[Secure-testing-commits] r14294 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Thu Mar 18 03:47:20 UTC 2010
Author: gilbert-guest
Date: 2010-03-18 03:47:20 +0000 (Thu, 18 Mar 2010)
New Revision: 14294
Modified:
data/CVE/list
Log:
pubsub note refresh
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-03-18 03:40:49 UTC (rev 14293)
+++ data/CVE/list 2010-03-18 03:47:20 UTC (rev 14294)
@@ -3309,10 +3309,10 @@
CVE-2010-0045 (Apple Safari before 4.0.5 on Windows does not properly validate ...)
NOT-FOR-US: Apple Safari
CVE-2010-0044 (PubSub in Apple Safari before 4.0.5 does not properly implement use of ...)
- - libipc-pubsub-perl <undetermined> (unimportant; bug #574066)
- - libpoe-component-pubsub-perl <undetermined> (unimportant; bug #574067)
- NOTE: not enough info in apple report to check, but poor cookie handling
- NOTE: isn't important enough to worry about
+ NOT-FOR-US: Apple PubSub
+ NOTE: apple's pubsub is rss-oriented and all debian packages with pubsub
+ NOTE: components are not; hence this is very likely an issue specifically with
+ NOTE: their own code, or their wrapper code around another PubSub library
CVE-2010-0043 (ImageIO in Apple Safari before 4.0.5 on Windows allows remote ...)
NOT-FOR-US: Apple Safari
CVE-2010-0042 (ImageIO in Apple Safari before 4.0.5 on Windows does not ensure that ...)
More information about the Secure-testing-commits
mailing list