[Secure-testing-commits] r5496 - data/CVE
Stefan Fritsch
stef-guest at alioth.debian.org
Wed Feb 28 20:43:55 UTC 2007
Author: stef-guest
Date: 2007-02-28 21:43:52 +0100 (Wed, 28 Feb 2007)
New Revision: 5496
Modified:
data/CVE/list
Log:
CVE-2007-1116 affects iceape too
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-02-28 20:19:48 UTC (rev 5495)
+++ data/CVE/list 2007-02-28 20:43:52 UTC (rev 5496)
@@ -88,6 +88,10 @@
NOT-FOR-US: Microsoft Office
CVE-2007-1116 (The CheckLoadURI function in Mozilla Firefox 1.8 lists the about: URI ...)
- iceweasel <unfixed> (medium)
+ - iceape <unfixed> (medium)
+ NOTE: according to a blog comment at http://www.gnucitizen.org/projects/hscan-redux/,
+ NOTE: older mozillas are not vulnerable
+ TODO: this should be checked
CVE-2007-1115 (The child frames in Opera 9 inherit the default charset from the ...)
NOT-FOR-US: Opera
CVE-2007-1114 (The child frames in Microsoft Internet Explorer 7 inherit the default ...)
More information about the Secure-testing-commits
mailing list