firefox: Critical security update

Users of firefox please be advised of a Critical security update that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (

RHSA-2010:0782-01: [RHSA-2010:0782-01] Critical: firefox security update
Product: Red Hat Enterprise Linux
Several flaws were found in the processing of malformed web content. A web

page containing malicious content could cause Firefox to crash or,

potentially, execute arbitrary code with the privileges of the user running

Firefox. (CVE-2010-3175, CVE-2010-3176, CVE-2010-3179, CVE-2010-3183,

A flaw was found in the way the Gopher parser in Firefox converted text

into HTML. A malformed file name on a Gopher server could, when accessed by

a victim running Firefox, allow arbitrary JavaScript to be executed in the

context of the Gopher domain. (CVE-2010-3177)