[Secure-testing-commits] r7043 - data/CVE
joeyh at alioth.debian.org
joeyh at alioth.debian.org
Sat Oct 20 21:14:08 UTC 2007
Author: joeyh
Date: 2007-10-20 21:14:08 +0000 (Sat, 20 Oct 2007)
New Revision: 7043
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-10-20 20:44:15 UTC (rev 7042)
+++ data/CVE/list 2007-10-20 21:14:08 UTC (rev 7043)
@@ -781,20 +781,22 @@
RESERVED
CVE-2007-5340
RESERVED
- {DSA-1391-1}
+ {DSA-1392-1 DSA-1391-1}
- iceweasel 2.0.0.8-1
TODO: check other ice*
CVE-2007-5339
RESERVED
- {DSA-1391-1}
+ {DSA-1392-1 DSA-1391-1}
- iceweasel 2.0.0.8-1
TODO: check other ice*
CVE-2007-5338
RESERVED
+ {DSA-1392-1}
- iceweasel 2.0.0.8-1
TODO: check other ice*
CVE-2007-5337
RESERVED
+ {DSA-1392-1}
- iceweasel 2.0.0.8-1
TODO: check other ice*
CVE-2007-5336
@@ -803,6 +805,7 @@
RESERVED
CVE-2007-5334
RESERVED
+ {DSA-1392-1}
- iceweasel 2.0.0.8-1
TODO: check other ice*
CVE-2007-5333
@@ -5116,6 +5119,7 @@
CVE-2007-3512 (Stack-based buffer overflow in Lhaca File Archiver before 1.22 allows ...)
NOT-FOR-US: Lhaca
CVE-2007-3511 (The focus handling for the onkeydown event in Mozilla Firefox 1.5.0.12 ...)
+ {DSA-1392-1}
- iceweasel 2.0.0.8-1 (bug #438873; low)
CVE-2007-3510
RESERVED
@@ -8045,6 +8049,7 @@
[lenny] - asterisk <not-affected> (vulnerable code not present)
NOTE: http://ftp.digium.com/pub/asa/ASA-2007-010.html
CVE-2007-2292 (CRLF injection vulnerability in the Digest Authentication support for ...)
+ {DSA-1392-1}
- iceweasel 2.0.0.8-1 (low)
[etch] - iceweasel <no-dsa> (Minor issue)
- firefox <removed> (low)
@@ -11024,6 +11029,7 @@
CVE-2007-1096 (Cross-site scripting (XSS) vulnerability in ps_cart.php in VirtueMart ...)
NOT-FOR-US: VirtueMart
CVE-2007-1095 (Mozilla Firefox does not properly implement JavaScript onUnload ...)
+ {DSA-1392-1}
- iceweasel 2.0.0.8-1 (low; bug #445514)
NOTE: Pending for upcoming security releases
CVE-2007-1094 (Microsoft Internet Explorer 7 allows remote attackers to cause a ...)
@@ -23068,6 +23074,7 @@
CVE-2006-2895 (Cross-site scripting (XSS) vulnerability in MediaWiki 1.6.0 up to ...)
- mediawiki <not-affected> (Affects only 1.6.0-1.6.6)
CVE-2006-2894 (Mozilla Firefox 1.5.0.4, Mozilla Suite 1.7.13, Mozilla SeaMonkey ...)
+ {DSA-1392-1}
- iceweasel 2.0.0.8-1
NOTE: There are very few scenarios, where this could be exploited
NOTE: We can probably ignore this
More information about the Secure-testing-commits
mailing list