[Secure-testing-commits] r15368 - data/CVE

[Giuseppe Iuculano]

Author: iuculano
Date: 2010-09-23 16:28:14 +0000 (Thu, 23 Sep 2010)
New Revision: 15368

Modified:
   data/CVE/list
Log:
chromium/webkit issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-09-23 12:11:39 UTC (rev 15367)
+++ data/CVE/list	2010-09-23 16:28:14 UTC (rev 15368)
@@ -362,25 +362,46 @@
 CVE-2010-3418 (Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media ...)
 	NOT-FOR-US: NetArt Media Car Portal
 CVE-2010-3417 (Google Chrome before 6.0.472.59 does not prompt the user before ...)
-	TODO: check
+	- webkit <not-affected> (chromium specific)
+	- chromium-browser 6.0.472.59~r59126-1
 CVE-2010-3416 (Google Chrome before 6.0.472.59 on Linux does not properly implement ...)
-	TODO: check
+	- webkit <undetermined>
+	- chromium-browser 6.0.472.59~r59126-1
+	NOTE: https://bugs.webkit.org/show_bug.cgi?id=44960
+	NOTE: http://trac.webkit.org/changeset/66689
 CVE-2010-3415 (Google Chrome before 6.0.472.59 does not properly implement ...)
-	TODO: check
+	- webkit <undetermined>
+	- chromium-browser 6.0.472.59~r59126-1
+	NOTE: https://bugs.webkit.org/show_bug.cgi?id=45112
+	NOTE: http://trac.webkit.org/changeset/66837
+	NOTE: depends on http://trac.webkit.org/changeset/66837
+	NOTE: https://bugs.webkit.org/show_bug.cgi?id=45257
 CVE-2010-3414 (Google Chrome before 6.0.472.59 on Mac OS X does not properly ...)
-	TODO: check
+	- webkit <not-affected> (Does not affect linux)
+	- chromium-browser <not-affected> (Does not affect linux)
 CVE-2010-3413 (Unspecified vulnerability in the pop-up blocking functionality in ...)
-	TODO: check
+	- webkit <not-affected> (chromium specific)
+	- chromium-browser 6.0.472.59~r59126-1
 CVE-2010-3412 (Race condition in the console implementation in Google Chrome before ...)
-	TODO: check
+	- libv8 <unfixed> (bug #597856)
 CVE-2010-3411 (Google Chrome before 6.0.472.59 on Linux does not properly handle ...)
-	TODO: check
+	- webkit <not-affected> (chromium specific)
+	- chromium-browser 6.0.472.59~r59126-1
 CVE-2010-3410 (Use-after-free vulnerability in Google Chrome before 6.0.472.59 allows ...)
-	TODO: check
+	- webkit <undetermined>
+	- chromium-browser 6.0.472.59~r59126-1
+	NOTE: https://bugs.webkit.org/show_bug.cgi?id=43587
+	NOTE: http://trac.webkit.org/changeset/66847
 CVE-2010-3409 (Use-after-free vulnerability in Google Chrome before 6.0.472.59 allows ...)
-	TODO: check
+	- webkit <undetermined>
+	- chromium-browser 6.0.472.59~r59126-1
+	NOTE: https://bugs.webkit.org/show_bug.cgi?id=43260
+	NOTE: http://trac.webkit.org/changeset/66795
 CVE-2010-3408 (Use-after-free vulnerability in Google Chrome before 6.0.472.59 allows ...)
-	TODO: check
+	- webkit <undetermined>
+	- chromium-browser 6.0.472.59~r59126-1
+	NOTE: https://bugs.webkit.org/show_bug.cgi?id=43055
+	NOTE: http://trac.webkit.org/changeset/65692
 CVE-2010-3407 (Stack-based buffer overflow in the MailCheck821Address function in ...)
 	NOT-FOR-US: IBM Lotus Domino
 CVE-2010-3406 (Unspecified vulnerability in sa_snap in the bos.esagent fileset in IBM ...)