Closed Bug 437079 Opened 16 years ago Closed 16 years ago

Push XSS fixes to AMO production

Categories

(Infrastructure & Operations Graveyard :: WebOps: Other, task)

Product:
Infrastructure & Operations Graveyard
Component:
WebOps: Other
Platform:
All
Other
Type:
task
Priority:
Not set
Severity:
critical

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: laura, Assigned: oremj)

Details

(Keywords: wsec-xss) 

Please patch production with the patch in 
https://bugzilla.mozilla.org/show_bug.cgi?id=434521
Assignee: server-ops → thardcastle
Production updated to revision 14567.
Status: NEW → RESOLVED
Closed: 16 years ago
Resolution: --- → FIXED
reopening for the revision
Group: infra
Status: RESOLVED → REOPENED
Resolution: FIXED → ---
Assignee: thardcastle → clouserw
Status: REOPENED → NEW
I mistakenly took 14567 to include the patch, but it just rechecked out the affected file from revision 13222. Awaiting the patch to svn still.
Wil - could you create a patch against current prod so we can patch this before
Thursday to close the XSS vuln until the 3.4.3 update?
Okay, so what we're asking for is the patch from bug 434521 applied to prod so we don't have 2 extra days of vulnerability between now and Thursday.
Reassigning for comment #5
Assignee: clouserw → oremj
Done.
Status: NEW → RESOLVED
Closed: 16 years ago16 years ago
Resolution: --- → FIXED
Adding keywords to bugs for metrics, no action required.  Sorry about bugmail spam.
Keywords: wsec-xss
Component: Server Operations: Web Operations → WebOps: Other
Product: mozilla.org → Infrastructure & Operations
Product: Infrastructure & Operations → Infrastructure & Operations Graveyard
You need to log in before you can comment on or make changes to this bug.