-
Notifications
You must be signed in to change notification settings - Fork 38
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security and patch rollup for FPR3 from ESR52 #433
Comments
Through Not relevant: Not taking: Deferred: Candidates: |
Through Not relevant: Not taking: Deferred: Candidates: |
Through
52dc0f52595d
Not relevant:
M1373222 (not in code)
M1390002 (appears to be Windows-only, we have different code also)
Not taking:
M1379539 (we don't care)
Deferred:
M1387918 https://hg.mozilla.org/releases/mozilla-esr52/rev/32eec29a85a5 This depends on an earlier deferral and we may not actually be vulnerable in the shipped configuration.
Candidates:
M1380824 https://hg.mozilla.org/releases/mozilla-esr52/rev/fbddb5cdd3c7 (to
nsEditor.cpp
)https://bugzilla.mozilla.org/show_bug.cgi?id=1390550 (we might simply take the entire updated library from ESR52 directly, or we could just use the changes in the commit if that doesn't work)
M1390980 https://hg.mozilla.org/releases/mozilla-esr52/rev/e45e21461784 (modified for ATSUI, of course)
M1376036 https://hg.mozilla.org/releases/mozilla-esr52/rev/68a444daf85b sec-moderate, but probably a good idea, and we seem to support what is necessary
M1376825 https://hg.mozilla.org/releases/mozilla-esr52/rev/eeeec9cafc4e we are probably not actually affected, but it won't hurt
M1385272 https://hg.mozilla.org/releases/mozilla-esr52/rev/d68fa12fbffc
The text was updated successfully, but these errors were encountered: