[Secure-testing-commits] r4138 - data/CVE

SALVETTI Djoumé djoume-guest at costa.debian.org
Mon Jun 5 09:04:40 UTC 2006 

Author: djoume-guest
Date: 2006-06-05 09:04:37 +0000 (Mon, 05 Jun 2006)
New Revision: 4138

Modified:
   data/CVE/list
Log:
Mozilla cleanup

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-06-04 12:15:56 UTC (rev 4137)
+++ data/CVE/list	2006-06-05 09:04:37 UTC (rev 4138)
@@ -4302,7 +4302,8 @@
 CVE-2006-0837 (IBM Tivoli Micromuse Netcool/NeuSecure 3.0.236 has world-readable ...)
 	NOT-FOR-US: Tivoli
 CVE-2006-0836 (Mozilla Thunderbird 1.5 allows user-complicit attackers to cause an ...)
-	- mozilla-thunderbird <unfixed>
+	- thunderbird <unfixed> (bug filed; low)
+	[sarge] - mozilla-thunderbird <unfixed> (bug filed; low)
 CVE-2006-0835 (SQL injection vulnerability in dropbase.php in MitriDAT Web Calendar ...)
 	NOT-FOR-US: MitriDAT Web Calendar
 CVE-2006-0834 (Uniden UIP1868P VoIP Telephone and Router has a default password of ...)
@@ -5637,27 +5638,27 @@
 	- dpkg <not-affected> (has completely different tar implementation)
 	[woody] - tar <not-affected>
 CVE-2006-0299 (The E4X implementation in Mozilla Firefox before 1.5.0.1, Thunderbird ...)
-	- mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
+	[sarge] - mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
 	- mozilla <not-affected> (E4X not implemented in Mozilla 1.7)
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
-	- mozilla-thunderbird <unfixed>
+	[sarge] - mozilla-thunderbird <not-affected> (Only 1.5 is affected)
 	- thunderbird 1.5.0.2-1
 CVE-2006-0298 (The XML parser in Mozilla Firefox before 1.5.0.1 and SeaMonkey before ...)
-	- mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
+	[sarge] - mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
 	- mozilla <not-affected> (Mozilla 1.7 is not affected)
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
-	- mozilla-thunderbird <unfixed>
+	[sarge] - mozilla-thunderbird <not-affected> (Only 1.5 is affected)
 	- thunderbird 1.5.0.2-1
 CVE-2006-0297 (Multiple integer overflows in Mozilla Firefox 1.5, Thunderbird 1.5 if ...)
-	- mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
+	[sarge] - mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
 	- mozilla <not-affected> (Mozilla 1.7 is not affected)
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
-	- mozilla-thunderbird <unfixed>
+	[sarge] - mozilla-thunderbird <not-affected> (Only 1.5 is affected)
 	- thunderbird 1.5.0.2-1
 	- xulrunner 1.8.0.1-9
 CVE-2006-0296 (The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, ...)
 	{DSA-1051-1}
-	- mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
+	[sarge] - mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
 	[sarge] - mozilla-thunderbird 1.0.2-2.sarge1.0.8
 	- mozilla <not-affected> (Mozilla 1.7 is not affected)
@@ -5665,24 +5666,23 @@
 CVE-2006-0295 (Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, ...)
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
 	[sarge] - mozilla-firefox <not-affected>
-	- mozilla-firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
-	- mozilla-thunderbird <unfixed>
+	[sarge] - mozilla-thunderbird <not-affected> (Only 1.5 is affected)
 	- thunderbird 1.5.0.2-1
 CVE-2006-0294 (Mozilla Firefox before 1.5.0.1, Thunderbird 1.5 if running Javascript ...)
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
-	- mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
-	- mozilla <not-affected> (Mozilla 1.7 is not affected)
+	[sarge] - mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
+	[sarge] - mozilla-thunderbird <not-affected> (Only 1.5 is affected)
 	- mozilla-thunderbird <unfixed>
 	- thunderbird 1.5.0.2-1
 CVE-2006-0293 (The function allocation code (js_NewFunction in jsfun.c) in Firefox ...)
 	{DSA-1051-1 DSA-1046-1}
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
-	- mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
+	[sarge] - mozilla-firefox <not-affected> (Only Firefox 1.5 is affected)
 	[sarge] - mozilla-thunderbird 1.0.2-2.sarge1.0.8
 CVE-2006-0292 (The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before ...)
 	{DSA-1051-1 DSA-1046-1 DSA-1044-1}
 	- firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
-	- mozilla-firefox 1.5.dfsg+1.5.0.1-1 (bug #351442)
+	[sarge] - mozilla-firefox 1.0.4-2sarge6
 	[sarge] - mozilla-thunderbird 1.0.2-2.sarge1.0.8
 	- thunderbird 1.5.0.2-1
 CVE-2006-0291 (Multiple unspecified vulnerabilities in Oracle Database Server ...)
@@ -9649,7 +9649,8 @@
 CVE-2005-3403 (Multiple cross-site scripting (XSS) vulnerabilities in ATutor 1.4.1 ...)
 	NOT-FOR-US: ATutor
 CVE-2005-3402 (The SMTP client in Mozilla Thunderbird 1.0.5 BETA, 1.0.7, and possibly ...)
-	- mozilla-thunderbird <unfixed> (low)
+	- thunderbird <unfixed> (bug #363714; low)
+	[sarge] - mozilla-thunderbird <unfixed> (bug #363714; low)
 CVE-2005-3401 (Multiple interpretation error in TheHacker 5.8.4.128 allows remote ...)
 	NOT-FOR-US: TheHacker
 CVE-2005-3400 (Multiple interpretation error in Fortinet 2.48.0.0 allows remote ...)

More information about the Secure-testing-commits mailing list