Your message dated Wed, 06 Apr 2005 10:47:34 -0400
with message-id <[EMAIL PROTECTED]>
and subject line Bug#302775: fixed in mozilla-firefox 1.0.2-3
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--------------------------------------
Received: (at submit) by bugs.debian.org; 2 Apr 2005 20:52:49 +0000
>From [EMAIL PROTECTED] Sat Apr 02 12:52:49 2005
Return-path: <[EMAIL PROTECTED]>
Received: from 194.186.49.143.adsl-spb.net.rol.ru (serv.sanechka.spb.ru)
[194.186.49.143] (Debian-exim)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DHpbs-0000TR-00; Sat, 02 Apr 2005 12:52:49 -0800
Received: from sasha by serv.sanechka.spb.ru with local (Exim 4.50)
id 1DHpbk-0007Oq-Rb
for [EMAIL PROTECTED]; Sun, 03 Apr 2005 00:52:40 +0400
Date: Sun, 3 Apr 2005 00:52:40 +0400
From: "Alexandra N. Kossovsky" <[EMAIL PROTECTED]>
To: Debian Bug Tracking System <[EMAIL PROTECTED]>
Subject: mozilla-firefox: JS can access any firefox memory
Message-ID: <[EMAIL PROTECTED]>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
X-Reportbug-Version: 3.8
User-Agent: Mutt/1.5.6+20040907i
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-8.0 required=4.0 tests=BAYES_00,HAS_PACKAGE
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
Package: mozilla-firefox
Version: 1.0.2-1
Severity: grave
Tags: security patch
Justification: user security hole
https://bugzilla.mozilla.org/show_bug.cgi?id=288688
-- System Information:
Debian Release: 3.1
APT prefers testing
APT policy: (999, 'testing'), (50, 'experimental'), (50, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.8-2-686
Locale: LANG=C, LC_CTYPE=ru_RU.UTF-8 (charmap=UTF-8)
Versions of packages mozilla-firefox depends on:
ii debianutils 2.8.4 Miscellaneous utilities specific t
ii fontconfig 2.3.1-2 generic font configuration library
ii libatk1.0-0 1.8.0-4 The ATK accessibility toolkit
ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an
ii libfontconfig1 2.3.1-2 generic font configuration library
ii libfreetype6 2.1.7-2.3 FreeType 2 font engine, shared lib
ii libgcc1 1:3.4.3-6 GCC support library
ii libglib2.0-0 2.6.3-1 The GLib library of C routines
ii libgtk2.0-0 2.6.2-4 The GTK+ graphical user interface
ii libidl0 0.8.5-1 library for parsing CORBA IDL file
ii libjpeg62 6b-9 The Independent JPEG Group's JPEG
ii libkrb53 1.3.6-1 MIT Kerberos runtime libraries
ii libpango1.0-0 1.8.1-1 Layout and rendering of internatio
ii libpng12-0 1.2.8rel-1 PNG library - runtime
ii libstdc++5 1:3.3.5-8 The GNU Standard C++ Library v3
ii libx11-6 4.3.0.dfsg.1-10 X Window System protocol client li
ii libxext6 4.3.0.dfsg.1-10 X Window System miscellaneous exte
ii libxft2 2.1.2-6 FreeType-based font drawing librar
ii libxp6 4.3.0.dfsg.1-10 X Window System printing extension
ii libxt6 4.3.0.dfsg.1-10 X Toolkit Intrinsics
ii psmisc 21.5-1 Utilities that use the proc filesy
ii xlibs 4.3.0.dfsg.1-10 X Keyboard Extension (XKB) configu
ii zlib1g 1:1.2.2-3 compression library - runtime
-- no debconf information
--
Regards,
Sasha.
Alexandra N. Kossovsky, software engineer.
e-mail: [EMAIL PROTECTED]
---------------------------------------
Received: (at 302775-close) by bugs.debian.org; 6 Apr 2005 14:59:05 +0000
>From [EMAIL PROTECTED] Wed Apr 06 07:59:05 2005
Return-path: <[EMAIL PROTECTED]>
Received: from newraff.debian.org [208.185.25.31] (mail)
by spohr.debian.org with esmtp (Exim 3.35 1 (Debian))
id 1DJBzl-0001P9-00; Wed, 06 Apr 2005 07:59:05 -0700
Received: from katie by newraff.debian.org with local (Exim 3.35 1 (Debian))
id 1DJBoc-0003CW-00; Wed, 06 Apr 2005 10:47:34 -0400
From: Eric Dorland <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
X-Katie: $Revision: 1.55 $
Subject: Bug#302775: fixed in mozilla-firefox 1.0.2-3
Message-Id: <[EMAIL PROTECTED]>
Sender: Archive Administrator <[EMAIL PROTECTED]>
Date: Wed, 06 Apr 2005 10:47:34 -0400
Delivered-To: [EMAIL PROTECTED]
X-Spam-Checker-Version: SpamAssassin 2.60-bugs.debian.org_2005_01_02
(1.212-2003-09-23-exp) on spohr.debian.org
X-Spam-Status: No, hits=-6.0 required=4.0 tests=BAYES_00,HAS_BUG_NUMBER
autolearn=no version=2.60-bugs.debian.org_2005_01_02
X-Spam-Level:
X-CrossAssassin-Score: 2
Source: mozilla-firefox
Source-Version: 1.0.2-3
We believe that the bug you reported is fixed in the latest version of
mozilla-firefox, which is due to be installed in the Debian FTP archive:
mozilla-firefox-dom-inspector_1.0.2-3_i386.deb
to pool/main/m/mozilla-firefox/mozilla-firefox-dom-inspector_1.0.2-3_i386.deb
mozilla-firefox-gnome-support_1.0.2-3_i386.deb
to pool/main/m/mozilla-firefox/mozilla-firefox-gnome-support_1.0.2-3_i386.deb
mozilla-firefox_1.0.2-3.diff.gz
to pool/main/m/mozilla-firefox/mozilla-firefox_1.0.2-3.diff.gz
mozilla-firefox_1.0.2-3.dsc
to pool/main/m/mozilla-firefox/mozilla-firefox_1.0.2-3.dsc
mozilla-firefox_1.0.2-3_i386.deb
to pool/main/m/mozilla-firefox/mozilla-firefox_1.0.2-3_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Eric Dorland <[EMAIL PROTECTED]> (supplier of updated mozilla-firefox package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 6 Apr 2005 01:36:11 -0400
Source: mozilla-firefox
Binary: mozilla-firefox mozilla-firefox-gnome-support
mozilla-firefox-dom-inspector
Architecture: source i386
Version: 1.0.2-3
Distribution: unstable
Urgency: high
Maintainer: Eric Dorland <[EMAIL PROTECTED]>
Changed-By: Eric Dorland <[EMAIL PROTECTED]>
Description:
mozilla-firefox - lightweight web browser based on Mozilla
mozilla-firefox-dom-inspector - tool for inspecting the DOM of pages in
Mozilla Firefox
mozilla-firefox-gnome-support - Support for Gnome in Mozilla Firefox
Closes: 301485 302775
Changes:
mozilla-firefox (1.0.2-3) unstable; urgency=high
.
* gfx/src/freetype/nsFreeType.cpp,
netwerk/protocol/http/src/nsHttpConnectionMgr.cpp,
security/nss/lib/pki1/oiddata.h, security/nss/lib/pki1/pki1.h,
widget/src/gtk2/nsDragService.cpp: Fixes for gcc-4.0,
bz#289238. (Closes: #301485)
* js/src/jsstr.c: Fix for JS memory access security bug, patch from
bz#288688. (Closes: #302775)
Files:
731b9042353ac60d9c0180080f705504 990 web optional mozilla-firefox_1.0.2-3.dsc
ba7ce5f66754bedbd7dd34085e38fd2e 221161 web optional
mozilla-firefox_1.0.2-3.diff.gz
70b870d12cfcf6d692f4d7e3ee1096fa 8877582 web optional
mozilla-firefox_1.0.2-3_i386.deb
d4343bec03e9c73a0c162ead5e560d4e 154344 web optional
mozilla-firefox-dom-inspector_1.0.2-3_i386.deb
e13ba6b65593af580464036623ed74f6 51616 web optional
mozilla-firefox-gnome-support_1.0.2-3_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)
iD8DBQFCU/LLYemOzxbZcMYRAqUhAJ4hIoJH7bFJw4SNhkVVcmDGfH04/ACgjsYJ
1WiDV8sW6BBSBynfsUizmJ4=
=bXxh
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
