Very old bug fixes for Mozilla 1.7 on Solaris

While I was looking around for some Java vulnerabilities, I was searching through Sun's site. I instead found this cumulative advisory (with this sparc or this x86 patch) for Mozilla 1.7 on Solaris 8, 9, and 10. The CVEs that are addressed are CVE-2006-1728, CVE-2006-2777, CVE-2006-2778, CVE-2006-3804, CVE-2006-3806, CVE-2006-3807. You can tell right away from the first low CVE number that the first bug is quite old. It appears to actually be from April of 2006. This patch was released January 5th. Shame on you Sun. This is probably why it's a good thing that Mozilla can check for its own updates.