headers
Frank Hecker | 2 May 2002 03:26
Picon
Favicon

Mozilla security vulnerability, and reporting Mozilla security bugs

Recently there have been public reports of a security vulnerability in 
the Mozilla open source web browser and Internet client. Note that a fix 
for that particular vulnerability has now been checked into the Mozilla 
source tree, will be available in new Mozilla nightly builds, and will 
be included in the Mozilla 1.0 release. For further details on the 
vulnerability and the fix please see bug report 141061 in the Mozilla 
project's bug database, as well as the related bugs 141348, 141453 and 
141551 [1]. On behalf of the Mozilla community we at mozilla.org thank 
all the people who participated in discovering, reporting, 
investigating, and fixing this bug.

We encourage people to report any and all bugs in Mozilla, including 
security-related bugs, to the Mozilla project. As a reminder for future 
bug reporters, the Mozilla project has a formal policy for handing 
reports of security vulnerabilities; this policy was created after 
extensive discussions between mozilla.org staff and the public Mozilla 
community. The main elements of this policy are as follows:

* Anyone who believes they have found a Mozilla-related security 
vulnerability can and should report it by sending email to the address 
security <at> mozilla.org.

* We may keep information in the Mozilla bug database about the 
vulnerability confidential for a limited period of time, during which 
time the vulnerability will be investigated and (if possible) a fix 
produced.

* The reporter of the vulnerability is invited to work with Mozilla 
developers to investigate and fix the vulnerability. The bug reporter 
will be granted access to the confidential information in the Mozilla
(Continue reading)

Permalink | Reply | 0 comments |
headers
Asa Dotzler | 11 May 2002 02:58
Picon
Favicon
Gravatar

mozilla.org releases Mozilla 1.0 Release Candidate 2

Today mozilla.org made available for download binaries of Mozilla 1.0 
Release Candidate 2.  RC2 will be used to gather feedback and crash data 
in preparation for Mozilla 1.0. The builds and release notes are
available at http://www.mozilla.org/releases/.
New to RC2 are fixes for about 250 bugs including security issues and 
many stability improvements. Users of older versions are encouraged to 
upgrade.

There is more info available at:
http://www.mozilla.org/
http://www.mozilla.org/releases/
http://www.mozillazine.org/

--Asa
Permalink | Reply | 0 comments |
headers
Dawn Endico | 24 May 2002 05:03
Picon
Favicon

mozilla.org releases Mozilla 1.0 Release Candidate 3

Today mozilla.org made available for download binaries of Mozilla 1.0
Release Candidate 3.  RC3 will be used to gather feedback and crash data
in preparation for Mozilla 1.0. The builds and release notes are
available at http://www.mozilla.org/releases/. New to RC3 are fixes
for about 139 bugs including fixes for plugins, usability, crashes,
and internationalization issues.

There is more info available at:
http://www.mozilla.org/
http://www.mozilla.org/releases/
http://www.mozillazine.org/
Permalink | Reply | 0 comments |

Gmane