Hi, On Sa, Jan 23, 2010 at 10:14:02 +0100, Guido Günther wrote: > Do you intend to upload a fix for stable?
I've looked around this CVE and realise, Icedove 2 isn't affected. The Mozilla MFSA[1] showed explicit, only Firefox >= 3 is affected and compared with the Gecko Engine Releases[3] I get the following overview: Firefox | Gecko Engine | Thunderbird ----------------------------------------- -> FF 2.0 | Gecko 1.8.1 | TB 2.0 FF 3.0 | Gecko 1.9 | - FF 3.5 | Gecko 1.9.1 | TB 3.0 So there is no need to fix this issue in Icedove 2. A fixed version of Icedove 3.0 (3.0.4-2 at the moment) is in unstable. Cheers, Christoph [1] http://www.mozilla.org/security/announce/2009/mfsa2009-54.html [2] https://bugzilla.mozilla.org/show_bug.cgi?id=514554 [3] http://developer.mozilla.org/de/Gecko
signature.asc
Description: Digital signature