[Secure-testing-commits] r12391 - data/CVE

Giuseppe Iuculano derevko-guest at alioth.debian.org
Thu Jul 23 06:07:38 UTC 2009


Author: derevko-guest
Date: 2009-07-23 06:07:36 +0000 (Thu, 23 Jul 2009)
New Revision: 12391

Modified:
   data/CVE/list
Log:
xulrunner issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-22 21:14:43 UTC (rev 12390)
+++ data/CVE/list	2009-07-23 06:07:36 UTC (rev 12391)
@@ -180,28 +180,55 @@
 	RESERVED
 CVE-2009-2473
 	RESERVED
-CVE-2009-2472
+CVE-2009-2472 [Multiple cross origin wrapper bypasses]
 	RESERVED
-CVE-2009-2471
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-40.html
+CVE-2009-2471 [setTimeout loses XPCNativeWrappers]
 	RESERVED
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-39.html
 CVE-2009-2470
 	RESERVED
-CVE-2009-2469
+CVE-2009-2469 [ Crash and remote code execution using watch and __defineSetter__ on SVG element ]
 	RESERVED
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-37.html
 CVE-2009-2468
 	RESERVED
-CVE-2009-2467
+CVE-2009-2467 [Crash and remote code execution during Flash player unloading]
 	RESERVED
-CVE-2009-2466
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-35.html
+CVE-2009-2466 [Crashes with evidence of memory corruption ]
 	RESERVED
-CVE-2009-2465
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-34.html
+CVE-2009-2465 [Crashes with evidence of memory corruption ]
 	RESERVED
-CVE-2009-2464
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-34.html
+CVE-2009-2464 [Crashes with evidence of memory corruption ]
 	RESERVED
-CVE-2009-2463
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-34.html
+CVE-2009-2463 [Crashes with evidence of memory corruption ]
 	RESERVED
-CVE-2009-2462
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-34.html
+CVE-2009-2462 [Crashes with evidence of memory corruption ]
 	RESERVED
+	- xulrunner 1.9.0.12-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-39.html
 CVE-2009-2491 (The utaudiod daemon in Sun Ray Server Software (SRSS) 4.0, when ...)
 	NOT-FOR-US: Sun Ray Server Software
 CVE-2009-2490 (Unspecified vulnerability in the utaudiod daemon in Sun Ray Server ...)




More information about the Secure-testing-commits mailing list