Re: sarge security
On 06/21/2005 02:50 PM, Florian Ernst wrote:
> Hello *,
>
> On Tue, Jun 21, 2005 at 12:09:38PM -0600, yo mero wrote:
>
>>So can I ignore this :
>>http://www.infodrom.org/~joey/log/?200506142140
>>
>>as it its from the same guy who sends the security advisories
>>worried me a LOT
>
>
> According to one of the Release Managers you can ignore this, see
> <http://lists.debian.org/debian-security/2005/06/msg00098.html>.
>
> Cheers,
> Flo
It's curious that firefox 1.0.4-3 in sid has a security patch for the
frame injection spoofing bug, but there is no security release for
1.0.4-2 in sarge.
>From http://packages.qa.debian.org/m/mozilla-firefox/news/1.html :
> Fix injection spoofing, patch from bz#296850. Fixes CAN-2004-0718.
Comments?
Ralph
Reply to: