[Bug 209167] seamonkey < 1.0.5 multiple vulnerabilities; to replace Mozilla
bugzilla at redhat.com
bugzilla at redhat.com
Fri Nov 3 14:44:19 UTC 2006
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: seamonkey < 1.0.5 multiple vulnerabilities; to replace Mozilla
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=209167
------- Additional Comments From michal at harddata.com 2006-11-03 09:44 EST -------
I peeked into a spec of http://kuix.de/misc/seamonkey-1.0.5-0.4.fc4.src.rpm
from comment $5. It does not look to me that what this produces will
work as a replacement and a security update of mozilla. Results could
be installed side-by-side with an old mozilla, extras style, and do not
provide 'mozilla' named binary. This leaves all problems open as it is
not possible on FC4 and earlier to delete 'mozilla' without doing the
same with a number of other packages. Did I miss something in that spec?
A package given in
http://www.redhat.com/archives/fedora-legacy-list/2006-September/msg00019.html
may need improvents but it does not suffer from the affliction above.
It is true that replacing 'mozilla' requires new versions/recompilation
of other things (yelp for sure, thunderbird I think, maybe more) but they
use at least mozilla provided libraries and if there are security holes
there then these old versions are affected in the same way.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
More information about the Fedora-security-list
mailing list