Hold off on marking stable as I need to add the mork patch, sorry it will be
added first thing tomorrow morning as I am testing it right now to make sure we
do not break compilation or cause any other problems.

Comment 2 Tavis Ormandy (RETIRED) 2005-12-09 01:59:00 UTC

based on the official response here http://www.mozilla.org/security/history-
title.html and the fact that it is clearly being misrepresented as a buffer 
overflow, when it is just abusing the fact that an O(n^2) algorithm is being 
used to process the history file, this is a client DoS which is not normally 
handled by the security team.

Reassigning to mozilla team.

Aight 1.0.7-r4 is ready to be marked stable by respective archs. I have also
pushed -r2 on 1.5 so all ~arch users get the update. This was nothing more then
adding the mork patch for completeness.

Comment 4 Joshua Jackson (RETIRED) 2005-12-09 20:41:07 UTC

Just did a test of the vulnerability with the new -r4. It does allow you to
restart firefox after the code. However when the vulnerability test code runs,
firefox loses all borders, visually fickers..and kills metacity. However, with
fluxbox, this crashing of the windowmanager doesn't happen.

built as such:

 www-client/mozilla-firefox-1.0.7-r4  -debug -gnome +ipv6 -java -mozcalendar
-mozdevelop -moznoxft -mozsvg +truetype -xinerama -xprint

Will be testing with +gnome, to see if its something slightly funky there.

Comment 5 Joshua Jackson (RETIRED) 2005-12-12 21:11:04 UTC

stable on x86

Comment 6 Gustavo Zacarias (RETIRED) 2005-12-14 04:50:46 UTC

sparc stable.

Comment 7 Jose Luis Rivero (yoswink) (RETIRED) 2005-12-14 17:09:45 UTC

Stable on alpha

Stable on amd64.

Comment 9 Luca Barbato 2006-01-06 21:38:41 UTC

hansmi marked it

Comment 10 Tim Yamin (RETIRED) 2006-01-13 09:59:04 UTC

IA64 done; no other archs left, closing bug.

closing as (In reply to comment #10)
> IA64 done; no other archs left, closing bug.
> 

closing as Tim did not