Hi Francesco,
It seems that the security bug tracker[1] lists Iceweasel vulnerabilities twice, as it lists them for both firefox and iceweasel packages for unstable[2].
This is intentional as the tracking is by source package. The firefox source package is still vulnerable and is still both in unstable and testing. However the firefox binary package in unstable is created from the iceweasel source package and therefore has fewer vulnerabilities than the the firefox binary package in testing.
There is no page in the security bug tracker that shows an overview over vulnerabilities in binary packages. However debsecan should give you this information (I think).
HTH. Cheers, Stefan _______________________________________________ Secure-testing-team mailing list [email protected] http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
