Bugtraq mailing list archives
[SECURITY] [DSA 2457-2] New icedove/iceweasel packages fix regression
From: Moritz Muehlenhoff <jmm () debian org>
Date: Sun, 13 May 2012 23:09:29 +0200
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2457-2 security () debian org http://www.debian.org/security/ Moritz Muehlenhoff May 13, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : iceweasel / icedove Vulnerability : several Problem type : remote Debian-specific: no CVE ID : CVE-2012-0467 CVE-2012-0470 CVE-2012-0471 CVE-2012-0477 CVE-2012-0479 The updates DSA-2457 and DSA-2458 for Iceweasel and Icedove introduced a regression, which could lead to crashes when interpreting some Javascript statements. For the stable distribution (squeeze), this problem has been fixed in version 3.5.16-15 for Iceweasel and 2.0.11-12 for Icedove. The unstable distribution (sid) is not affected. We recommend that you upgrade your iceweasel and icedove packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: debian-security-announce () lists debian org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iEYEARECAAYFAk+wItMACgkQXm3vHE4uylpELgCg6GtsxNG87TGHwtBSTS/1gSz1 nSEAn1iPiuxTAXbL6GIOKLQJJjKMsRDg =mmi4 -----END PGP SIGNATURE-----
Current thread:
- [SECURITY] [DSA 2457-2] New icedove/iceweasel packages fix regression Moritz Muehlenhoff (May 15)