Hi, On Sa, Jan 23, 2010 at 10:14:02 +0100, Guido Günther wrote: > Do you intend to upload a fix for stable?
I've looked around this CVE and realise, Icedove 2 isn't affected. The
Mozilla MFSA[1] showed explicit, only Firefox >= 3 is affected and
compared with the Gecko Engine Releases[3] I get the following overview:
Firefox | Gecko Engine | Thunderbird
-----------------------------------------
-> FF 2.0 | Gecko 1.8.1 | TB 2.0
FF 3.0 | Gecko 1.9 | -
FF 3.5 | Gecko 1.9.1 | TB 3.0
So there is no need to fix this issue in Icedove 2. A fixed version of
Icedove 3.0 (3.0.4-2 at the moment) is in unstable.
Cheers,
Christoph
[1] http://www.mozilla.org/security/announce/2009/mfsa2009-54.html
[2] https://bugzilla.mozilla.org/show_bug.cgi?id=514554
[3] http://developer.mozilla.org/de/Gecko
signature.asc
Description: Digital signature
