[Secure-testing-commits] r13250 - data/CVE
Giuseppe Iuculano
derevko-guest at alioth.debian.org
Mon Nov 9 18:24:16 UTC 2009
Author: derevko-guest
Date: 2009-11-09 18:24:16 +0000 (Mon, 09 Nov 2009)
New Revision: 13250
Modified:
data/CVE/list
Log:
CVE-2009-3165 fixed
CVE-2009-3371: kompozer shares the browser engine with Firefox, but JavaScript is not enabled
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-11-09 15:03:43 UTC (rev 13249)
+++ data/CVE/list 2009-11-09 18:24:16 UTC (rev 13250)
@@ -1303,7 +1303,8 @@
- icedove <unfixed> (bug #555313)
- iceweasel 3.5.4-1
- xulrunner 1.9.1.4-1
- - kompozer <unfixed> (bug #555326)
+ - kompozer <unfixed> (unimportant; bug #555326)
+ NOTE: kompozer shares the browser engine with Firefox, but JavaScript is not enabled
CVE-2009-3370 (Mozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote ...)
{DSA-1922-1}
- xulrunner 1.9.1.4-1
@@ -1794,7 +1795,7 @@
TODO: check when 3.4.x will be uploaded in unstable
CVE-2009-3165 (SQL injection vulnerability in the Bug.create WebService function in ...)
{DSA-1913-1}
- - bugzilla <unfixed> (low; bug #547132)
+ - bugzilla 3.2.5.0-1 (low; bug #547132)
[etch] - bugzilla <not-affected> (Vulnerable code not present)
NOTE: Introduced in 2.23.4
CVE-2008-7220 (Unspecified vulnerability in Prototype JavaScript framework ...)
More information about the Secure-testing-commits
mailing list