On 1/7/18 5:48 AM, Ray_Net wrote:
WaltS48 wrote on 06-01-18 18:05:
On 1/6/18 2:36 AM, Ray_Net wrote:
I have read:
"Disable Javascript until browser company comes out with patch for
vulnerable Javascript."
So, will SM issue a patch against the Spectre exploit ?
SeaMonkey 2.49.1 is based on Firefox 52 ESR code, and Firefox 52 ESR
doesn't have SharedBufferArray enabled.
||
||SharedArrayBuffer| is already disabled in Firefox 52 ESR.|
||
|REF: https://www.mozilla.org/en-US/security/advisories/mfsa2018-01/|
||
||
|
|
Would it mean that we are protected ?
Well, the advisory does say "the |SharedArrayBuffer| feature has been
disabled because it can be used to construct a high-resolution timer".
If it isn't enabled in the ESR that SeaMonkey is based on, then I would
expect users are protected.
_______________________________________________
support-seamonkey mailing list
support-seamonkey@lists.mozilla.org
https://lists.mozilla.org/listinfo/support-seamonkey