[Secure-testing-commits] r9902 - data/CVE

thijs at alioth.debian.org thijs at alioth.debian.org
Mon Sep 29 18:30:45 UTC 2008 

Author: thijs
Date: 2008-09-29 18:30:44 +0000 (Mon, 29 Sep 2008)
New Revision: 9902

Modified:
   data/CVE/list
Log:
number of new Mozilla issues labeled and added xulrunner fixed info, needs more
triaging


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-09-29 18:09:06 UTC (rev 9901)
+++ data/CVE/list	2008-09-29 18:30:44 UTC (rev 9902)
@@ -265,31 +265,42 @@
 	NOT-FOR-US: phsBlog
 CVE-2008-4071 (A certain ActiveX control in Adobe Acrobat 9, when used with Microsoft ...)
 	NOT-FOR-US: Microsoft
-CVE-2008-4070
+CVE-2008-4070 [mfsa2008-46 Heap overflow when canceling newsgroup message]
 	RESERVED
-CVE-2008-4069
+CVE-2008-4069 [mfsa2008-45 XBM image uninitialized memory reading]
 	RESERVED
-CVE-2008-4068
+CVE-2008-4068 [mfsa2008-44 resource: traversal vulnerabilities]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4067
+CVE-2008-4067 [mfsa2008-44 resource: traversal vulnerabilities]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4066
+CVE-2008-4066 [mfsa2008-43 chars stripped from JavaScript before execution]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4065
+CVE-2008-4065 [mfsa2008-43 chars stripped from JavaScript before execution]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4064
+CVE-2008-4064 [mfsa2008-42 Crashes with evidence of memory corruption]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4063
+CVE-2008-4063 [mfsa2008-42 Crashes with evidence of memory corruption]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4062
+CVE-2008-4062 [mfsa2008-42 Crashes with evidence of memory corruption]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4061
+CVE-2008-4061 [mfsa2008-42 Crashes with evidence of memory corruption]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4060
+CVE-2008-4060 [mfsa2008-41 Privilege escalation via XPCnativeWrapper]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4059
+CVE-2008-4059 [mfsa2008-41 Privilege escalation via XPCnativeWrapper]
+	- xulrunner 1.9.0.3-1
 	RESERVED
-CVE-2008-4058
+CVE-2008-4058 [mfsa2008-41 Privilege escalation via XPCnativeWrapper]
+	- xulrunner 1.9.0.3-1
 	RESERVED
 CVE-2008-4057 (Unspecified vulnerability in Objective Development Sharity 3 before ...)
 	NOT-FOR-US: Objective Development Sharity
@@ -811,8 +822,9 @@
 	NOT-FOR-US: Solaris
 CVE-2008-3838 (Unspecified vulnerability in the NFS Remote Procedure Calls (RPC) ...)
 	NOT-FOR-US: Solaris
-CVE-2008-3837
+CVE-2008-3837 [mfsa2008-40 click-hijacking]
 	RESERVED
+	- xulrunner 1.9.0.3-1
 CVE-2008-3836
 	RESERVED
 CVE-2008-3835

More information about the Secure-testing-commits mailing list