... mozilla-firefox_1.0.4-2sarge6 i386 testbuilds
Martin Schulze
joey at infodrom.org
Mon Apr 24 15:08:08 UTC 2006
Eric Dorland wrote:
> > I've picked mozilla-firefox 1.0.4-2sarge6 and pushed it into the buildd
> > network. Hope this was correct. Please let us know if you have an
> > idea which version in sid will fix the mentioned problems.
>
> It is correct.
Good.
> Version 1.5.dfsg+1.5.0.2-2 in unstable fixes it. But it also has a few
Noted.
> other fixes not mentioned in the 1.0.4-2sarge6 package and also less
> because the 1.0.4-2sarge6 contains security fixes that have been fixed
> of the whole 1.5 series. See the 1.5.dfsg+1.5.0.2-1 version of the
> changelog for a detailed list of CVE's fixed.
That's ok.
> The 1.0.8 release also marks the end of life for the security support
> of the 1.0 series :( It might be helpful if some one on the security
> team could make contact with the mozilla developers and try it get on
> their closed security mailing lists so at least have a chance at
> fixing 1.0 security issues in the future.
That's what Alexander is already trying.
Regards,
Joey
--
Long noun chains don't automatically imply security. -- Bruce Schneier
More information about the pkg-mozilla-maintainers
mailing list