[Secure-testing-commits] r4788 - data/CVE

[Moritz Muehlenhoff]

Author: jmm-guest
Date: 2006-10-01 08:48:24 +0000 (Sun, 01 Oct 2006)
New Revision: 4788

Modified:
   data/CVE/list
Log:
mark two mozilla non-issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-10-01 08:31:52 UTC (rev 4787)
+++ data/CVE/list	2006-10-01 08:48:24 UTC (rev 4788)
@@ -13621,12 +13621,10 @@
 	NOT-FOR-US: Safari
 	NOTE: Not reproducible with konqueror 4:3.4.2-4.
 CVE-2005-3896 (Mozilla allows remote attackers to cause a denial of service (CPU ...)
-	NOTE: maintainers don't believe it is a security bug and can't reproduce
-	NOTE: after 1.5.dfsg-1
-	- firefox 1.5.dfsg-1 (bug #340283; bug #345469; low)
-	NOTE: mozilla-firefox became a transitional package so not vulnerable
-	- mozilla-firefox 1.4.99+1.5rc3.dfsg-2 (bug #340283; bug #345469; low)
-	- mozilla <unfixed> (bug #340282; low)
+	NOTE: maintainers don't believe it is a security bug and can't reproduce after 1.5.dfsg-1
+	- firefox 1.5.dfsg-1 (bug #340283; bug #345469; unimportant)
+	- mozilla-firefox 1.4.99+1.5rc3.dfsg-2 (bug #340283; bug #345469; unimportant)
+	- mozilla <unfixed> (bug #340282; unimportant)
 CVE-2005-3895 (Open Ticket Request System (OTRS) 1.0.0 through 1.3.2 and 2.0.0 ...)
 	{DSA-973-1}
 	- otrs 2.0.4p01-1 (bug #340352; medium)
@@ -18448,9 +18446,9 @@
 CVE-2005-2415 (Multiple SQL injection vulnerabilities in Contrexx before 1.0.5 allow ...)
 	NOT-FOR-US: Contrexx
 CVE-2005-2414 (Race condition in the xpcom library, as used by web browsers such as ...)
-	- mozilla-firefox (bug #327549; low)
-	- mozilla (bug #327550; low)
-	TODO: check more Mozilla-based browsers
+	- mozilla-firefox (bug #327549; unimportant)
+	- mozilla (bug #327550; unimportant)
+	NOTE: The turned out to be non-exploitable
 CVE-2005-2413 (PHP remote file inclusion vulnerability in apa_phpinclude.inc.php in ...)
 	NOT-FOR-US: Atomic Photo Album
 CVE-2005-2412 (PHP remote file inclusion vulnerability in block.php in PHP FirstPost ...)