FreeBSD Ports: firefox

The remote host is missing an update to the system as announced in the referenced advisory.

The following packages are affected: firefox linux-firefox seamonkey linux-seamonkey flock linux-flock linux-firefox-devel linux-seamonkey-devel thunderbird linux-thunderbird CVE-2008-1237 Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.13, Thunderbird before 2.0.0.13, and SeaMonkey before 1.1.9 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors related to the JavaScript engine. CVE-2008-1380 The JavaScript engine in Mozilla Firefox before 2.0.0.14, Thunderbird before 2.0.0.14, and SeaMonkey before 1.1.10 allows remote attackers to cause a denial of service (garbage collector crash) and possibly have other impacts via a crafted web page. NOTE: this is due to an incorrect fix for CVE-2008-1237.

Update your system with the appropriate patches or software upgrades. http://secunia.com/advisories/29787 http://www.mozilla.org/security/announce/2008/mfsa2008-20.html http://www.vuxml.org/freebsd/67bd39ba-12b5-11dd-bab7-0016179b2dd5.html