Bug 58791 (CVE-2004-0718)

Summary: VUL-0: CVE-2004-0718: backporting a security patch to mozilla 1.6
Product: [Novell Products] SUSE Security Incidents Reporter: Wolfgang Rosenauer <stark>
Component: IncidentsAssignee: Wolfgang Rosenauer <stark>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Major    
Priority: P3 - Medium CC: security-team
Version: unspecified   
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: CVSSv2:NVD:CVE-2004-0718:7.5:(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Bug Depends on:    
Bug Blocks: 58312, 58398, 58569, 58589    

Description Wolfgang Rosenauer 2004-08-13 18:04:56 UTC 
We have to provide a security fixed mozilla 1.6 package for all
SLES9 based distributions including NLD.
I've managed to get all patches back to this version but stumbled on one which
doesn't work because of API changes.

prjmgrs decided that gnome-maintainers should handle this.
I will put my current work on /work/src/done/9.1/mozilla
where all patches are applied except the one for
http://bugzilla.mozilla.org/show_bug.cgi?id=246448

That's CAN-2004-0718
Comment 1 Wolfgang Rosenauer 2004-08-16 19:07:01 UTC 
as nobody cared about this I've tried it myself and it seems to work.
Comment 2 Wolfgang Rosenauer 2004-08-17 23:40:45 UTC 
this is fixed and checked in for 9.1/SLES9/NLD