[Secure-testing-commits] r13531 - data/CVE

[Kees Cook]

Author: kees
Date: 2009-12-12 21:04:14 +0000 (Sat, 12 Dec 2009)
New Revision: 13531

Modified:
   data/CVE/list
Log:
Flip back Google Chrome stuff, as it is in itp.  Correctly mark up file issue from OSX

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-12-12 20:50:54 UTC (rev 13530)
+++ data/CVE/list	2009-12-12 21:04:14 UTC (rev 13531)
@@ -832,7 +832,7 @@
 CVE-2009-3935 (Multiple unspecified vulnerabilities in the Advanced Management Module ...)
 	NOT-FOR-US: IBM BladeCenter
 CVE-2009-3934 (The WebFrameLoaderClient::dispatchDidChangeLocationWithinPage function ...)
-	NOT-FOR-US: Google Chrome
+	TODO: check
 CVE-2009-3933 (WebKit before r50173, as used in Google Chrome before 3.0.195.32, ...)
 	- webkit <not-affected> (chromium-specific issue in their timer)
 	- qt4-x11 <not-affected> (chromium-specific issue in their timer)
@@ -840,9 +840,9 @@
 	- kde4libs <not-affected> (chromium-specific issue in their timer)
 	- chromium-browser <itp> (low; bug #520324)
 CVE-2009-3932 (The Gears plugin in Google Chrome before 3.0.195.32 allows ...)
-	NOT-FOR-US: Google Chrome
+	TODO: check
 CVE-2009-3931 (Incomplete blacklist vulnerability in browser/download/download_exe.cc ...)
-	NOT-FOR-US: Google Chrome
+	TODO: check
 CVE-2009-3930 (Multiple integer overflows in Christos Zoulas file before 5.02 allow ...)
 	- file 5.03-1
 	[lenny] - file <not-affected>
@@ -4311,7 +4311,9 @@
 CVE-2009-2831 (Dictionary in Apple Mac OS X 10.5.8 allows remote attackers to create ...)
 	NOT-FOR-US: Apple Mac OS X
 CVE-2009-2830 (Multiple buffer overflows in Christos Zoulas file before 5.03 in Apple ...)
-	NOT-FOR-US: Apple Mac OS X
+	- file 5.03-1
+	[lenny] - file <not-affected>
+	[etch] - file <not-affected>
 CVE-2009-2829 (Event Monitor in Apple Mac OS X 10.5.8 does not properly handle ...)
 	NOT-FOR-US: Apple Mac OS X
 CVE-2009-2828 (The server in DirectoryService in Apple Mac OS X 10.5.8 allows remote ...)