[Secure-testing-commits] r14012 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Tue Feb 2 23:43:55 UTC 2010
Author: gilbert-guest
Date: 2010-02-02 23:43:55 +0000 (Tue, 02 Feb 2010)
New Revision: 14012
Modified:
data/CVE/list
Log:
more info on mozilla issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-02-02 23:39:00 UTC (rev 14011)
+++ data/CVE/list 2010-02-02 23:43:55 UTC (rev 14012)
@@ -155,12 +155,20 @@
RESERVED
CVE-2009-4630 (Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, ...)
- xulrunner <unfixed> (low)
+ [etch] - xulrunner <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
+ [lenny] - xulrunner <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
- iceape <unfixed> (low)
+ [etch] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
+ [lenny] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
NOTE: mozilla's dns prefetching leads to disclosure of the user's network location
TODO: this may be unimportant since mozilla has chosen to ignore the issue
CVE-2009-4629 (Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other ...)
- icedove <unfixed> (low)
+ [etch] - icedove <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
+ [lenny] - icedove <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
- iceape <unfixed> (low)
+ [etch] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
+ [lenny] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1)
NOTE: mozilla's dns prefetching leads to disclosure of the user's network location
TODO: this may be unimportant since mozilla has chosen to ignore the issue
CVE-2005-4885 (Unspecified vulnerability on certain Sun StorEdge 6130 (SE6130) ...)
More information about the Secure-testing-commits
mailing list