Hey I just spotted this:
http://article.gmane.org/gmane.linux.mandrake.security.announce/2077... which refers to the CVE number for the NSS flaw in the same style (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2408) but I was still a bit surprised since I've not seen any public patch posts here. Or did I miss that? What did the Mandriva guys apply? I couldn't find their patch.
-- / daniel.haxx.se
