Status

()

P3
normal
RESOLVED FIXED
20 years ago
16 years ago

People

(Reporter: norrisboyd, Assigned: security-bugs)

Tracking

Trunk
Points:
---
Dependency tree / graph

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [DONTTEST][rtm-])

(Reporter)

Description

20 years ago
Entering all security bugs and tasks for SeaMonkey into Buzilla for schedule
tracking.
(Reporter)

Updated

20 years ago
Blocks: 7252
(Reporter)

Updated

20 years ago
Target Milestone: M8

Updated

20 years ago
Status: NEW → ASSIGNED
Target Milestone: M8 → M10

Comment 1

20 years ago
Definitely won't get to this for M8.  Probably really an M10 thing, actually.

Updated

19 years ago
Target Milestone: M10 → M12

Comment 2

19 years ago
We should probably do at least a cursory look at this before beta

Comment 3

19 years ago
Moving to m13 because Joki seems to be distracted.
Whiteboard: [DONTTEST]
Marking [DONTTEST].

Updated

19 years ago
Target Milestone: M13 → M14

Comment 5

19 years ago
Mass-moving excess bugs to M14
Bulk moving old [donttest] code to new donttest keyword. Sorry for the spam!
Keywords: donttest

Comment 7

19 years ago
I don't think I'll be spending time on this this week so this won't be done for 
M14.
Target Milestone: M14 → M15

Comment 8

19 years ago
Bulk moving all Browser Security bugs to new Security: General component.  The 
previous Security component for Browser will be deleted.
Component: Security → Security: General

Comment 9

19 years ago
Mass-moving bugs out of M15 that I won't get to.  Will refit individual 
milestones after moving them.
Target Milestone: M15 → M16

Updated

19 years ago
QA Contact: dshea → junruh

Comment 10

19 years ago
Changing Qa contact to myself.

Comment 11

19 years ago
Moving to M17
Target Milestone: M16 → M17

Comment 12

19 years ago
This is really just a placeholder for sitting down and looking at the DOM Level 
1 and 2 api's from a security standpoint to make sure we're covering any obvious 
exploits.  Since I'm not as involved in security anymore I'm going to reassign 
this over to mstoltz.  If Mitch thinks this task has been accomplished already 
then this can be closed.  If not then it still needs to be done.  I'll probably 
be less involved in it so I'll let Mitch make the call.
Assignee: joki → mstoltz
Status: ASSIGNED → NEW
(Assignee)

Comment 13

19 years ago
Still worth taking a look, I think. Should we meet and talk these over?
Status: NEW → ASSIGNED

Comment 14

19 years ago
Assigning QA to czhang.
QA Contact: junruh → czhang
(Assignee)

Comment 15

19 years ago
I'd like to have a meeting or else launch an informal effort on this, as Vidur,
Guninski, and I continue to discover exploits in the DOM. Any suggestions on how
to attack this? Is a systematic security review feasible for PR3, or am I
dreaming?
(Assignee)

Comment 16

19 years ago
Marking nsbeta3 because it would be nice to do this soon. May not happen though, 
it looks kind of involved.
Keywords: nsbeta3
(Assignee)

Updated

18 years ago
Blocks: 26603
(Assignee)

Comment 17

18 years ago
Adding rtm keyword for security reviews.
Keywords: donttest, nsbeta3 → rtm

Comment 18

18 years ago
mstoltz, is there any way that anyone could help with this?
Whiteboard: [DONTTEST] → [DONTTEST][need info]
(Assignee)

Comment 19

18 years ago
This is ongoing and can be minus'd.

Comment 20

18 years ago
Updated QA Contact
QA Contact: czhang → junruh

Comment 21

18 years ago
PDT marking [rtm-] for this to-do list. If any serious bugs crop up as a result
of this testing, please nominate them.
Whiteboard: [DONTTEST][need info] → [DONTTEST][rtm-]

Comment 22

18 years ago
Mass changing QA to ckritzer.
QA Contact: junruh → ckritzer

Comment 23

18 years ago
Milestone 0.8 has been released. We should either resolve this bug or update its
milestone.

Updated

18 years ago
Target Milestone: M17 → ---
(Assignee)

Comment 24

18 years ago
Mass adding mozilla0.9 keyword (mass changing milestone doesn't seem to work).
Keywords: mozilla0.9
(Assignee)

Comment 25

18 years ago
Mass changing milestone to Moz1.0 - stuff targeted for late spring/early summer.
Target Milestone: --- → mozilla1.0

Updated

18 years ago
OS: Windows NT → All

Comment 26

17 years ago
Bugs targeted at mozilla1.0 without the mozilla1.0 keyword moved to mozilla1.0.1 
(you can query for this string to delete spam or retrieve the list of bugs I've 
moved)
Target Milestone: mozilla1.0 → mozilla1.0.1

Comment 27

17 years ago
Resetting Milestone (due to mass-change) and adding mozilla 1.0 keyword.
Keywords: mozilla1.0
Target Milestone: mozilla1.0.1 → ---
(Assignee)

Updated

17 years ago
Target Milestone: --- → mozilla1.0

Comment 28

17 years ago
Moving Netscape owned 0.9.9 and 1.0 bugs that don't have an nsbeta1, nsbeta1+,
topembed, topembed+, Mozilla0.9.9+ or Mozilla1.0+ keyword.  Please send any
questions or feedback about this to adt@netscape.com.  You can search for
"Moving bugs not scheduled for a project" to quickly delete this bugmail.
Target Milestone: mozilla1.0 → mozilla1.2
(Assignee)

Updated

17 years ago
Target Milestone: mozilla1.2alpha → mozilla1.2beta
(Assignee)

Comment 29

16 years ago
Clearing milestone for now.
Target Milestone: mozilla1.2beta → ---
(Assignee)

Comment 30

16 years ago
This has been covered exhaustively, marking Fixed.
Status: ASSIGNED → RESOLVED
Last Resolved: 16 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.