Red Hat Product Errata RHSA-2009:1530 - Security Advisory

Issued:: 2009-10-27
Updated:: 2009-10-27

RHSA-2009:1530 - Security Advisory

Overview
Updated Packages

Synopsis

Critical: firefox security update

Type/Severity

Security Advisory: Critical

Topic

Updated firefox packages that fix several security issues are now available
for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having critical security impact by the Red
Hat Security Response Team.

Description

Mozilla Firefox is an open source Web browser. XULRunner provides the XUL
Runtime environment for Mozilla Firefox. nspr provides the Netscape
Portable Runtime (NSPR).

A flaw was found in the way Firefox handles form history. A malicious web
page could steal saved form data by synthesizing input events, causing the
browser to auto-fill form fields (which could then be read by an attacker).
(CVE-2009-3370)

A flaw was found in the way Firefox creates temporary file names for
downloaded files. If a local attacker knows the name of a file Firefox is
going to download, they can replace the contents of that file with
arbitrary contents. (CVE-2009-3274)

A flaw was found in the Firefox Proxy Auto-Configuration (PAC) file
processor. If Firefox loads a malicious PAC file, it could crash Firefox
or, potentially, execute arbitrary code with the privileges of the user
running Firefox. (CVE-2009-3372)

A heap-based buffer overflow flaw was found in the Firefox GIF image
processor. A malicious GIF image could crash Firefox or, potentially,
execute arbitrary code with the privileges of the user running Firefox.
(CVE-2009-3373)

A heap-based buffer overflow flaw was found in the Firefox string to
floating point conversion routines. A web page containing malicious
JavaScript could crash Firefox or, potentially, execute arbitrary code with
the privileges of the user running Firefox. (CVE-2009-1563)

A flaw was found in the way Firefox handles text selection. A malicious
website may be able to read highlighted text in a different domain (e.g.
another website the user is viewing), bypassing the same-origin policy.
(CVE-2009-3375)

A flaw was found in the way Firefox displays a right-to-left override
character when downloading a file. In these cases, the name displayed in
the title bar differs from the name displayed in the dialog body. An
attacker could use this flaw to trick a user into downloading a file that
has a file name or extension that differs from what the user expected.
(CVE-2009-3376)

Several flaws were found in the processing of malformed web content. A web
page containing malicious content could cause Firefox to crash or,
potentially, execute arbitrary code with the privileges of the user running
Firefox. (CVE-2009-3374, CVE-2009-3380, CVE-2009-3382)

For technical details regarding these flaws, refer to the Mozilla security
advisories for Firefox 3.0.15. You can find a link to the Mozilla
advisories in the References section of this errata.

All Firefox users should upgrade to these updated packages, which contain
Firefox version 3.0.15, which corrects these issues. After installing the
update, Firefox must be restarted for the changes to take effect.

Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

Red Hat Enterprise Linux Server 5 x86_64
Red Hat Enterprise Linux Server 5 ia64
Red Hat Enterprise Linux Server 5 i386
Red Hat Enterprise Linux Server 4 x86_64
Red Hat Enterprise Linux Server 4 ia64
Red Hat Enterprise Linux Server 4 i386
Red Hat Enterprise Linux Server - Extended Update Support 5.4 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 5.4 ia64
Red Hat Enterprise Linux Server - Extended Update Support 5.4 i386
Red Hat Enterprise Linux Server - Extended Update Support 4.8 x86_64
Red Hat Enterprise Linux Server - Extended Update Support 4.8 ia64
Red Hat Enterprise Linux Server - Extended Update Support 4.8 i386
Red Hat Enterprise Linux Workstation 5 x86_64
Red Hat Enterprise Linux Workstation 5 i386
Red Hat Enterprise Linux Workstation 4 x86_64
Red Hat Enterprise Linux Workstation 4 ia64
Red Hat Enterprise Linux Workstation 4 i386
Red Hat Enterprise Linux Desktop 5 x86_64
Red Hat Enterprise Linux Desktop 5 i386
Red Hat Enterprise Linux Desktop 4 x86_64
Red Hat Enterprise Linux Desktop 4 i386
Red Hat Enterprise Linux for IBM z Systems 5 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390x
Red Hat Enterprise Linux for IBM z Systems 4 s390
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.4 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8 s390
Red Hat Enterprise Linux for Power, big endian 5 ppc
Red Hat Enterprise Linux for Power, big endian 4 ppc
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.4 ppc
Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8 ppc
Red Hat Enterprise Linux Server from RHUI 5 x86_64
Red Hat Enterprise Linux Server from RHUI 5 i386

Fixes

BZ - 524815 - CVE-2009-3274 Firefox: Predictable /tmp pathname use
BZ - 530151 - CVE-2009-3370 Firefox form history vulnerable to stealing
BZ - 530155 - CVE-2009-3372 Firefox crash in proxy auto-configuration regexp parsing
BZ - 530156 - CVE-2009-3373 Firefox heap buffer overflow in GIF color map parser
BZ - 530157 - CVE-2009-3374 Firefox chrome privilege escalation in XPCVariant::VariantDataToJS()
BZ - 530162 - CVE-2009-1563 Firefox heap buffer overflow in string to number conversion
BZ - 530167 - CVE-2009-3375 Firefox cross-origin data theft through document.getSelection()
BZ - 530168 - CVE-2009-3376 Firefox download filename spoofing with RTL override
BZ - 530567 - CVE-2009-3380 Firefox crashes with evidence of memory corruption
BZ - 530569 - CVE-2009-3382 Firefox crashes with evidence of memory corruption

CVEs

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 5

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Server 4

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
x86_64
firefox-3.0.15-3.el4.x86_64.rpm	SHA-256: da96500ffb0baeabbf31398a880effb4d4c72a8dfde00cbcc7bf5dfd63e73088
firefox-3.0.15-3.el4.x86_64.rpm	SHA-256: da96500ffb0baeabbf31398a880effb4d4c72a8dfde00cbcc7bf5dfd63e73088
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.x86_64.rpm	SHA-256: f16b61e6aa43ca5a9b4e0e85d9d01e901e64dc5442133d9eebb54271e11c687d
nspr-4.7.6-1.el4_8.x86_64.rpm	SHA-256: f16b61e6aa43ca5a9b4e0e85d9d01e901e64dc5442133d9eebb54271e11c687d
nspr-devel-4.7.6-1.el4_8.x86_64.rpm	SHA-256: 2877634a456713db5d9d07428d6154395f82cbea3ec80be51ce8fa2e83202723
nspr-devel-4.7.6-1.el4_8.x86_64.rpm	SHA-256: 2877634a456713db5d9d07428d6154395f82cbea3ec80be51ce8fa2e83202723
ia64
firefox-3.0.15-3.el4.ia64.rpm	SHA-256: e915f33cc5f4306fff728edb9eef463985864034730100810d66b077eb27fcab
firefox-3.0.15-3.el4.ia64.rpm	SHA-256: e915f33cc5f4306fff728edb9eef463985864034730100810d66b077eb27fcab
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.ia64.rpm	SHA-256: b0ca0f4314fa2bcdd639942b50fb91b3b31e4c8b001e57bec99b831eadfeb5af
nspr-4.7.6-1.el4_8.ia64.rpm	SHA-256: b0ca0f4314fa2bcdd639942b50fb91b3b31e4c8b001e57bec99b831eadfeb5af
nspr-devel-4.7.6-1.el4_8.ia64.rpm	SHA-256: 9da704691ee1781846dbc3acf844121d156e40cb2e44d5f57d418fdd55f8a373
nspr-devel-4.7.6-1.el4_8.ia64.rpm	SHA-256: 9da704691ee1781846dbc3acf844121d156e40cb2e44d5f57d418fdd55f8a373
i386
firefox-3.0.15-3.el4.i386.rpm	SHA-256: 86ad062460c804d3fef23e598b43c380a7c7f801cc78202b0daad9e3e5995fed
firefox-3.0.15-3.el4.i386.rpm	SHA-256: 86ad062460c804d3fef23e598b43c380a7c7f801cc78202b0daad9e3e5995fed
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-devel-4.7.6-1.el4_8.i386.rpm	SHA-256: 77452c0e289a72dacea78b2fc71a8dbc6e0d9b4b48b2705fa1e8baed47753178
nspr-devel-4.7.6-1.el4_8.i386.rpm	SHA-256: 77452c0e289a72dacea78b2fc71a8dbc6e0d9b4b48b2705fa1e8baed47753178

Red Hat Enterprise Linux Server - Extended Update Support 5.4

SRPM
x86_64
ia64
i386

Red Hat Enterprise Linux Server - Extended Update Support 4.8

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
x86_64
firefox-3.0.15-3.el4.x86_64.rpm	SHA-256: da96500ffb0baeabbf31398a880effb4d4c72a8dfde00cbcc7bf5dfd63e73088
firefox-3.0.15-3.el4.x86_64.rpm	SHA-256: da96500ffb0baeabbf31398a880effb4d4c72a8dfde00cbcc7bf5dfd63e73088
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.x86_64.rpm	SHA-256: f16b61e6aa43ca5a9b4e0e85d9d01e901e64dc5442133d9eebb54271e11c687d
nspr-4.7.6-1.el4_8.x86_64.rpm	SHA-256: f16b61e6aa43ca5a9b4e0e85d9d01e901e64dc5442133d9eebb54271e11c687d
nspr-devel-4.7.6-1.el4_8.x86_64.rpm	SHA-256: 2877634a456713db5d9d07428d6154395f82cbea3ec80be51ce8fa2e83202723
nspr-devel-4.7.6-1.el4_8.x86_64.rpm	SHA-256: 2877634a456713db5d9d07428d6154395f82cbea3ec80be51ce8fa2e83202723
ia64
firefox-3.0.15-3.el4.ia64.rpm	SHA-256: e915f33cc5f4306fff728edb9eef463985864034730100810d66b077eb27fcab
firefox-3.0.15-3.el4.ia64.rpm	SHA-256: e915f33cc5f4306fff728edb9eef463985864034730100810d66b077eb27fcab
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.ia64.rpm	SHA-256: b0ca0f4314fa2bcdd639942b50fb91b3b31e4c8b001e57bec99b831eadfeb5af
nspr-4.7.6-1.el4_8.ia64.rpm	SHA-256: b0ca0f4314fa2bcdd639942b50fb91b3b31e4c8b001e57bec99b831eadfeb5af
nspr-devel-4.7.6-1.el4_8.ia64.rpm	SHA-256: 9da704691ee1781846dbc3acf844121d156e40cb2e44d5f57d418fdd55f8a373
nspr-devel-4.7.6-1.el4_8.ia64.rpm	SHA-256: 9da704691ee1781846dbc3acf844121d156e40cb2e44d5f57d418fdd55f8a373
i386
firefox-3.0.15-3.el4.i386.rpm	SHA-256: 86ad062460c804d3fef23e598b43c380a7c7f801cc78202b0daad9e3e5995fed
firefox-3.0.15-3.el4.i386.rpm	SHA-256: 86ad062460c804d3fef23e598b43c380a7c7f801cc78202b0daad9e3e5995fed
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-devel-4.7.6-1.el4_8.i386.rpm	SHA-256: 77452c0e289a72dacea78b2fc71a8dbc6e0d9b4b48b2705fa1e8baed47753178
nspr-devel-4.7.6-1.el4_8.i386.rpm	SHA-256: 77452c0e289a72dacea78b2fc71a8dbc6e0d9b4b48b2705fa1e8baed47753178

Red Hat Enterprise Linux Workstation 5

SRPM
x86_64
i386

Red Hat Enterprise Linux Workstation 4

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
x86_64
firefox-3.0.15-3.el4.x86_64.rpm	SHA-256: da96500ffb0baeabbf31398a880effb4d4c72a8dfde00cbcc7bf5dfd63e73088
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.x86_64.rpm	SHA-256: f16b61e6aa43ca5a9b4e0e85d9d01e901e64dc5442133d9eebb54271e11c687d
nspr-devel-4.7.6-1.el4_8.x86_64.rpm	SHA-256: 2877634a456713db5d9d07428d6154395f82cbea3ec80be51ce8fa2e83202723
ia64
firefox-3.0.15-3.el4.ia64.rpm	SHA-256: e915f33cc5f4306fff728edb9eef463985864034730100810d66b077eb27fcab
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.ia64.rpm	SHA-256: b0ca0f4314fa2bcdd639942b50fb91b3b31e4c8b001e57bec99b831eadfeb5af
nspr-devel-4.7.6-1.el4_8.ia64.rpm	SHA-256: 9da704691ee1781846dbc3acf844121d156e40cb2e44d5f57d418fdd55f8a373
i386
firefox-3.0.15-3.el4.i386.rpm	SHA-256: 86ad062460c804d3fef23e598b43c380a7c7f801cc78202b0daad9e3e5995fed
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-devel-4.7.6-1.el4_8.i386.rpm	SHA-256: 77452c0e289a72dacea78b2fc71a8dbc6e0d9b4b48b2705fa1e8baed47753178

Red Hat Enterprise Linux Desktop 5

SRPM
x86_64
i386

Red Hat Enterprise Linux Desktop 4

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
x86_64
firefox-3.0.15-3.el4.x86_64.rpm	SHA-256: da96500ffb0baeabbf31398a880effb4d4c72a8dfde00cbcc7bf5dfd63e73088
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-4.7.6-1.el4_8.x86_64.rpm	SHA-256: f16b61e6aa43ca5a9b4e0e85d9d01e901e64dc5442133d9eebb54271e11c687d
nspr-devel-4.7.6-1.el4_8.x86_64.rpm	SHA-256: 2877634a456713db5d9d07428d6154395f82cbea3ec80be51ce8fa2e83202723
i386
firefox-3.0.15-3.el4.i386.rpm	SHA-256: 86ad062460c804d3fef23e598b43c380a7c7f801cc78202b0daad9e3e5995fed
nspr-4.7.6-1.el4_8.i386.rpm	SHA-256: 62493cc7f862a706cb465168a4de4f89052b1cef9fa1bc347540a97188b32142
nspr-devel-4.7.6-1.el4_8.i386.rpm	SHA-256: 77452c0e289a72dacea78b2fc71a8dbc6e0d9b4b48b2705fa1e8baed47753178

Red Hat Enterprise Linux for IBM z Systems 5

SRPM
s390x

Red Hat Enterprise Linux for IBM z Systems 4

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
s390x
firefox-3.0.15-3.el4.s390x.rpm	SHA-256: ff1317ce9db9ce95f9011eb465cd52ae2fabb2436100a69f455fb72f63bcac59
nspr-4.7.6-1.el4_8.s390.rpm	SHA-256: fb7a662867eb269fe5a9552ae9869b36211b3c3c23281eb8e5559e902033ab6c
nspr-4.7.6-1.el4_8.s390x.rpm	SHA-256: 245e63769f4b63601933454fa77a2bce599184990f6529edc3756ba0d8876818
nspr-devel-4.7.6-1.el4_8.s390x.rpm	SHA-256: 818a63c49a02e2312a2d6e916557472f16beebb07ca2271d203bda3eafbf29f7
s390
firefox-3.0.15-3.el4.s390.rpm	SHA-256: d4525294d462893486b5988352d585c5d08ce53ff6b01ebe2b0eb0f097df1990
nspr-4.7.6-1.el4_8.s390.rpm	SHA-256: fb7a662867eb269fe5a9552ae9869b36211b3c3c23281eb8e5559e902033ab6c
nspr-devel-4.7.6-1.el4_8.s390.rpm	SHA-256: 6e2eaa6be66f9c2c38da34226664c7b8fab1b68bce248156fa4087d56bef64dc

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 5.4

SRPM
s390x

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 4.8

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
s390x
firefox-3.0.15-3.el4.s390x.rpm	SHA-256: ff1317ce9db9ce95f9011eb465cd52ae2fabb2436100a69f455fb72f63bcac59
nspr-4.7.6-1.el4_8.s390.rpm	SHA-256: fb7a662867eb269fe5a9552ae9869b36211b3c3c23281eb8e5559e902033ab6c
nspr-4.7.6-1.el4_8.s390x.rpm	SHA-256: 245e63769f4b63601933454fa77a2bce599184990f6529edc3756ba0d8876818
nspr-devel-4.7.6-1.el4_8.s390x.rpm	SHA-256: 818a63c49a02e2312a2d6e916557472f16beebb07ca2271d203bda3eafbf29f7
s390
firefox-3.0.15-3.el4.s390.rpm	SHA-256: d4525294d462893486b5988352d585c5d08ce53ff6b01ebe2b0eb0f097df1990
nspr-4.7.6-1.el4_8.s390.rpm	SHA-256: fb7a662867eb269fe5a9552ae9869b36211b3c3c23281eb8e5559e902033ab6c
nspr-devel-4.7.6-1.el4_8.s390.rpm	SHA-256: 6e2eaa6be66f9c2c38da34226664c7b8fab1b68bce248156fa4087d56bef64dc

Red Hat Enterprise Linux for Power, big endian 5

SRPM
ppc

Red Hat Enterprise Linux for Power, big endian 4

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
ppc
firefox-3.0.15-3.el4.ppc.rpm	SHA-256: 33539bc641a71438c64fc435079c33820b1f1eea886163fffb09034a3163d9c2
nspr-4.7.6-1.el4_8.ppc.rpm	SHA-256: 8a8f132396c82898591daf1b21ebafb7a523a271cf0a322408cd557b3ea8170c
nspr-4.7.6-1.el4_8.ppc64.rpm	SHA-256: c6bb919e1c4b9f058ce2894905a76db0b0cf8fb95ad84fbb0b0d09798c519ba5
nspr-devel-4.7.6-1.el4_8.ppc.rpm	SHA-256: 7ae68240ca7adcb6af94cefc965f1c0cb18b682fea2b2f9ddeed5b106abecb52

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 5.4

SRPM
ppc

Red Hat Enterprise Linux for Power, big endian - Extended Update Support 4.8

SRPM
firefox-3.0.15-3.el4.src.rpm	SHA-256: ee33ace5500952df674e88229942e829c7fa02c1007a5373fccc637c8e001516
nspr-4.7.6-1.el4_8.src.rpm	SHA-256: 8de5683db29f4030ac26ca3a3edbdb850fd346603be1c3e3040290536d21d706
ppc
firefox-3.0.15-3.el4.ppc.rpm	SHA-256: 33539bc641a71438c64fc435079c33820b1f1eea886163fffb09034a3163d9c2
nspr-4.7.6-1.el4_8.ppc.rpm	SHA-256: 8a8f132396c82898591daf1b21ebafb7a523a271cf0a322408cd557b3ea8170c
nspr-4.7.6-1.el4_8.ppc64.rpm	SHA-256: c6bb919e1c4b9f058ce2894905a76db0b0cf8fb95ad84fbb0b0d09798c519ba5
nspr-devel-4.7.6-1.el4_8.ppc.rpm	SHA-256: 7ae68240ca7adcb6af94cefc965f1c0cb18b682fea2b2f9ddeed5b106abecb52

Red Hat Enterprise Linux Server from RHUI 5

SRPM
x86_64
i386

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.