Re: Unpatched security flaws in GNU IceCat 38

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Unpatched security flaws in GNU IceCat 38

From:	ng0
Subject:	Re: Unpatched security flaws in GNU IceCat 38
Date:	Thu, 04 Aug 2016 12:43:23 +0000

Ricardo Wurmus <address@hidden> writes:

> Mark H Weaver <address@hidden> writes:
>
>> I'm sorry to report that GNU IceCat 38 can no longer be safely used, due
>> to critical security flaws that are believed to allow remote code
>> execution.  I was unable to backport upstream fixes from 45.3 to 38.
>>
>> Until IceCat 45.3 is available, I recommend that you use Epiphany.
>
> Thanks, Mark, for the heads-up.
>
> Since our package for Conkeror also uses IceCat under the hood I suppose
> our version of Conkeror also cannot be safely used at this point.
>
> ~~ Ricardo

This is bad news.

Should we consider the efforts and get torbrowser packaged as I wrote
about in the torbrowser thread, which is now at 45.3.0 with release
torbrowser-6.0.3 to have at least one 45.3x firefox based browser?
-- 
♥Ⓐ  ng0
Current Keys: https://we.make.ritual.n0.is/ng0.txt
For non-prism friendly talk find me on http://www.psyced.org

[Prev in Thread]

Current Thread

[Next in Thread]

Unpatched security flaws in GNU IceCat 38, Mark H Weaver, 2016/08/03
- Re: Unpatched security flaws in GNU IceCat 38, Mike Gerwitz, 2016/08/04
  - Re: Unpatched security flaws in GNU IceCat 38, Mark H Weaver, 2016/08/04
    - Re: Unpatched security flaws in GNU IceCat 38, Andreas Enge, 2016/08/04
- Re: Unpatched security flaws in GNU IceCat 38, Danny Milosavljevic, 2016/08/04
- Re: Unpatched security flaws in GNU IceCat 38, Ricardo Wurmus, 2016/08/04
  - Re: Unpatched security flaws in GNU IceCat 38, ng0 <=

Prev by Date: Re: [PATCH] gnu: tuxguitar: Update to 1.3.2.
Next by Date: Re: [PATCH] gnu: tuxguitar: Update to 1.3.2.
Previous by thread: Re: Unpatched security flaws in GNU IceCat 38
Next by thread: [PATCH] gnu: Add ola.
Index(es):
- Date
- Thread