dcsimg
Linux Today: Linux News On Internet Time.





More on LinuxToday


Red Hat Security Advisory: New netscape packages available

Oct 05, 1999, 16:41 (0 Talkback[s])

Date: Tue, 5 Oct 1999 11:44:19 -0400
From: Bill Nottingham notting@redhat.com
To: redhat-watch-list@redhat.com


Red Hat, Inc. Security Advisory

Synopsis: New netscape packages available
Advisory ID: RHSA-1999:039-01
Issue date: 1999-10-04
Updated on:
Keywords: netscape 4.7 communicator navigator
Cross references:


1. Topic:

A new version of Netscape has been released. This release fixes some security problems in Javascript and form signing.

2. Bug IDs fixed (http://developer.redhat.com/bugzilla for more info):

None.

3. Relevant releases/architectures:

Red Hat Linux 5.x, Intel Red Hat Linux 6.x, Intel

Sparc packages will be available if/when Netscape updates their Sparc releases.

4. Obsoleted by:

5. Conflicts with:

6. RPMs required:

Red Hat Linux 5.x:

Intel:
ftp://ftp.redhat.com/pub/redhat/updates/5.2/i386/netscape-common-4.7-0.i386.rpm
ftp://ftp.redhat.com/pub/redhat/updates/5.2/i386/netscape-communicator-4.7-0.i386.rpm
ftp://ftp.redhat.com/pub/redhat/updates/5.2/i386/netscape-navigator-4.7-0.i386.rpm

Sparc:
ftp://ftp.redhat.com/pub/redhat/updates/5.2/sparc/netscape-common-4.51-0.sparc.rpm

Source packages:
ftp://ftp.redhat.com/pub/redhat/updates/5.2/SRPMS/netscape-4.7-0.src.rpm

Red Hat Linux 6.x:

Intel:
ftp://ftp.redhat.com/pub/redhat/updates/6.1/i386/netscape-common-4.7-1.i386.rpm
ftp://ftp.redhat.com/pub/redhat/updates/6.1/i386/netscape-communicator-4.7-1.i386.rpm
ftp://ftp.redhat.com/pub/redhat/updates/6.1/i386/netscape-navigator-4.7-1.i386.rpm

Source packages:
ftp://ftp.redhat.com/pub/redhat/updates/6.1/SRPMS/netscape-4.7-1.src.rpm

7. Problem description:

A new version of Netscape has been released. This release fixes some security problems in Javascript and form signing, as well as adding some new features. For more information, please see:

http://home.netscape.com/eng/mozilla/4.7/relnotes/unix-4.7.html

8. Solution:

For each RPM for your particular architecture, run:

rpm -Uvh

where filename is the name of the RPM.

9. Verification:

MD5 sum                                                    Package Name

f604d7e8032fe13f630373e5f9ad0940  i386/netscape-common-4.7-0.i386.rpm
3fcc5fca33ba3fc647fb5a7bf6aabf41  i386/netscape-communicator-4.7-0.i386.rpm
33818607fdc893a047dbf03c4b46ce34  i386/netscape-navigator-4.7-0.i386.rpm
c32b3f430a9eaf84c2c3f1e35f402229  SRPMS/netscape-4.7-0.src.rpm

f01c5658d5d264bee329aa51f3b09fe5  i386/netscape-common-4.7-1.i386.rpm
59de608731eea3293b12cbe370551403  i386/netscape-communicator-4.7-1.i386.rpm
3303e827932687615c0537e116660b21  i386/netscape-navigator-4.7-1.i386.rpm
aafb6d8c787771c3e2cff67bb0fff608  SRPMS/netscape-4.7-1.src.rpm

These packages are signed with GnuPG by Red Hat Inc. for security. Our key is available at:

http://www.redhat.com/corp/contact.html and is also attached to this annoucement.

You can verify each package with the following command:

rpm --checksig

If you only wish to verify that each package has not been corrupted or tampered with, examine only the md5sum with the following command:

rpm --checksig --nogpg

Note that you need RPM >= 3.0 to check GnuPG keys.

10. References

RPM-GPG-KEY