+ Mozilla Firefox, SeaMonkey, Thunderbird: Multiple vulnerabilities
+ Multiple vulnerabilities have been found in Mozilla Firefox,
+ SeaMonkey, and Thunderbird the worst of which could lead to the execution
+ of arbitrary code.
+
+ firefox, thunderbird, seamonkey
+ January 03, 2017
+ January 03, 2017: 1
+ 539242
+ 541506
+ 581326
+ 590330
+ 594616
+ 599924
+ 601320
+ 602576
+ 604024
+ remote
+
+
+ 45.6.0
+ 45.6.0
+
+
+ 45.6.0
+ 45.6.0
+
+
+ 45.6.0
+ 45.6.0
+
+
+ 45.6.0
+ 45.6.0
+
+
+ 2.38
+ 2.38
+
+
+ 2.38
+ 2.38
+
+
+
+ Mozilla Firefox is a cross-platform web browser from Mozilla. The
+ Mozilla Thunderbird mail client is a redesign of the Mozilla Mail
+ component. The goal is to produce a cross-platform stand-alone mail
+ application using XUL (XML User Interface Language). SeaMonkey is a free
+ and open-source Internet suite. It is the continuation of the former
+ Mozilla Application Suite, based on the same source code.
+
+
+
+ Multiple vulnerabilities have been discovered in Mozilla Firefox,
+ SeaMonkey, and Thunderbird. Please review the CVE identifiers referenced
+ below for details.
+
+
+
+ A remote attacker could possibly execute arbitrary code with the
+ privileges of the process or cause a Denial of Service condition via
+ multiple vectors.
+
+
+
+ There is no known workaround at this time.
+
+
+ All Firefox users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=www-client/firefox-45.6.0"
+
+
+ All Firefox-bin users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=www-client/firefox-bin-45.6.0"
+
+
+ All Thunderbird users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-45.6.0"
+
+
+ All Thunderbird-bin users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose
+ ">=mail-client/thunderbird-bin-45.6.0"
+
+
+ All SeaMonkey users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=www-client/seamonkey-2.38"
+
+
+ All SeaMonkey-bin users should upgrade to the latest version:
+
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose ">=www-client/seamonkey-bin-2.38"
+
+
+
+ CVE-2014-8634
+ CVE-2014-8635
+ CVE-2014-8636
+ CVE-2014-8637
+ CVE-2014-8638
+ CVE-2014-8639
+ CVE-2014-8640
+ CVE-2014-8641
+ CVE-2014-8642
+ CVE-2015-0819
+ CVE-2015-0820
+ CVE-2015-0821
+ CVE-2015-0822
+ CVE-2015-0823
+ CVE-2015-0824
+ CVE-2015-0825
+ CVE-2015-0826
+ CVE-2015-0827
+ CVE-2015-0828
+ CVE-2015-0829
+ CVE-2015-0830
+ CVE-2015-0831
+ CVE-2015-0832
+ CVE-2015-0833
+ CVE-2015-0834
+ CVE-2015-0835
+ CVE-2015-0836
+ CVE-2016-2804
+ CVE-2016-2805
+ CVE-2016-2806
+ CVE-2016-2807
+ CVE-2016-2808
+ CVE-2016-2809
+ CVE-2016-2810
+ CVE-2016-2811
+ CVE-2016-2812
+ CVE-2016-2813
+ CVE-2016-2814
+ CVE-2016-2816
+ CVE-2016-2817
+ CVE-2016-2820
+ CVE-2016-2827
+ CVE-2016-2830
+ CVE-2016-2835
+ CVE-2016-2836
+ CVE-2016-2837
+ CVE-2016-2838
+ CVE-2016-2839
+ CVE-2016-5250
+ CVE-2016-5251
+ CVE-2016-5252
+ CVE-2016-5253
+ CVE-2016-5254
+ CVE-2016-5255
+ CVE-2016-5256
+ CVE-2016-5257
+ CVE-2016-5258
+ CVE-2016-5259
+ CVE-2016-5260
+ CVE-2016-5261
+ CVE-2016-5262
+ CVE-2016-5263
+ CVE-2016-5264
+ CVE-2016-5265
+ CVE-2016-5266
+ CVE-2016-5267
+ CVE-2016-5268
+ CVE-2016-5270
+ CVE-2016-5271
+ CVE-2016-5272
+ CVE-2016-5273
+ CVE-2016-5274
+ CVE-2016-5275
+ CVE-2016-5276
+ CVE-2016-5277
+ CVE-2016-5278
+ CVE-2016-5279
+ CVE-2016-5280
+ CVE-2016-5281
+ CVE-2016-5282
+ CVE-2016-5283
+ CVE-2016-5284
+ CVE-2016-5290
+ CVE-2016-5291
+ CVE-2016-5293
+ CVE-2016-5294
+ CVE-2016-5296
+ CVE-2016-5297
+ CVE-2016-9064
+ CVE-2016-9066
+ CVE-2016-9074
+ CVE-2016-9079
+ CVE-2016-9893
+ CVE-2016-9895
+ CVE-2016-9897
+ CVE-2016-9898
+ CVE-2016-9899
+ CVE-2016-9900
+ CVE-2016-9901
+ CVE-2016-9902
+ CVE-2016-9904
+ CVE-2016-9905
+
+ b-man
+ b-man
+
diff --git a/metadata/glsa/timestamp.chk b/metadata/glsa/timestamp.chk
index 428498b70661..8913d8430232 100644
--- a/metadata/glsa/timestamp.chk
+++ b/metadata/glsa/timestamp.chk
@@ -1 +1 @@
-Mon, 02 Jan 2017 20:13:19 +0000
+Tue, 03 Jan 2017 15:13:23 +0000
diff --git a/metadata/md5-cache/app-admin/emacs-updater-1.14 b/metadata/md5-cache/app-admin/emacs-updater-1.14
deleted file mode 100644
index 78c047be7e84..000000000000
--- a/metadata/md5-cache/app-admin/emacs-updater-1.14
+++ /dev/null
@@ -1,11 +0,0 @@
-DEFINED_PHASES=install prepare
-DEPEND=|| ( sys-apps/util-linux app-misc/getopt )
-DESCRIPTION=Rebuild Emacs packages
-EAPI=5
-HOMEPAGE=https://wiki.gentoo.org/wiki/Project:Emacs
-KEYWORDS=alpha amd64 arm hppa ia64 ~mips ppc ppc64 ~s390 ~sh sparc x86 ~amd64-fbsd ~x86-fbsd ~x86-freebsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos
-LICENSE=GPL-2+
-RDEPEND=|| ( sys-apps/util-linux app-misc/getopt ) >=app-portage/portage-utils-0.3 virtual/emacs
-SLOT=0
-SRC_URI=https://dev.gentoo.org/~ulm/emacs/emacs-updater-1.14.tar.xz
-_md5_=eba463bf274129692dfcc8741dd79334
diff --git a/metadata/md5-cache/app-admin/lib_users-0.10 b/metadata/md5-cache/app-admin/lib_users-0.10
new file mode 100644
index 000000000000..774fc27cdcf1
--- /dev/null
+++ b/metadata/md5-cache/app-admin/lib_users-0.10
@@ -0,0 +1,14 @@
+DEFINED_PHASES=install test
+DEPEND=python_targets_python2_7? ( >=dev-lang/python-2.7.5-r2:2.7 ) python_targets_python3_4? ( dev-lang/python:3.4 ) python_targets_python3_5? ( dev-lang/python:3.5 ) >=dev-lang/python-exec-2:=[python_targets_python2_7(-)?,python_targets_python3_4(-)?,python_targets_python3_5(-)?,-python_single_target_python2_7(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-)] test? ( dev-python/nose[python_targets_python2_7(-)?,python_targets_python3_4(-)?,python_targets_python3_5(-)?,-python_single_target_python2_7(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-)] dev-python/backports-unittest-mock[python_targets_python2_7(-)?,python_targets_python3_4(-)?,python_targets_python3_5(-)?,-python_single_target_python2_7(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-)] )
+DESCRIPTION=Check for mapped libs and open files that are marked as deleted
+EAPI=6
+HOMEPAGE=https://github.com/klausman/lib_users
+IUSE=test python_targets_python2_7 python_targets_python3_4 python_targets_python3_5
+KEYWORDS=~alpha ~amd64 ~x86 ~amd64-linux ~x86-linux
+LICENSE=GPL-2
+RDEPEND=python_targets_python2_7? ( >=dev-lang/python-2.7.5-r2:2.7 ) python_targets_python3_4? ( dev-lang/python:3.4 ) python_targets_python3_5? ( dev-lang/python:3.5 ) >=dev-lang/python-exec-2:=[python_targets_python2_7(-)?,python_targets_python3_4(-)?,python_targets_python3_5(-)?,-python_single_target_python2_7(-),-python_single_target_python3_4(-),-python_single_target_python3_5(-)]
+REQUIRED_USE=|| ( python_targets_python2_7 python_targets_python3_4 python_targets_python3_5 )
+SLOT=0
+SRC_URI=https://github.com/klausman/lib_users/archive/v0.10.tar.gz -> lib_users-0.10.tar.gz
+_eclasses_=multibuild 742139c87a9fa3766f0c2b155e5522bf multilib 165fc17c38d1b11dac2008280dab6e80 python-r1 dcd61d7a5c283f18cfe763552b09eb88 python-utils-r1 d142329ab093dd20c1dd0edb5f094108 toolchain-funcs 1b1da0c45c555989dc5d832b54880783
+_md5_=d40f12eeb3e13c1ff034fe8ed1388352
diff --git a/metadata/md5-cache/app-admin/logrotate-3.9.1-r1 b/metadata/md5-cache/app-admin/logrotate-3.9.1-r1
deleted file mode 100644
index 39bab29049c3..000000000000
--- a/metadata/md5-cache/app-admin/logrotate-3.9.1-r1
+++ /dev/null
@@ -1,13 +0,0 @@
-DEFINED_PHASES=compile configure install postinst prepare test
-DEPEND=>=dev-libs/popt-1.5 selinux? ( sys-libs/libselinux ) acl? ( virtual/acl ) >=sys-apps/sed-4 !