From owner-freebsd-ports-bugs@FreeBSD.ORG Sun Sep 26 18:30:27 2004 Return-Path: Delivered-To: freebsd-ports-bugs@hub.freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6866616A4CE for ; Sun, 26 Sep 2004 18:30:27 +0000 (GMT) Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4008643D53 for ; Sun, 26 Sep 2004 18:30:27 +0000 (GMT) (envelope-from gnats@FreeBSD.org) Received: from freefall.freebsd.org (gnats@localhost [127.0.0.1]) i8QIUR0T057492 for ; Sun, 26 Sep 2004 18:30:27 GMT (envelope-from gnats@freefall.freebsd.org) Received: (from gnats@localhost) by freefall.freebsd.org (8.12.11/8.12.11/Submit) id i8QIURl7057485; Sun, 26 Sep 2004 18:30:27 GMT (envelope-from gnats) Resent-Date: Sun, 26 Sep 2004 18:30:27 GMT Resent-Message-Id: <200409261830.i8QIURl7057485@freefall.freebsd.org> Resent-From: FreeBSD-gnats-submit@FreeBSD.org (GNATS Filer) Resent-To: freebsd-ports-bugs@FreeBSD.org Resent-Reply-To: FreeBSD-gnats-submit@FreeBSD.org, Mats Dufberg Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 59C7D16A4CE for ; Sun, 26 Sep 2004 18:27:05 +0000 (GMT) Received: from mail.home.narnia.pp.se (as1-6-2.has.s.bonet.se [194.236.120.231]) by mx1.FreeBSD.org (Postfix) with ESMTP id 701C543D3F for ; Sun, 26 Sep 2004 18:27:04 +0000 (GMT) (envelope-from dufberg@dufberg.se) Received: from kafka.home.narnia.pp.se (kafka.home.narnia.pp.se [172.25.25.56]) by mail.home.narnia.pp.se (Postfix) with ESMTP id 868BAB887; Sun, 26 Sep 2004 20:27:03 +0200 (CEST) Message-Id: <20040926182547.A454511612@kafka.home.narnia.pp.se> Date: Sun, 26 Sep 2004 20:25:47 +0200 (CEST) From: Mats Dufberg To: FreeBSD-gnats-submit@FreeBSD.org X-Send-Pr-Version: 3.113 cc: mats@dufberg.se Subject: ports/72109: Reported vulnerability in firefox before "Firefox Preview Release" X-BeenThere: freebsd-ports-bugs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Mats Dufberg List-Id: Ports bug reports List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Sep 2004 18:30:27 -0000 >Number: 72109 >Category: ports >Synopsis: Reported vulnerability in firefox before "Firefox Preview Release" >Confidential: no >Severity: serious >Priority: high >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: update >Submitter-Id: current-users >Arrival-Date: Sun Sep 26 18:30:26 GMT 2004 >Closed-Date: >Last-Modified: >Originator: Mats Dufberg >Release: FreeBSD 5.2.1-RELEASE-p6 i386 >Organization: private >Environment: System: FreeBSD 5.2.1-RELEASE-p6 Current version of firefox in ports (firefox-0.9.3; ports:/www/firefox) is based on firefox version 0.9.3 (firefox-0.9.3-source.tar.bz2). According to information from CERT (US-CERT Technical Cyber Security Alert TA04-261A -- Multiple vulnerabilities in Mozilla products; http://www.us-cert.gov/cas/techalerts/TA04-261A.html) there are vulnerabilities in that version, which are corrected in next version of firefox, "Firefox Preview Release", which was announced 14 September 2004. >Description: >How-To-Repeat: >Fix: >Release-Note: >Audit-Trail: >Unformatted: