[Secure-testing-commits] r15676 - data/CVE

Moritz Muehlenhoff jmm-guest at alioth.debian.org
Fri Dec 10 08:05:37 UTC 2010 

Author: jmm-guest
Date: 2010-12-10 08:05:35 +0000 (Fri, 10 Dec 2010)
New Revision: 15676

Modified:
   data/CVE/list
Log:
new mozilla issues
tomcat fixed
yui fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-12-10 05:03:21 UTC (rev 15675)
+++ data/CVE/list	2010-12-10 08:05:35 UTC (rev 15676)
@@ -769,11 +769,11 @@
 CVE-2010-4210 (The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x ...)
 	TODO: check
 CVE-2010-4209 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
-	- yui <unfixed> (bug #603513)
+	- yui 2.8.2r1~squeeze-1 (bug #603513)
 CVE-2010-4208 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
-	- yui <unfixed> (bug #603513)
+	- yui 2.8.2r1~squeeze-1 (bug #603513)
 CVE-2010-4207 (Cross-site scripting (XSS) vulnerability in the Flash component ...)
-	- yui <unfixed> (bug #603513)
+	- yui 2.8.2r1~squeeze-1 (bug #603513)
 CVE-2010-4206 (Google Chrome before 7.0.517.44 accesses memory at an out-of-bounds ...)
 	- webkit <undetermined>
 	- chromium-browser 6.0.472.63~r59945-2
@@ -869,7 +869,7 @@
 CVE-2010-4173 (The default configuration of libsdp.conf in libsdp 1.1.104 and earlier ...)
 	- libsdp 1.1.99-2.1 (bug #603841)
 CVE-2010-4172 (Multiple cross-site scripting (XSS) vulnerabilities in the Manager ...)
-	- tomcat6 <unfixed> (bug #606388)
+	- tomcat6 6.0.28-9 (bug #606388)
 CVE-2010-4171 (The staprun runtime tool in SystemTap 1.3 does not verify that a ...)
 	- systemtap 1.2-3 (bug #603946)
 CVE-2010-4170 (The staprun runtime tool in SystemTap 1.3 does not properly clear the ...)
@@ -1852,30 +1852,90 @@
 	[lenny] - dovecot <not-affected> (Only affects 1.2.x)
 CVE-2010-3778
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3777
 	RESERVED
 CVE-2010-3776
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3775
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3774
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3773
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3772
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3771
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3770
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3769
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3768
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3767
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3766
 	RESERVED
+	- xulrunner <removed>
+	- iceweasel 3.5.16-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape 2.0.11-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-3765 (Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, ...)
 	{DSA-2124-1}
 	- xulrunner <removed>

More information about the Secure-testing-commits mailing list