[Secure-testing-commits] r10468 - data/CVE

Sun Nov 23 21:13:45 UTC 2008

Author: jmm-guest
Date: 2008-11-23 21:13:44 +0000 (Sun, 23 Nov 2008)
New Revision: 10468

Modified:
   data/CVE/list
Log:
record latest xulrunner upload


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2008-11-23 20:30:27 UTC (rev 10467)
+++ data/CVE/list	2008-11-23 21:13:44 UTC (rev 10468)
@@ -363,31 +363,31 @@
 	- libcdaudio 0.99.12p2-7 (bug #505478)
 CVE-2008-5024 (Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 	- icedove <unfixed>
 	- iceape <unfixed>
 CVE-2008-5023 (Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 	- iceape <unfixed>
 CVE-2008-5022 (The nsXMLHttpRequest::NotifyEventListeners method in Firefox 3.x ...)
+	- xulrunner 1.9.0.4-1
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
 	- icedove <unfixed>
 	- iceape <unfixed>
 CVE-2008-5021 (nsFrameManager in Firefox 3.x before 3.0.4, Firefox 2.x before ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 	- icedove <unfixed>
 	- iceape <unfixed>
 CVE-2008-5020
 	RESERVED
 CVE-2008-5019 (The session restore feature in Mozilla Firefox 3.x before 3.0.4 and ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 CVE-2008-5018 (The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 	- icedove <unfixed>
 	- iceape <unfixed>
 CVE-2008-5017 (Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in ...)
@@ -397,7 +397,7 @@
 	- iceape <unfixed>
 CVE-2008-5016 (The layout engine in Mozilla Firefox 3.x before 3.0.4, Thunderbird 2.x ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 	- icedove <unfixed>
 	- iceape <unfixed>
 	[etch] - iceweasel <not-affected> (Doesn't affect Firefox 2.x et al)
@@ -406,7 +406,7 @@
 	[etch] - icedove <not-affected> (Doesn't affect Firefox 2.x et al)
 CVE-2008-5015 (Mozilla Firefox 3.x before 3.0.4 assigns chrome privileges to a file: ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 	[etch] - iceweasel <not-affected> (Doesn't affect Firefox 2.x)
 	[etch] - xulrunner <not-affected> (Doesn't affect Firefox 2.x)
 CVE-2008-5014 (jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before ...)
@@ -1344,6 +1344,7 @@
 CVE-2008-4583 (Insecure method vulnerability in the Chilkat FTP 2.0 ActiveX component ...)
 	NOT-FOR-US: Chilkat FTP
 CVE-2008-4582 (Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and ...)
+	- xulrunner 1.9.0.4-1
 	- iceweasel <not-affected> (Windows-specific)
 	- iceape <not-affected> (Windows-specific)
 CVE-2008-4581 (The Editor in IBM ENOVIA SmarTeam 5 before release 18 SP5, and release ...)
@@ -12969,7 +12970,7 @@
 	RESERVED
 CVE-2008-0017 (The http-index-format MIME type parser (nsDirIndexParser) in Firefox ...)
 	- iceweasel <unfixed>
-	- xulrunner <unfixed>
+	- xulrunner 1.9.0.4-1
 	- iceape <unfixed>
 CVE-2008-0016 (Stack-based buffer overflow in the URL parsing implementation in ...)
 	{DSA-1649-1}


