[Secure-testing-commits] r6623 - data/CVE

stef-guest at alioth.debian.org stef-guest at alioth.debian.org
Mon Sep 17 19:31:36 UTC 2007 

Author: stef-guest
Date: 2007-09-17 19:31:35 +0000 (Mon, 17 Sep 2007)
New Revision: 6623

Modified:
   data/CVE/list
Log:
new issues: linux, icefoo

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-09-17 18:55:03 UTC (rev 6622)
+++ data/CVE/list	2007-09-17 19:31:35 UTC (rev 6623)
@@ -33,7 +33,10 @@
 CVE-2007-4880
 	RESERVED
 CVE-2007-4879 (Mozilla Firefox 2.0.x can automatically install TLS client ...)
-	TODO: check
+	- iceweasel <unfixed>
+	- iceapce <unfixed>
+	- mozilla-firefox <removed>
+	- mozilla <removed>
 CVE-2007-4878
 	RESERVED
 CVE-2007-4877
@@ -114,8 +117,12 @@
 CVE-2007-4842 (Directory traversal vulnerability in Enriva Development Magellan ...)
 	NOT-FOR-US: Magellan Explorer
 CVE-2007-4841 (Mozilla Firefox 2.0.0.6 allows remote attackers to execute arbitrary ...)
-	TODO: check
+	- iceweasel <unfixed>
+	- iceapce <unfixed>
+	- mozilla-firefox <removed>
+	- mozilla <removed>
 	NOTE: this vulnerability is unspecified
+	NOTE: likely affects only windows and Mac OS
 CVE-2007-4840 (PHP 5.2.4 and earlier allows context-dependent attackers to cause a ...)
 	- php5 <unfixed> (low; bug #442247)
 	- php4 <unfixed> (low; bug #442250)
@@ -2333,7 +2340,7 @@
 	- icedove <unfixed> (medium)
 CVE-2007-3843 (The Linux kernel before 2.6.23-rc1 checks the wrong global variable ...)
 	{DSA-1363-1}
-	TODO: check
+	- linux-2.6 <unfixed>
 CVE-2007-3842 (Cross-site scripting (XSS) vulnerability in the 8e6 R3000 Enterprise ...)
 	NOT-FOR-US: 8e6 R3000 Enterprise Filter
 CVE-2007-3841 (Unspecified vulnerability in Pidgin (formerly Gaim) 2.0.2 for Linux ...)
@@ -2576,9 +2583,9 @@
 CVE-2007-3741 (The (1) psp (aka .tub), (2) bmp, (3) pcx, and (4) psd plugins in gimp ...)
 	- gimp 2.2.16-1 (low)
 CVE-2007-3740 (The CIFS filesystem, when Unix extension support is enabled, does not ...)
-	TODO: check
+	- linux-2.6 <unfixed>
 CVE-2007-3739 (mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not ...)
-	TODO: check
+	- linux-2.6 <unfixed>
 CVE-2007-3738 (Multiple unspecified vulnerabilities in Mozilla Firefox before 2.0.0.5 ...)
 	{DSA-1339-1 DSA-1338-1 DSA-1337-1 DTSA-45-1 DTSA-47-1 DTSA-51-1}
 	- iceape 1.1.3-1 (medium)

More information about the Secure-testing-commits mailing list