Date: Wed, 28 Nov 2007 13:31:55 -0500 From: Joe Marcus Clarke <marcus@marcuscom.com> To: Jeremy Messenger <mezz7@cox.net> Cc: d@delphij.net, freebsd-gnome@freebsd.org, portmgr@freebsd.org Subject: Re: [PATCH] Update firefox to 2.0.0.10 Message-ID: <474DB41B.7010901@marcuscom.com> In-Reply-To: <op.t2ih041u9aq2h7@mezz.mezzweb.com> References: <474C993B.4060706@delphij.net> <1196233491.75142.15.camel@shumai.marcuscom.com> <op.t2ih041u9aq2h7@mezz.mezzweb.com>
next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jeremy Messenger wrote: > On Wed, 28 Nov 2007 01:04:51 -0600, Joe Marcus Clarke > <marcus@marcuscom.com> wrote: > >> >> On Tue, 2007-11-27 at 14:24 -0800, Xin LI wrote: >>> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> Hi, >>> >>> Here is a patch that updates firefox to 2.0.0.10 to address >>> CVE-2007-5959. >> >> Approved. > > Can you hold on this one? It looks like 2.0.0.10 break more things than > it fixes. I saw this page: > > http://www.neowin.net/news/main/07/11/28/firefox-20010-gaffe-prompts-quick-fix > > https://bugzilla.mozilla.org/show_bug.cgi?id=405584 > > One of us will have to dig to find patch or we can create security patch > instead update it to 2.0.0.10. Looks like this should fix it. Can someone run a quick test? I'll try and get to it myself. https://bugzilla.mozilla.org/attachment.cgi?id=284556 Joe > > Cheers, > Mezz > >> Joe > > - -- PGP Key : http://www.marcuscom.com/pgp.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHTbP1b2iPiv4Uz4cRAqO2AJ9CQJ1tz9a8PF6iibMKUhYGM+4xVwCgnjii +uyvTotHAcRtjbSGaWaB9m0= =IUv5 -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?474DB41B.7010901>