Mozilla Security Hole

Tuesday April 30th, 2002

Anonymous reports: "Grey Magic is reporting a minor security hole in Mozilla builds from at least 0.9.2 up to the current trunk and 1.0 branch. A bug has been filed in bugzilla, and will be opened to the public to view once the fix has been made. This also affects Netscape browsers from at least 6.1 on. There are no known uses of the vulnerability at this time." We'll let you know when a patch has been checked in for this.

On a side note, Grey Magic recommends that users "should move to a better performing, less buggy browser," on their vulnerability page. Looking at the open issues for it, IE clearly doesn't seem like the better choice.

UPDATE! A fix has been checked into the trunk, and has been approved for checkin to the 1.0 branch. Expect it to be in nightly builds for both branch and trunk starting tomorrow.

#94 Off topic : My Wild Guessing Tech Support story

by SubtleRebel <>

Thursday May 2nd, 2002 12:13 PM

You are replying to this message

>> Please just answer it this time or admit that you do not have an answer. > >Why?

Because you implied that you had a better alternative.

>Does the concept of someone not using a browser at all not exist in your brain?

Yes I understand that concept, but it has no relevance to your previous comments regarding using a differrent browser. You have indicated previously that you think Mozilla security is worse than other browsers, but yet you continue to refuse to divulge the names of any other browsers.

>Stop telling me there's nothing else to use, give me a reason to use >mozilla instead - this isn't politics, leave telling me the other guy >is just as bad to the politicians.

What are you responding to?

1) I have never told you that there is nothing else to use. 2) I am not trying to convince you to use Mozilla; I am trying to get you to answer a simple question. 3) I have never said that "the other guy is just as bad" at all. I have said Mozilla is the best and if you want us to believe that anyone else is better then you at least have to tell us who you are talking about.