Bug 220516 (CVE-2006-6505)

Summary: seamonkey < 1.0.7 multiple vulnerabilities
Product: [Other] Security Response Reporter: Ville Skyttä <ville.skytta>
Component: vulnerabilityAssignee: Kai Engert (:kaie) (inactive account) <kengert>
Status: CLOSED CURRENTRELEASE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: high Docs Contact:
Priority: high    
Version: unspecifiedCC: caillon, fedora-security-list, stransky
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: seamonkey-1.0.7-0.6.fc6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-12-23 22:54:48 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Ville Skyttä 2006-12-21 21:25:42 UTC 
Vulnerabilities reported against seamonkey < 1.0.7:

http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6497
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6498
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6499
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6500
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6501
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6502
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6503
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6504
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-6505

All FE4+ releases have < 1.0.7 at the moment.

By the way, seamonkey's CVS and package repository availability needs fixing,
the FC-5 branch in Extras CVS has been marked as dead with a comment that
seamonkey will be imported as a FC-5 (Core) update, but there's no such Core
update and the packages are in the Extras FC-5 repository.
Comment 1 Kai Engert (:kaie) (inactive account) 2006-12-23 22:54:48 UTC 
Built seamonkey-1.0.7-0.6.fc6 for FC6
and seamonkey-1.0.7-1.fc7 for Rawhide.

Regarding FC5 see also the comments in bug 219365.