Package: mozilla-firefox
Version: 1.0.3-2
Severity: grave
Tags: security
I'm sure you already know of these, but for the record, firefox is
vulnerale to a pair of new security holes:
CAN-2005-1477
The install function in Firefox 1.0.3 allows remote web sites on the browser's
whitelist, such as
Well aware. Of course Mozilla's silly security policies prevent me
from viewing the bug's making a release before MoFo does. But as soon
as 1.0.4 is released I'll have it packaged in short order.
* Joey Hess ([EMAIL PROTECTED]) wrote:
Package: mozilla-firefox
Version: 1.0.3-2
Severity: grave
Eric Dorland wrote:
Well aware. Of course Mozilla's silly security policies prevent me
from viewing the bug's making a release before MoFo does. But as soon
as 1.0.4 is released I'll have it packaged in short order.
BTW, do you know if these only impact firefox, or do they also affect
3 matches
Mail list logo
