[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DSA 1704-1] New xulrunner packages fix several vulnerabilities

On Wed, 14 Jan 2009 21:28:56 +0100
Steffen Joeris <white@debian.org> wrote:

> Debian Security Advisory DSA-1704                    security@debian.org
> http://www.debian.org/security/                           Steffen Joeris
> January 14, 2009                      http://www.debian.org/security/faq
> - ------------------------------------------------------------------------
> 
> Package        : xulrunner
> Vulnerability  : several vulnerabilities
> Problem type   : remote
> Debian-specific: no
> CVE ID         : CVE-2008-5500 CVE-2008-5503 CVE-2008-5506 CVE-2008-5507 CVE-2008-5508 CVE-2008-5511 CVE-2008-5512

...

> For the stable distribution (etch) these problems have been fixed in
> version 1.8.0.15~pre080614i-0etch1.
> 
> For the testing distribution (lenny) and the unstable distribution (sid)
> these problems have been fixed in version 1.9.0.5-1.
> 
> We recommend that you upgrade your xulrunner packages.

On my Sid box, I only have 'xulrunner-1.9' from the official repo, and
xulrunner only from 'debian-multimedia.org'.  Shouldn't the DSA mention
'xulrunner-1.9'?

Celejar
--
mailmin.sourceforge.net - remote access via secure (OpenPGP) email
ssuds.sourceforge.net - A Simple Sudoku Solver and Generator
Reply to: