[Secure-testing-commits] r12413 - data/CVE

Luciano Bello luciano at alioth.debian.org
Sat Jul 25 15:33:19 UTC 2009


Author: luciano
Date: 2009-07-25 15:33:18 +0000 (Sat, 25 Jul 2009)
New Revision: 12413

Modified:
   data/CVE/list
Log:
CVE-2009-1724 affects to qt4-x11 and webkit (and maybe more)



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-25 14:21:45 UTC (rev 12412)
+++ data/CVE/list	2009-07-25 15:33:18 UTC (rev 12413)
@@ -2184,7 +2184,10 @@
 	NOTE: patch http://trac.webkit.org/changeset/44799/
 	NOTE: PoC https://cevans-app.appspot.com/static/webkitentityoffbyone.html
 CVE-2009-1724 (Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari ...)
-	TODO: check
+	- qt4-x11 <unfixed> (low; bug #538403)
+	- webkit <unfixed> (low; bug #538402)
+	NOTE: http://www.thespanner.co.uk/2009/06/19/minor-safari-cross-domain-bug/
+	TODO: check 
 CVE-2009-1723
 	RESERVED
 CVE-2009-1722




More information about the Secure-testing-commits mailing list