Bug 157591 - please update rawhide with firefox 1.0.4
please update rawhide with firefox 1.0.4
Product: Fedora
Classification: Fedora
Component: firefox (Show other bugs)
i686 Linux
medium Severity medium
: ---
: ---
Assigned To: Christopher Aillon
: Security
Depends On:
  Show dependency treegraph
Reported: 2005-05-12 18:46 EDT by Jason
Modified: 2007-11-30 17:11 EST (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2005-05-13 18:04:03 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Jason 2005-05-12 18:46:48 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.8) Gecko/20050511 Firefox/1.0.4

Description of problem:
Please release FC4 with firefox 1.0.4 which protects against:
MFSA 2005-44  Privilege escalation via non-DOM property overrides
MFSA 2005-43 "Wrapped" javascript: urls bypass security checks
MFSA 2005-42 Code execution via javascript: IconURL

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. install rawhide

Additional info:
Comment 1 Zuirdj 2005-05-12 21:35:36 EDT
Not only security update: I can't browse to https://addons.update.mozilla.org/
because Firefox isn't upgraded... :-)
Comment 2 Christopher Aillon 2005-05-13 18:04:03 EDT
Please don't file bugs like this.  Rawhide is "at your own risk" which doesn't
guarantee packages are always updated.  Released versions always have priority
over rawhide in the system.  Anyway, this has already been built yesterday, but
rawhide hasn't picked it up yet.  It's lagging a little bit because of the
freeze for FC4.  I think it made it into the queue for tomorrow.

Note You need to log in before you can comment on or make changes to this bug.