/security/announce/2014/mfsa2014-62.html
https://www.mozilla.org/security/announce/2014/mfsa2014-63.html
https://www.mozilla.org/security/announce/2014/mfsa2014-64.html
https://www.mozilla.org/security/announce/2014/mfsa2014-65.html
https://www.mozilla.org/security/announce/2014/mfsa2014-66.html
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1544
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1548
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1550
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1551
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1552
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1556
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1557
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1558
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1559
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1560
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1561
Ubuntu Security Notice
http://www.ubuntu.com/usn/usn-2296-1/
http://www.ubuntu.com/usn/usn-2295-1/
Red Hat Security Advisory
https://rhn.redhat.com/errata/RHSA-2014-0918.html
https://rhn.redhat.com/errata/RHSA-2014-0919.html
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFT0hZUwZxMk2USYEIRAvEzAJ94HzI8bzbWfxQ79Lvcp45+9OUHfwCgvL2d
f+FKJ0gMxLZzlIkW+sVDUts=
=ELsb
-----END PGP SIGNATURE-----