funsec mailing list archives

Re: Critical JavaScript Flaw Hits Firefox

From: Jordan Wiens <numatrix () ufl edu>
Date: Mon, 26 Feb 2007 16:50:34 -0500

Reed Loden wrote:

On Mon, 26 Feb 2007 20:28:38 GMT
"Fergie" <fergdawg () netzero net> wrote:

It looks like they _may_ have updated this article, since I didn't
see this when I originally read it:

"The disclosure comes on the same day that Mozilla released an
update for Firefox, which does not address the JavaScript flaw."


Well, that's still wrong if they are referring to
https://bugzilla.mozilla.org/show_bug.cgi?id=371321, as it _was_ fixed
in the latest release. I don't see another Michal Zalewski bug that this
could be referring to, so I think this is the correct bug as regards to
the article.

Yup, looks like we were both right. That was the bug in question, andyes, it was already fixed (though not intentionally).


http://securitywatch.eweek.com/flaws/critical_firefox_flaw_accidentally_fixed.html

--
Jordan Wiens, CISSP
UF Network Security Engineer
(352)392-2061


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Critical JavaScript Flaw Hits Firefox Fergie (Feb 26)
- Re: Critical JavaScript Flaw Hits Firefox Jordan Wiens (Feb 26)
- Re: Critical JavaScript Flaw Hits Firefox Reed Loden (Feb 26)
  - Re: Critical JavaScript Flaw Hits Firefox Jordan Wiens (Feb 26)
- <Possible follow-ups>
- Re: Critical JavaScript Flaw Hits Firefox Fergie (Feb 26)
  - Re: Critical JavaScript Flaw Hits Firefox Reed Loden (Feb 26)
    - Re: Critical JavaScript Flaw Hits Firefox Jordan Wiens (Feb 26)