Moritz Muehlenhoff wrote on 12/27/05 8:30 PM:
this has been assigned CVE-2005-4534 by MITRE. Please refer to it in the 2.16.11 release notes.
Thanks! I'm not getting any traction on trying to push a full release out for this. Seems nobody cares about the 2.16 branch anymore (it's two stable releases back, and due for EOL on security support by us in a couple weeks anyway). Or it could be that anyone who cares is still on Christmas vacation. Anyhow, I'll have an advisory going out in a few hours which just points at the patch. In reality there's probably very few sites using this feature. There will be a 2.16.11 release, just not tonight.
-- Dave Miller http://www.justdave.net/ System Administrator, Mozilla Corporation http://www.mozilla.com/ Project Leader, Bugzilla Bug Tracking System http://www.bugzilla.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]