Re: [SECURITY] [DSA 1704-1] New xulrunner packages fix several vulnerabilities
On Wed, 14 Jan 2009 21:28:56 +0100
Steffen Joeris <white@debian.org> wrote:
> Debian Security Advisory DSA-1704 security@debian.org
> http://www.debian.org/security/ Steffen Joeris
> January 14, 2009 http://www.debian.org/security/faq
> - ------------------------------------------------------------------------
>
> Package : xulrunner
> Vulnerability : several vulnerabilities
> Problem type : remote
> Debian-specific: no
> CVE ID : CVE-2008-5500 CVE-2008-5503 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5511 CVE-2008-5512
...
> For the stable distribution (etch) these problems have been fixed in
> version 1.8.0.15~pre080614i-0etch1.
>
> For the testing distribution (lenny) and the unstable distribution (sid)
> these problems have been fixed in version 1.9.0.5-1.
>
> We recommend that you upgrade your xulrunner packages.
On my Sid box, I only have 'xulrunner-1.9' from the official repo, and
xulrunner only from 'debian-multimedia.org'. Shouldn't the DSA mention
'xulrunner-1.9'?
Celejar
--
mailmin.sourceforge.net - remote access via secure (OpenPGP) email
ssuds.sourceforge.net - A Simple Sudoku Solver and Generator
Reply to: