[Secure-testing-commits] r1421 - data/CAN

Moritz Muehlenhoff jmm-guest at costa.debian.org
Sun Jul 17 10:20:40 UTC 2005 

Author: jmm-guest
Date: 2005-07-17 10:20:37 +0000 (Sun, 17 Jul 2005)
New Revision: 1421

Modified:
   data/CAN/list
Log:
Checked all security issues that affect Thunderbird.


Modified: data/CAN/list
===================================================================
--- data/CAN/list	2005-07-17 10:02:33 UTC (rev 1420)
+++ data/CAN/list	2005-07-17 10:20:37 UTC (rev 1421)
@@ -11,9 +11,11 @@
 CAN-2005-2270 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone ...)
 	- mozilla-firefox 1.0.5-1 (high)
 	- mozilla (unfixed; bug #318062; high)
+	- mozilla-thunderbird (unfixed; bug filed; high)
 CAN-2005-2269 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly verify ...)
 	- mozilla-firefox 1.0.5-1 (high)
 	- mozilla (unfixed; bug #318062; medium)
+	- mozilla-thunderbird (unfixed; bug filed; medium)
 CAN-2005-2268 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
@@ -22,9 +24,11 @@
 CAN-2005-2266 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child frame to ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
+	- mozilla-thunderbird (unfixed; bug filed; low)
 CAN-2005-2265 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote attackers ...)
 	- mozilla-firefox 1.0.5-1 (high)
 	- mozilla (unfixed; bug #318062; medium)
+	- mozilla-thunderbird (unfixed; bug filed; medium)
 CAN-2005-2264 (Firefox before 1.0.5 allows remote attackers to steal sensitive ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and Mozilla ...)
@@ -35,7 +39,7 @@
 CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, and Mozilla before ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
-	TODO: thunderbird
+	- mozilla-thunderbird (unfixed; bug filed; medium)
 CAN-2005-2260 (The browser user interface in Firefox before 1.0.5 and Mozilla before ...)
 	- mozilla-firefox 1.0.5-1 (medium)
 	- mozilla (unfixed; bug #318062; medium)
@@ -3037,6 +3041,7 @@
 CAN-2005-1532 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly ...)
 	- mozilla-firefox 1.0.4
 	- mozilla-browser 2:1.7.8
+	- mozilla-thunderbird (unfixed; bug filed; high)
 CAN-2005-1531 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly ...)
 	- mozilla-firefox 1.0.4
 	- mozilla-browser 2:1.7.8
@@ -4764,9 +4769,11 @@
 CAN-2005-1160 (The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla ...)
 	- mozilla-firefox 1.0.3-1
 	- mozilla 1.7.7-1
+	- mozilla-thunderbird (unfixed; bug filed; high)
 CAN-2005-1159 (The native implementations of InstallTrigger and other functions in ...)
 	- mozilla-firefox 1.0.3-1
 	- mozilla 1.7.7-1
+	- mozilla-thunderbird (unfixed; bug filed; medium)
 CAN-2005-1158 (Multiple "missing security checks" in Firefox before 1.0.3 allow ...)
 	- mozilla-firefox 1.0.3-1
 CAN-2005-1157 (Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape 7.2 ...)
@@ -5150,6 +5157,7 @@
 CAN-2005-0989 (The find_replen function in jsstr.c in the the Javascript engine for ...)
 	- mozilla 1.7.7-1
 	- mozilla-firefox 1.0.2-3
+	- mozilla-thunderbird (unfixed; bug filed; medium)
 CAN-2005-0988 (Race condition in gzip 1.2.4, 1.3.3, and earlier, when decompressing a ...)
 	{DSA-752-1}
 	- gzip 1.3.5-10

More information about the Secure-testing-commits mailing list