Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities

To: debian-devel@lists.debian.org
Subject: Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
From: Matthew Garrett <mgarrett@chiark.greenend.org.uk>
Date: Tue, 13 Sep 2005 14:35:18 +0100
Message-id: <[🔎] E1EFAwQ-0007PE-00@chiark.greenend.org.uk>
In-reply-to: <m1EFAK4-000ofLC@finlandia.Infodrom.North.DE>
References: <m1EFAK4-000ofLC@finlandia.Infodrom.North.DE>

(From debian-security-announce)

Martin Schulze <joey@infodrom.org> wrote:

> Several problems have been discovered in Mozilla, the we browser of
> the Mozilla suite.  Since the usual praxis of backporting apparently
> does not work for this package, this update is basically version
> 1.7.10 with the version number rolled back, and hence still named
> 1.7.8.  The Common Vulnerabilities and Exposures project identifies
> the following problems:

Hmm. Is this really a good idea? I can see that the Mozilla developers
give us no real option other than to ship a newer version, but if that's
what we're doing then changing the version number back seems a bit odd.

-- 
Matthew Garrett | mjg59-chiark.mail.debian.security.announce@srcf.ucam.org

Reply to:

Follow-Ups:
- Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
  - From: Steve Langasek <vorlon@debian.org>
- Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
  - From: Andreas Metzler <ametzler@downhill.at.eu.org>

Prev by Date: Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
Next by Date: Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
Previous by thread: Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
Next by thread: Re: [SECURITY] [DSA 810-1] New Mozilla packages fix several vulnerabilities
Index(es):
- Date
- Thread