[asac@debian.org: Re: ffox 1.5.0.2/1.0.8 CVE-Ids,
MFSAs and Bugzilla bugs]
Mike Hommey
mh at glandium.org
Sun Apr 16 08:04:36 UTC 2006
On Sun, Apr 16, 2006 at 09:26:51AM +0200, Alexander Sack <asac at debian.org> wrote:
>
> starting with latest security version of firefox I get rejects
> applying those patches. Those that fail are:
>
> jsobj.c
* js/src/jsobj.c, js/src/jsregexp.c: Apply patches from bz#296397 to fix
the rest of CAN-2005-2270.
in 1.0.4-2sarge2 ? Well, then it was reverted and applied differently in
1.0.4-2sarge3...
> jsscript.c
Added in 1.0.4-2sarge3, but I don't know more.
> jsexn.c
Same.
1.0.4-2sarge3 is basically a 1.0.6. 1.0.4-2sarge5 is that plus some more
security patches. Your patches are against 1.0.7. There must have been
some more changes between 1.0.6 and 1.0.7 than those security patches we
applied. Maybe they're security related and we missed them...
Mike
More information about the pkg-mozilla-maintainers
mailing list