[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: OT Firefox security leak: bogus or genuine?



On 21:42, Tue 10 May 05, Jonathan Kaye wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> The BBC website is now carrying a story about an alleged security
> vulnerability of Firefox.
> http://news.bbc.co.uk/1/hi/technology/4532127.stm
> I checked on the "From other news sites" section of the article for
> possible sources and found this.
> http://software.silicon.com/security/0,39024655,39130254,00.htm
> I sound want to sound overly suspicious but the silicon article is
> straddled by a big advert for Windows XP SP2. The article also says,
> "Mozilla has changed its update web service and advises people to
> temporarily disable JavaScript.".
> I've just has a look around the Mozilla Firefox site and can't find
> anything about it; not even in the firefox forums where you'd expect it
> to feature prominently.
> Has anyone heard anything about this?
> Cheers,
> Jonathan
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.5 (GNU/Linux)
> 
> iD8DBQFCgQ6r64+f0AXUe+4RArDLAKCEBLxDa+9+TKiJYm8sYvyXguJRDACfUU0M
> k4BNs9Z9q1JVf3GE+kWyO3I=
> =LwQt
> -----END PGP SIGNATURE-----

Mozilla has already had a fix for it, check your local
sites, Firefox 1.04 rc is now out.  Some claim it as a RC but I
assume they will push this pretty fast.

http://lwn.net/Articles/135342/

This is an example of how fast Open Source works to fix
security problems. Like the article points out, I hope all
the news agencies pick it up as fast as they did the orginal
problem.

Gnu_Raiz



Reply to: