[Secure-testing-commits] r14387 - data/CVE

Michael Gilbert michael.s.gilbert at gmail.com
Sat Apr 3 15:35:06 UTC 2010


On Sat,  3 Apr 2010 12:27:33 +0000 Moritz Muehlenhoff wrote:

> Author: jmm-guest
> Date: 2010-04-03 12:27:31 +0000 (Sat, 03 Apr 2010)
> New Revision: 14387
> 
> Modified:
>    data/CVE/list
> Log:
> - more webkit triage
[...]
>  CVE-2009-3384 (Multiple unspecified vulnerabilities in WebKit in Apple Safari before ...)
> -	- webkit 1.1.17-2 (medium; bug #559759)
> -	- qt4-x11 <undetermined> (bug #561760)
> -	[etch] - qt4-x11 <not-affected> (webkit support introduced in version 4.4)
> -	- kdelibs <undetermined> (bug #561765)
> -	- kde4libs <undetermined> (bug #561762)
> +	- webkit <not-affected> (Windows-specific)

hi,

i think this affects all webkits.  the code changed is in
WebCore/loader/FTPDirectoryParser.cpp.  see:

https://bugzilla.redhat.com/show_bug.cgi?id=525788
http://trac.webkit.org/changeset/48725

mike



More information about the Secure-testing-commits mailing list