[Secure-testing-commits] r13041 - data/CVE

Mon Oct 19 17:41:12 UTC 2009

Author: gilbert-guest
Date: 2009-10-19 17:41:12 +0000 (Mon, 19 Oct 2009)
New Revision: 13041

Modified:
   data/CVE/list
Log:
marked fixed versions for some xulrunner/iceape issues that were still
being tracked as open

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-10-19 17:26:55 UTC (rev 13040)
+++ data/CVE/list	2009-10-19 17:41:12 UTC (rev 13041)
@@ -19496,6 +19496,8 @@
 CVE-2008-2933 (Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '|' ...)
 	{DSA-1697-1 DSA-1615-1 DSA-1614-1}
 	- iceweasel 3.0.1-1 (low)
+	- xulrunner 1.9.0.1-1
+	- iceape 1.1.12-1
 CVE-2008-2932 (Heap-based buffer overflow in Red Hat adminutil 1.1.6 allows remote ...)
 	NOT-FOR-US: Red Hat adminutil
 CVE-2008-2931 (The do_change_type function in fs/namespace.c in the Linux kernel ...)
@@ -25505,7 +25507,8 @@
 	{DSA-1506-1 DSA-1489-1 DSA-1485-2 DSA-1484-1}
 	- iceweasel 2.0.0.12-1
 	- icedove 2.0.0.12-1
-	TODO: check xulrunner and iceape
+	- xulrunner 1.8.1.13-1
+	- iceape 1.1.9-1
 CVE-2008-0415 (Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and ...)
 	{DSA-1506-1 DSA-1489-1 DSA-1485-2 DSA-1484-1}
 	- iceweasel 2.0.0.12-1
@@ -33834,6 +33837,8 @@
 CVE-2007-4041 (Multiple argument injection vulnerabilities in Mozilla Firefox 2.0.0.5 ...)
 	{DSA-1346-1 DSA-1345-1 DSA-1344-1 DTSA-51-1 DTSA-52-1 DTSA-53-1}
 	- iceweasel 2.0.0.6-1
+	- xulrunner 1.8.1.9-1
+	- iceape 1.1.5-1
 CVE-2007-4040 (Argument injection vulnerability involving Microsoft Outlook and ...)
 	NOT-FOR-US: Micrsoft Outlook
 CVE-2007-4039 (Argument injection vulnerability involving Mozilla, when certain URIs ...)


