Alex K. wrote: > I assume this is an oversight, because the testcases were added as > attachments to individual comments.
At least some of those testcases seem to use techniques that could be used to exploit things other than the specific bugs involved. This is why they were not opened up when the bug was. While the subject matter of the bug is public (and fixed), the additional techniques used in the testcase are not necessarily public knowledge... It might indeed be the case that at this point they can be opened up, depending on the exact testcase. Daniel Veditz ([EMAIL PROTECTED]) should know for sure, I would guess. -Boris _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
