What is the severity of REDHAT-BUG-621964?

The severity of REDHAT-BUG-621964 is considered critical due to the potential for arbitrary code execution through malicious hyperlinks.

How do I fix REDHAT-BUG-621964?

To fix REDHAT-BUG-621964, users should upgrade their uzbl browser to the patched version released on 2010.08.05 or later.

What software is affected by REDHAT-BUG-621964?

REDHAT-BUG-621964 affects uzbl browser versions up to and including 2010.08.05 and potentially Fedora systems utilizing the affected uzbl component.

What type of vulnerability is REDHAT-BUG-621964?

REDHAT-BUG-621964 is a code execution vulnerability that can be triggered by specific mouse button bindings in the uzbl browser.

Is there a workaround for REDHAT-BUG-621964?

Currently, the recommended action for REDHAT-BUG-621964 is to apply the upgrade as no effective workaround is noted.

Vulnerability/
REDHAT-BUG-621964

high

6/8/2010

29/9/2019

REDHAT-BUG-621964

First published: Fri Aug 06 2010(Updated: )

Quoting the upstream news advisory [1]: "The 2010.08.05 release comes with a patched config file. With shell code in hyperlinks on a page, one of the sample (uzbl-core) resp. default (uzbl-browser) button bindings (binding for mousebutton2) would execute this code. Note that just upgrading your uzbl is not enough. If you have an existing config, the change will not be automatically applied. So be sure you have this change in your config." And an associated bug report [2] exists as well. There is no patch noted in the bug report. This would affect all versions of Fedora. [1] <a href="http://www.uzbl.org/news.php?id=29">http://www.uzbl.org/news.php?id=29</a> [2] <a href="http://www.uzbl.org/bugs/index.php?do=details&task_id=240">http://www.uzbl.org/bugs/index.php?do=details&task_id=240</a>

Affected Software	Affected Version	How to fix
uzbl	<=2010.08.05
Fedora	<=

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-621964?
The severity of REDHAT-BUG-621964 is considered critical due to the potential for arbitrary code execution through malicious hyperlinks.
How do I fix REDHAT-BUG-621964?
To fix REDHAT-BUG-621964, users should upgrade their uzbl browser to the patched version released on 2010.08.05 or later.
What software is affected by REDHAT-BUG-621964?
REDHAT-BUG-621964 affects uzbl browser versions up to and including 2010.08.05 and potentially Fedora systems utilizing the affected uzbl component.
What type of vulnerability is REDHAT-BUG-621964?
REDHAT-BUG-621964 is a code execution vulnerability that can be triggered by specific mouse button bindings in the uzbl browser.
Is there a workaround for REDHAT-BUG-621964?
Currently, the recommended action for REDHAT-BUG-621964 is to apply the upgrade as no effective workaround is noted.

collector/redhat-bugzilla
alias/CVE-2010-2809
agent/type
agent/last-modified-date
agent/first-publish-date
agent/severity
agent/references
agent/description
agent/event
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/uzbl
canonical/uzbl
vendor/fedora
canonical/fedora

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.