FS#2718 : 2 serious flaws in mozilla-firefox including 1.0.3

Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!

FS#2718 - 2 serious flaws in mozilla-firefox including 1.0.3

Attached to Project: Arch Linux
Opened by fred (puntmuts) - Tuesday, 10 May 2005, 22:41 GMT

Task Type	Bug Report
Category	Packages: Current
Status	Closed
Assigned To	No-one
Architecture	not specified
Severity	High
Priority	Normal
Reported Version	0.7 Wombat
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

http://www.mozillazine.org/talkback.html?article=6597

Mozilla did release a rc1 of ff 1.0.4 which fixes the two flaws. Maybe it is worth considering to package this version because browsing with javascript disabled is causing all kinds of problems with sites.

This task depends upon

Closed by Jan de Groot (JGC)
Thursday, 12 May 2005, 08:20 GMT
Reason for closing: Fixed
Additional comments about closing: Firefox 1.0.4 is on the way to your local mirror.

Comments (1)
Related Tasks (0/0)

Comment by Jan de Groot (JGC) - Wednesday, 11 May 2005, 07:48 GMT

If you can locate the source for it, I can't view the bugreports which should have patches, since they're private. These builds are binary only and unusable for us, since we have additional patches to keep epiphany and galeon working.
Provide me with patches for the security leak and I'll start building a new firefox right away ;)

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

Arch Linux

FS#2718 - 2 serious flaws in mozilla-firefox including 1.0.3

Details

Loading...