Novell Home

CVE-2013-1699

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2013-1699 at MITRE

Description

The Internationalized Domain Name (IDN) display algorithm in Mozilla Firefox before 22.0 does not properly handle the .com, .name, and .net top-level domains, which allows remote attackers to spoof the address bar via unspecified homograph characters.

NVD CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)

SUSE information

SUSE Bugzilla entry: 825935

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 12.3
  • MozillaFirefox >= 22.0-1.25.1
  • MozillaFirefox-branding-upstream >= 22.0-1.25.1
  • MozillaFirefox-buildsymbols >= 22.0-1.25.1
  • MozillaFirefox-debuginfo >= 22.0-1.25.1
  • MozillaFirefox-debugsource >= 22.0-1.25.1
  • MozillaFirefox-devel >= 22.0-1.25.1
  • MozillaFirefox-translations-common >= 22.0-1.25.1
  • MozillaFirefox-translations-other >= 22.0-1.25.1
  • mozilla-nspr >= 4.9.6-1.10.1
  • mozilla-nspr-32bit >= 4.9.6-1.10.1
  • mozilla-nspr-debuginfo >= 4.9.6-1.10.1
  • mozilla-nspr-debuginfo-32bit >= 4.9.6-1.10.1
  • mozilla-nspr-debugsource >= 4.9.6-1.10.1
  • mozilla-nspr-devel >= 4.9.6-1.10.1
  • seamonkey >= 2.19-1.12.1
  • seamonkey-debuginfo >= 2.19-1.12.1
  • seamonkey-debugsource >= 2.19-1.12.1
  • seamonkey-dom-inspector >= 2.19-1.12.1
  • seamonkey-irc >= 2.19-1.12.1
  • seamonkey-translations-common >= 2.19-1.12.1
  • seamonkey-translations-other >= 2.19-1.12.1
  • seamonkey-venkman >= 2.19-1.12.1
Patchnames:
openSUSE-2013-556
openSUSE-2013-574

© 2015 Novell