Nuovi aggiornamenti di sicurezza di Firefox e Adobe Flash per Ubuntu 10.10 Maverick Meerkat.

Rilasciati questo fine settimana com'è abituale da Canonical i patch per la sicurezza di Ubuntu 10.10 Maverick Meerkat.

Ricordiamo che Ubuntu ritiene che questi aggiornamenti sono davvero importanti, quindi date un'occhiata e poi decidete (o meno) ad installarli.

Se siete davvero convinti potete scegliere di scaricare e installare automaticamente questi aggiornamenti.

Ci sono anche i cosidetti aggiornamenti raccomandati non proprio obbligatori però, in ogni caso, da valutare attentamente.

Di seguito i patch che riguardano specificamente: Firefox, Adobe Flash Player Installer, Gnome Display Manager, le librerie Open LDAP e XUL-XPCOM application runner:.

Firefox:


Firefox delivers safe, easy web browsing. A familiar user interface, enhanced security features including protection from online identity theft, and integrated search let you get the most out of the web.


Versione 3.6.16+build1+nobinonly-0ubuntu0.10.10.1:


  * New upstream release v3.6.16 (FIREFOX_3_6_16_BUILD1)
    - see USN-1091-1


Cambiamenti per le versioni:
3.6.15+build1+nobinonly-0ubuntu0.10.10.1
3.6.16+build1+nobinonly-0ubuntu0.10.10.1


This package ships the Firefox branding bits. If you remove this package your user experience will become that of the abrowser.




Versione 3.6.16+build1+nobinonly-0ubuntu0.10.10.1:


  * New upstream release v3.6.16 (FIREFOX_3_6_16_BUILD1)
    - see USN-1091-1


Cambiamenti per le versioni:
3.6.15+build1+nobinonly-0ubuntu0.10.10.1
3.6.16+build1+nobinonly-0ubuntu0.10.10.1


This is an extension to Firefox that allows it to use protocol handlers from GnomeVFS, such as smb or sftp, and other GNOME integration features.




Versione 3.6.16+build1+nobinonly-0ubuntu0.10.10.1:


  * New upstream release v3.6.16 (FIREFOX_3_6_16_BUILD1)
    - see USN-1091-1


Adobe Flash Player Installer:


Downloads and Installs the Adobe Flash Player plugin. The Adobe Flash Player plugin supports playing of media and other dynamic content online.
The Adobe Flash Player plugin will work with a range of web-browsers including, limited to:
* Firefox
* Chromium
* SeaMonkey
* Iceweasel
* Iceape
* Galeon
* Epiphany
* Konqueror WARNING: Installing this Ubuntu package causes the Adobe Flash Player plugin to be downloaded from www.adobe.com. The distribution license of the Adobe Flash Player plugin is available at www.adobe.com. Installing this Ubuntu package implies that you have accepted the terms of that license.


Cambiamenti per le versioni:
10.2.152.27ubuntu0.10.10.1
10.2.153.1ubuntu0.10.10.1


Versione 10.2.153.1ubuntu0.10.10.1:


  * SECURITY UPDATE: New upstream release 10.2.153.1
    - debian/config, debian/postinst: Updated sha256sums and path.
    - CVE-2011-0609
  * debian/postinst: make wget use the proxy defined for apt and decrease
    number of tries to a reasonable amount. (LP: #580523)

Gnome Display Manager:


gdm provides the equivalent of a "login:" prompt for X displays- it pops up a login window and starts an X session.
It provides all the functionality of xdm, including XDMCP support for managing remote displays.
The greeting window is written using the GNOME libraries and hence looks like a GNOME application- even to the extent of supporting themes! By default, the greeter is run as an unprivileged user for security.


Cambiamenti per le versioni:
2.30.5-0ubuntu4
2.30.5-0ubuntu4.1


Versione 2.30.5-0ubuntu4.1:


  * SECURITY UPDATE: race condition allowing privilege escalation
    - debian/patches/91_CVE-2011-0727.patch: fix
      daemon/gdm-session-worker.c to copy files as session user rather
      than root followed by a subsequent chown.
    - CVE-2011-0727


Librerie OpenLDAP:


Cambiamenti per le versioni:
2.4.23-0ubuntu3.4
2.4.23-0ubuntu3.5


Versione 2.4.23-0ubuntu3.5:


  * SECURITY UPDATE: fix successful anonymous bind via chain overlay when
    using forwarded authentication failures
    - debian/patches/CVE-2011-1024
    - CVE-2011-1024
  * SECURITY UPDATE: verify password when authenticating to rootdn and using ndb
    backend. Note: Ubuntu is not compiled with --enable-ndb by default
    - debian/patches/CVE-2011-1025
    - CVE-2011-1025
  * SECURITY UPDATE: fix DoS when processing unauthenticated modrdn requests
    and requestDN is empty
    - debian/patches/CVE-2011-1081
    - CVE-2011-1081


XUL-XPCOM application runner:


XULRunner is a single "gecko runtime" that can be used to bootstrap multiple XUL + XPCOM applications that are as rich as Firefox and Thunderbird.
XUL is Mozilla's XML based User Interface language that lets you build feature-rich cross platform applications. These applications are easily customized with alternative text, graphics and layout so that they can be readily branded or localized for various markets. Web developers already familiar with Dynamic HTML (DHTML) will learn XUL quickly and can start building applications right away.


These are the run-time libraries for the OpenLDAP (Lightweight Directory Access Protocol) servers and clients.


Cambiamenti per le versioni:
1.9.2.15+build1+nobinonly-0ubuntu0.10.10.1
1.9.2.16+build1+nobinonly-0ubuntu0.10.10.1


Versione 1.9.2.16+build1+nobinonly-0ubuntu0.10.10.1:


  * New upstream release v1.9.2.16 (FIREFOX_3_6_16_BUILD1)
    - see USN-1091-1


Se ti è piaciuto l'articolo , iscriviti al feed cliccando sull'immagine sottostante per tenerti sempre aggiornato sui nuovi contenuti del blog:

Luca Soraci

Luca Soraci

Ubuntu giunge alle nostre orecchie solo perché è stato mutuato come nome per un sistema operativo di successo; lo abbiamo sentito nei discorsi di Mandela, del vescovo Tutu, ed è uno dei concetti fondanti di quel movimento di rinascimento che vuole far fiorire il continente africano al di sopra delle difficoltà attuali.

Nessun commento:

Posta un commento

Powered by Blogger.