[Secure-testing-commits] r1218 - sarge-checks/CAN
Moritz Muehlenhoff
jmm-guest@costa.debian.org
Fri, 10 Jun 2005 13:20:07 +0000
Author: jmm-guest
Date: 2005-06-10 13:20:05 +0000 (Fri, 10 Jun 2005)
New Revision: 1218
Modified:
sarge-checks/CAN/list
Log:
Mozillae vulnerable to frame injection again
Modified: sarge-checks/CAN/list
===================================================================
--- sarge-checks/CAN/list 2005-06-10 12:45:57 UTC (rev 1217)
+++ sarge-checks/CAN/list 2005-06-10 13:20:05 UTC (rev 1218)
@@ -8058,8 +8058,11 @@
CAN-2004-0719 (Internet Explorer for Mac 5.2.3, Internet Explorer 6 on Windows XP, ...)
NOTE: not-fos-us (Microsoft)
CAN-2004-0718 (The (1) Mozilla 1.6, (2) Firebird 0.7, (3) Firefox 0.8, and (4) ...)
- - mozilla 1.6
- - mozilla-firefox 0.8
+ NOTE: This has been fixed in mozilla-firefox 0.8 and mozilla 1.6, but recent
+ NOTE: upstream versions became vulnerable again, see
+ NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=296850
+ - mozilla (unfixed)
+ - mozilla-firefox 1.0.4-3
CAN-2004-0717 (Opera 7.51 for Windows and 7.50 for Linux does not properly prevent a ...)
NOTE: not-for-us (opera 7.50)
CAN-2004-0716 (Buffer overflow in the DCE daemon (DCED) for the DCE endpoint mapper ...)