Frank Hecker wrote: > Note that I posted to n.p.m.announce a mozilla.org statement re the > recently-reported (and fixed) Mozilla security vulnerability relating to > XMLHttpRequest: [...]
What about posting information about this vulnerability at this page: http://www.mozilla.org/projects/security/known-vulnerabilities.html Which is aiui meant for such announcements? -- "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- Benjamin Franklin