[Secure-testing-commits] r5115 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Wed Dec 13 23:32:11 CET 2006


Author: jmm-guest
Date: 2006-12-13 23:32:09 +0100 (Wed, 13 Dec 2006)
New Revision: 5115

Modified:
   data/CVE/list
Log:
xulrunner updates


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-12-13 18:16:07 UTC (rev 5114)
+++ data/CVE/list	2006-12-13 22:32:09 UTC (rev 5115)
@@ -877,7 +877,8 @@
 CVE-2006-6077 (The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and ...)
 	- iceweasel <unfixed> (high)
 	- mozilla-firefox <unfixed> (high)
-	- xulrunner <unfixed> (high)
+	- xulrunner <unfixed> (medium)
+	NOTE: Epiphany affected by xulrunner
 CVE-2006-6076 (Buffer overflow in the Tape Engine (tapeeng.exe) in Computer ...)
 	NOT-FOR-US: BrightStor
 CVE-2006-6075 (Cross-site scripting (XSS) vulnerability in addpost1.asp in BaalAsp ...)
@@ -1590,7 +1591,7 @@
 	- icedove 1.5.0.8-1 (medium)
 	- mozilla <unfixed> (medium)
 	[sarge] - mozilla <not-affected> (Vulnerable code not present)
-	- xulrunner <unfixed> (high)
+	- xulrunner 1.5.0.8-1 (high)
 	- mozilla-firefox <removed>
 	- mozilla-thunderbird <removed>
 	[sarge] - mozilla <not-affected> (Vulnerable code not present)
@@ -1829,7 +1830,7 @@
 	- firefox <unfixed> (unimportant)
 	- icedove <unfixed> (unimportant)
 	- mozilla <unfixed> (unimportant)
-	- xulrunner <unfixed> (low)
+	- xulrunner <unfixed> (unimportant)
 	- mozilla-firefox <removed> (unimportant)
 	- mozilla-thunderbird <removed> (unimportant)
 CVE-2006-5632 (Cross-site scripting (XSS) vulnerability in change_pass.php in iG Shop ...)




More information about the Secure-testing-commits mailing list