[Secure-testing-commits] r8223 - data/CVE

[nion at alioth.debian.org]

Author: nion
Date: 2008-02-26 15:41:49 +0000 (Tue, 26 Feb 2008)
New Revision: 8223

Modified:
   data/CVE/list
Log:
CVE-2008-0420 fixed in iceape 1.1.8-1, iceweasel 2.0.0.12-1
CVE-2008-0416 fixed in iceweasel 2.0.0.12-1


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-02-26 14:58:39 UTC (rev 8222)
+++ data/CVE/list	2008-02-26 15:41:49 UTC (rev 8223)
@@ -1227,8 +1227,10 @@
 CVE-2008-0421 (SQL injection vulnerability in Invision Gallery 2.0.7 and earlier ...)
 	NOT-FOR-US: Invision Gallery
 CVE-2008-0420 (modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox ...)
-	TODO: check
-	NOTE: dup? poked mitre
+	- iceape 1.1.8-1
+	- iceweasel 2.0.0.12-1
+	- icedove <unfixed>
+	TODO: Check xulrunner
 CVE-2008-0419 (Mozilla Firefox before 2.0.0.12 and SeaMonkey before 1.1.8 allows ...)
 	{DSA-1506-1 DSA-1489-1 DSA-1485-1 DSA-1484-1}
 	- iceweasel 2.0.0.12-1
@@ -1247,7 +1249,8 @@
 	- xulrunner 1.8.1.12-1
 CVE-2008-0416 (Multiple unspecified vulnerabilities in Mozilla Firefox, as used in ...)
 	{DSA-1506-1 DSA-1489-1 DSA-1485-1 DSA-1484-1}
-	TODO: check
+	- iceweasel 2.0.0.12-1
+	TODO: check xulrunner and iceape
 CVE-2008-0415 (Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and ...)
 	{DSA-1506-1 DSA-1489-1 DSA-1485-1 DSA-1484-1}
 	- iceweasel 2.0.0.12-1