[Secure-testing-commits] r16849 - data/CVE

Giuseppe Iuculano iuculano at alioth.debian.org
Sat Jun 25 11:23:58 UTC 2011 

Author: iuculano
Date: 2011-06-25 11:23:58 +0000 (Sat, 25 Jun 2011)
New Revision: 16849

Modified:
   data/CVE/list
Log:
chromium/webkit issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-06-24 17:00:29 UTC (rev 16848)
+++ data/CVE/list	2011-06-25 11:23:58 UTC (rev 16849)
@@ -804,7 +804,9 @@
 	NOT-FOR-US: Microsoft
 CVE-2011-2342 (The DOM implementation in Google Chrome before 12.0.742.91 allows ...)
 	- chromium-browser 12.0.742.91~r87961-1
+	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
+	NOTE: http://trac.webkit.org/changeset/88071
 CVE-2011-2382 (Microsoft Internet Explorer 8 and earlier, and Internet Explorer 9 ...)
 	NOT-FOR-US: Microsoft
 CVE-2011-2332 (Google V8, as used in Google Chrome before 12.0.742.91, allows remote ...)
@@ -2155,8 +2157,10 @@
 CVE-2011-1692
 	RESERVED
 CVE-2011-1691 (The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in ...)
-	- chromium-browser <undetermined>
+	- chromium-browser 12.0.742.91~r87961-1
+	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
+	NOTE: http://trac.webkit.org/changeset/82222
 CVE-2011-1690 (Best Practical Solutions RT 3.6.0 through 3.6.10 and 3.8.0 through ...)
 	{DSA-2220-1}
 	- request-tracker3.8 3.8.10-1 (bug #622774)
@@ -2864,7 +2868,7 @@
 CVE-2011-1444 (Race condition in the sandbox launcher implementation in Google Chrome ...)
 	{DSA-2245-1}
 	- chromium-browser 11.0.696.65~r84435-1
-	- webkit <undetermined>
+	- webkit <not-affected> (chromium sandbox)
 CVE-2011-1443 (Google Chrome before 11.0.696.57 does not properly implement layering, ...)
 	- chromium-browser 11.0.696.65~r84435-1
 	[squeeze] - chromium-browser <not-affected>
@@ -2884,6 +2888,7 @@
 	{DSA-2245-1}
 	- chromium-browser 11.0.696.65~r84435-1
 	- webkit <undetermined>
+	NOTE: http://trac.webkit.org/changeset/84009
 CVE-2011-1439 (Google Chrome before 11.0.696.57 on Linux does not properly isolate ...)
 	- chromium-browser 11.0.696.65~r84435-1
 	[squeeze] - chromium-browser <no-dsa> (minor issue)

More information about the Secure-testing-commits mailing list