[Secure-testing-team] Firefox/Iceweasel holes counted twice
Stefan Fritsch
sf at sfritsch.de
Wed Dec 20 13:18:42 CET 2006
Hi Francesco,
> It seems that the security bug tracker[1] lists Iceweasel
> vulnerabilities twice, as it lists them for both firefox and iceweasel
> packages for unstable[2].
This is intentional as the tracking is by source package. The firefox
source package is still vulnerable and is still both in unstable and
testing. However the firefox binary package in unstable is created from
the iceweasel source package and therefore has fewer vulnerabilities than
the the firefox binary package in testing.
There is no page in the security bug tracker that shows an overview over
vulnerabilities in binary packages. However debsecan should give you this
information (I think).
HTH.
Cheers,
Stefan
More information about the Secure-testing-team
mailing list