[Secure-testing-commits] r14472 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Tue Apr 13 22:12:41 UTC 2010


Author: gilbert-guest
Date: 2010-04-13 22:12:40 +0000 (Tue, 13 Apr 2010)
New Revision: 14472

Modified:
   data/CVE/list
Log:
xulrunner issue is actually in cairo

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-04-13 21:50:23 UTC (rev 14471)
+++ data/CVE/list	2010-04-13 22:12:40 UTC (rev 14472)
@@ -11708,8 +11708,9 @@
 CVE-2009-2045 (The Cisco Video Surveillance Stream Manager firmware before 5.3, as ...)
 	NOT-FOR-US: Cisco
 CVE-2009-2044 (Mozilla Firefox 3.0.10 and earlier on Linux allows remote attackers to ...)
-	- xulrunner <unfixed> (unimportant)
-	NOTE: Browser crashes not treated as security issues
+	- xulrunner <not-affected> (uses external cairo library)
+	- cairo 1.8.10-3
+	NOTE: http://cgit.freedesktop.org/cairo/commit/?id=2cf82eaf0d08e68b787bb0792da97e73d8d4ce38
 CVE-2009-2043 (nsViewManager.cpp in Mozilla Firefox 3.0.2 through 3.0.10 allows ...)
 	- xulrunner <unfixed> (unimportant)
 	NOTE: Browser crashes not treated as security issues




More information about the Secure-testing-commits mailing list