MozillaZine

Mozilla Riddled with Fixed Security Holes

Tuesday November 5th, 2002

The Register is reporting that six Mozilla security flaws were posted to BugTraq over the weekend. The most remarkable detail about these bugs is that most of them are already fixed. In fact, only one of the flaws (reported here in September) is present in the latest stable branch and trunk releases (Mozilla 1.0.1 and 1.1 respectively), while the more recent 1.2 Beta isn't vulnerable to any of them.

UPDATE! Thanks to laszlo for pointing out the glaring typing errors in this article.


#8 No information for mozdev project owners

by bugs4hj <bugs4hj@netscape.net>

Thursday November 7th, 2002 6:16 PM

You are replying to this message

We're glad mozilla solved at least some security releated bugs since the last release, but not all. However, there is a problem. These bugs are closed, because they are security related, so not all mozdev.org project owners know about these issues. Don't you worry, we fixed them for MultiZilla, but what about the other projects? Some projects are still infected by the same bugs. It's time that mozdev project owners are informed about these bugs, afterall we make add-ons for mozilla and like to be informed about possible security risks.

/HJ