Re: Security status of mozilla-* packages

2006-04-20 Thread Alexander Sack
On Thu, Apr 20, 2006 at 02:33:56PM +0200, Holger Mense wrote: > >How far are these issues affected by the Debian packages? Will there be a > >security release for the current packages to fix them? > > I forgot to clarify, that I am explicit asking for Debian Sarge. Builds for plain old mozilla in

Re: Debian Kernel security status?

2006-04-20 Thread Jan Luehr
Hello, Am Donnerstag, 20. April 2006 09:28 schrieb Moritz Muehlenhoff: > Jan Luehr wrote: > > Therefore I suspect, that the debian kernel do have some security flaws, > > fixed in mainline kernel months ago. Am I wrong here? > > The current Sarge kernels have everything fixed (except some issues,

Re: Security status of mozilla-* packages

2006-04-20 Thread James Davis
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Holger Mense wrote: > the Mozilla team has recently released new versions of Firefox, Mozilla > Suite, Thunderbird, which also fix several security issues > (http://www.mozilla.org/projects/security/known-vulnerabilities.html) > > How far are these i

Re: Security status of mozilla-* packages

2006-04-20 Thread Holger Mense
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, 20 Apr 2006, Holger Mense wrote: Hi again, the Mozilla team has recently released new versions of Firefox, Mozilla Suite, Thunderbird, which also fix several security issues (http://www.mozilla.org/projects/security/known-vulnerabilities.ht

Re: Debian Kernel security status?

2006-04-20 Thread Moritz Muehlenhoff
Jan Luehr wrote: > Therefore I suspect, that the debian kernel do have some security flaws, > fixed > in mainline kernel months ago. Am I wrong here? The current Sarge kernels have everything fixed (except some issues, which were intentionally ignored). Since then a few new vulnerabilities have

Re: Security status of mozilla-* packages

2006-04-20 Thread Loïc Minier
On Thu, Apr 20, 2006, Holger Mense wrote: > How far are these issues affected by the Debian packages? Will there be a > security release for the current packages to fix them? You might be interested in these threads: http://lists.alioth.debian.org/pipermail/pkg-mozilla-maintainers/2006-Apri

Security status of mozilla-* packages

2006-04-20 Thread Holger Mense
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, the Mozilla team has recently released new versions of Firefox, Mozilla Suite, Thunderbird, which also fix several security issues (http://www.mozilla.org/projects/security/known-vulnerabilities.html) How far are these issues affected by the

Re: Debian Kernel security status?

2006-04-20 Thread dann frazier
On Wed, Apr 19, 2006 at 04:50:27PM +0200, Jan Luehr wrote: > Hello, > > looking at the recent vanilla changes, there seem to be a rather rapid > development at the moment ;-) and I've to confess, that I lost the overview, > what sec-holes do affect debian and which don't. > > I was frightend re