[Secure-testing-commits] r482 - sarge-checks/CAN

Thu, 24 Feb 2005 19:13:27 +0100

Author: micah
Date: 2005-02-24 19:13:23 +0100 (Thu, 24 Feb 2005)
New Revision: 482

Modified:
   sarge-checks/CAN/list
Log:
Did some research on some mozilla cookie bugs, don't look
like they will be fixed any time soon.


Modified: sarge-checks/CAN/list
===================================================================

--- sarge-checks/CAN/list	2005-02-24 06:41:04 UTC (rev 481)
+++ sarge-checks/CAN/list	2005-02-24 18:13:23 UTC (rev 482)
@@ -3052,9 +3052,15 @@
 	NOTE: not-for-us (Opera)
 CAN-2004-0871 (Mozilla does not prevent cookies that are sent over an insecure ...)
 	NOTE: upstream knows about the problem, no fix expected
+	NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=252342
+	NOTE: http://www.securitytracker.com/alerts/2004/Sep/1011331.html
+	NOTE: fix doesn't look likely any time soon
 	TODO: followup
 CAN-2004-0870 (KDE Konqueror does not prevent cookies that are sent over an insecure ...)
 	NOTE: upstream knows about the problem, no fix expected
+	NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=252342
+	NOTE: http://www.securitytracker.com/alerts/2004/Sep/1011331.html
+	NOTE: fix doesn't look likely any time soon
 	TODO: followup
 CAN-2004-0869 (Internet Explorer does not prevent cookies that are sent over an ...)
 	NOTE: not-for-us (MSIE)



