Re: Cite for print-to-postscript exploit in Mozilla?

To: "Kevin B. McCarty" <kmccarty@princeton.edu>
Cc: debian-user@lists.debian.org, debian-security@lists.debian.org,
Subject: Re: Cite for print-to-postscript exploit in Mozilla?
From: Florian Weimer <fw@deneb.enyo.de>
Date: Sat, 10 Jul 2004 12:18:56 +0200
Message-id: <[🔎] 87vfgw17xr.fsf@deneb.enyo.de>
In-reply-to: <[🔎] 40EEA94B.30600@princeton.edu> (Kevin B. McCarty's message of "Fri, 09 Jul 2004 16:18:51 +0200")
References: <[🔎] 6284230.1089381728783.JavaMail.root@fedora.dssinc.ca> <[🔎] 40EEA94B.30600@princeton.edu>

* Kevin B. McCarty:

> I admit this last question is a bit rhetorical.  My point is that, as
> sysadmin of a physics cluster running Debian/woody on which people
> frequently look at downloaded PS files anyway, I want to know whether it
> is really worth my time to upgrade Mozilla [currently running 1.4 from
> Adrian Bunk's backports], install Xprint from unstable, and go through
> the apparently non-trivial task of getting it to work well.

1.7 incorporates some other security fixes, apparently in the area of
cross-domain scripting vulnerabilities.  So you probably should
upgrade anyway.

Reply to:

Follow-Ups:
- Re: Cite for print-to-postscript exploit in Mozilla?
  - From: "Kevin B. McCarty" <kmccarty@Princeton.EDU>

References:
- RE: Cite for print-to-postscript exploit in Mozilla?
  - From: Ian Douglas <idouglas@dssinc.ca>
- Re: Cite for print-to-postscript exploit in Mozilla?
  - From: "Kevin B. McCarty" <kmccarty@princeton.edu>

Prev by Date: Re: Mozilla/Firefox "PostScript/default" security problems
Next by Date: Re: Proposal/suggestion for security team w.r.t. published vulerabilities
Previous by thread: Re: Cite for print-to-postscript exploit in Mozilla?
Next by thread: Re: Cite for print-to-postscript exploit in Mozilla?
Index(es):
- Date
- Thread