Summary: | net-www/mozilla + mozilla-firefox: IDN Spoofing Security Issue (2005-0233) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Jean-François Brunette (RETIRED) <formula7> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED DUPLICATE | ||
Severity: | minor | CC: | centic, mozilla |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | All | ||
URL: | http://secunia.com/advisories/14163/ | ||
Whiteboard: | A4 [upstream] koon | ||
Package list: | Runtime testing required: | --- |
Description
Jean-François Brunette (RETIRED)
2005-02-07 06:39:16 UTC
Confirmed with Firefox 1.0 Mozilla please advise. We'll have to wait for Mozilla to issue new versions. I didn't find any open bug (yet) on Mozilla bugzie. Note that the "disable IDN" workaround seems to be buggy: http://it.slashdot.org/comments.pl?sid=138568&cid=11596841 CAN-2005-0238 for Epiphany firefox 1.0.1 with this stuff fixed is out.. |