Your message dated Fri, 28 Mar 2008 15:15:53 +0900
with message-id <[EMAIL PROTECTED]>
and subject line
has caused the Debian Bug report #415944,
regarding iceweasel: CVE-2007-1116 and its patch
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
415944: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=415944
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: iceweasel
Version: 2.0.0.3-1
Severity: normal
Tags: security, patch
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Dear iceweasel maintainer,
I saw http://security-tracker.debian.net/tracker/CVE-2007-1116
and I've checked this bug with PoC at
http://www.gnucitizen.org/projects/hscan-redux/,
iceweasel 2.0.0.3-1 is vulnerable.
And bugzilla has a patch for that. See
https://bugzilla.mozilla.org/show_bug.cgi?id=371375
I've build with that patch and re-test it, this bug is fixed.
So please apply this patch to next release.
- --
Regards,
Hideki Yamane henrich @ debian.or.jp/iijmio-mail.jp
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGAzZlIu0hy8THJksRAkXPAKCvhaFhVdrs0G0UQqdWr28keTaHiQCcDnL0
GdpaRL1fhnxZHdpKQWJn4Ws=
=bICT
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
Version: 1.1.2-1
It was fixed in upstream seamonkey 1.1.2.
see http://www.seamonkey-project.org/releases/seamonkey1.1.2/changelog
as Bug 371375 (https://bugzilla.mozilla.org/show_bug.cgi?id=371375).
--- End Message ---
