Last Comment Bug 752063 - Blocklist Flash versions < 10.3.183.19 / 11.2.202.235 on Intel due to 0-day
: Blocklist Flash versions < 10.3.183.19 / 11.2.202.235 on Intel due to 0-day
Status: RESOLVED FIXED
[camino-2.1.3]
:
Product: Camino Graveyard
Classification: Graveyard
Component: Plug-ins (show other bugs)
: unspecified
: x86 Mac OS X
: -- normal (vote)
: ---
Assigned To: Smokey Ardisson (offline for a while; not following bugs - do not email)
:
Mentors:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2012-05-04 15:04 PDT by Smokey Ardisson (offline for a while; not following bugs - do not email)
Modified: 2012-05-05 20:54 PDT (History)
2 users (show)
See Also:
QA Whiteboard:
Iteration: ---
Points: ---


Attachments
Does the deed (1.32 KB, patch)
2012-05-05 17:23 PDT, Smokey Ardisson (offline for a while; not following bugs - do not email)
no flags Details | Diff | Review
Does the deed, with the right versions (1.32 KB, patch)
2012-05-05 19:22 PDT, Smokey Ardisson (offline for a while; not following bugs - do not email)
no flags Details | Diff | Review

Description Smokey Ardisson (offline for a while; not following bugs - do not email) 2012-05-04 15:04:02 PDT
Stuart, today's Flash 0-day is supposedly only targeting WinIE in the wild: http://www.adobe.com/support/security/bulletins/apsb12-09.html

Should we go ahead and move the minimum versions up to the new versions anyway?  I.e., is our policy (bug 662666 comment 15 et seq) to move the version on all 0-days, or only on 0-days believed to impact Mac OS X?
Comment 1 philippe (part-time) 2012-05-04 18:21:24 PDT
I'm all in favor of blocking them - some dump comic might find a way to recycle the latest hole(s), even if it is just for the fun of it.
Comment 2 Stuart Morgan 2012-05-05 03:13:57 PDT
Since it's not clear if the vulnerability is hard to exploit for Mac, or the cases they know of just didn't happen to, let's go ahead and block it.
Comment 3 Smokey Ardisson (offline for a while; not following bugs - do not email) 2012-05-05 17:23:47 PDT
Created attachment 621357 [details] [diff] [review]
Does the deed

Per bug 688370 comment 1, there's blanket-sr=smorgan for this.  I'll land it as soon as we have a tinderbox.m.o again :P
Comment 4 Smokey Ardisson (offline for a while; not following bugs - do not email) 2012-05-05 19:22:52 PDT
Created attachment 621367 [details] [diff] [review]
Does the deed, with the right versions

Argh, that's supposed to be .19; how did I manage to get both versions wrong in this bug?  (But I got both right in flash-check.js :P )
Comment 5 Smokey Ardisson (offline for a while; not following bugs - do not email) 2012-05-05 20:54:45 PDT
http://hg.mozilla.org/camino/rev/7e142af8f588

Note You need to log in before you can comment on or make changes to this bug.