[Secure-testing-commits] r12782 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Thu Sep 10 13:55:13 UTC 2009 

Author: jmm-guest
Date: 2009-09-10 13:55:13 +0000 (Thu, 10 Sep 2009)
New Revision: 12782

Modified:
   data/CVE/list
Log:
new mozilla issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-09-10 09:14:18 UTC (rev 12781)
+++ data/CVE/list	2009-09-10 13:55:13 UTC (rev 12782)
@@ -75,28 +75,53 @@
 	NOT-FOR-US: Uiga Church Portal
 CVE-2009-3080
 	RESERVED
-CVE-2009-3079
+CVE-2009-3079 [Chrome privilege escalation with FeedWriter]
 	RESERVED
-CVE-2009-3078
+	- iceweasel 3.0.14-1
+	[etch] - iceweasel <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3078 [Location bar spoofing via tall line-height Unicode characters]
 	RESERVED
-CVE-2009-3077
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3077 [TreeColumns dangling pointer vulnerability]
 	RESERVED
-CVE-2009-3076
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3076 [Insufficient warning for PKCS11 module installation and removal]
 	RESERVED
-CVE-2009-3075
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+	NOTE: Huh?
+CVE-2009-3075 [Crashes with evidence of memory corruption]
 	RESERVED
-CVE-2009-3074
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3074 [Crashes with evidence of memory corruption]
 	RESERVED
-CVE-2009-3073
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3073 [Crashes with evidence of memory corruption]
 	RESERVED
-CVE-2009-3072
+	- xulrunner <not-affected> (Only affects Firefox 3.5.x)
+	[lenny] - xulrunner <not-affected> (Only affects Firefox 3.5.x)
+	[etch] - xulrunner <not-affected> (Only affects Firefox 3.5.x)
+CVE-2009-3072 [Crashes with evidence of memory corruption]
 	RESERVED
-CVE-2009-3071
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3071 [Crashes with evidence of memory corruption]
 	RESERVED
-CVE-2009-3070
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3070 [Crashes with evidence of memory corruption]
 	RESERVED
-CVE-2009-3069
+	- xulrunner 1.9.0.14-1
+	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
+CVE-2009-3069 [Crashes with evidence of memory corruption]
 	RESERVED
+	- xulrunner <not-affected> (Only affects Firefox 3.5.x)
+	[lenny] - xulrunner <not-affected> (Only affects Firefox 3.5.x)
+	[etch] - xulrunner <not-affected> (Only affects Firefox 3.5.x)
 CVE-2008-7182 (Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and ...)
 	NOT-FOR-US: Surgemail
 CVE-2008-7181 (Butterfly Organizer 2.0.0 allows remote attackers to (1) delete ...)

More information about the Secure-testing-commits mailing list