Mailinglist Archive: opensuse-bugs (4667 mails)

< Previous Next >
[Bug 639552] VUL-0: Mozilla Firefox 3.6.8 a. o.: version 3.6.9 and 3.5.12 fixes security bug Cross-Site Scripting Attacks, Obtain Potentially Sensitive Information, and Execute Arbitrary Code (related: Thunderbird 3.1.2 Thunderbird 3.0.6 SeaMonkey 2.0.6 )
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Fri, 17 Sep 2010 07:02:06 +0000
  • Message-id: <20100917070206.5F39DCC7D2@xxxxxxxxxxxxxxxxxxxxxx>

Martin Seidler <Martin.Seidler@xxxxxx> changed:

What |Removed |Added
Resolution|DUPLICATE |
Severity|Normal |Major

--- Comment #3 from Martin Seidler <Martin.Seidler@xxxxxx> 2010-09-17 07:02:05
UTC ---
(In reply to comment #1)
thx for the report, we know. :/

*** This bug has been marked as a duplicate of bug 637303 ***
"Access Denied
You are not authorized to access bug #637303."
As the bug 637303 is hidden/privat it does not serve the warning and informing
function of a bug report. As the bug is at least for 10 days otherwise public
and even confirmed by the vendor (Mozilla) that makes not sense at all.

Openness may also be about making the user able to decide if she or he will use
a program with a confirmed security bug (but maybe without any effect in the
wild live at all?), use an other maybe not so stable version of that program or
just use an other program for that purpose (Chromium, Opera, Kmail, Evolution,

And also it is not possible to see for a user
which programs are affected
(Mozilla Firefox 3.6.8 ; Firefox 3.5.11 ; Thunderbird 3.1.2 ; Thunderbird 3.0.6
; SeaMonkey 2.0.6 ).
from the so called "bug 637303" .

So I will reopen this not hidden bug report.

And I still rate a real openSUSE security warning being appropriate to be
published at a time when it is not only of historical interest.

Configure bugmail:
------- You are receiving this mail because: -------
You are on the CC list for the bug.

< Previous Next >