[Secure-testing-commits] r17318 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Wed Sep 28 12:41:42 UTC 2011 

Author: jmm
Date: 2011-09-28 12:41:42 +0000 (Wed, 28 Sep 2011)
New Revision: 17318

Modified:
   data/CVE/list
Log:
more mozilla issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-09-28 12:21:47 UTC (rev 17317)
+++ data/CVE/list	2011-09-28 12:41:42 UTC (rev 17318)
@@ -1,3 +1,12 @@
+CVE-2011-XXXX [http://www.mozilla.org/security/announce/2011/mfsa2011-37.html]
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel 4.0-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
+	NOTE: Only affects firefox 3.6 code base, not 4.0 oder later
+	NOTE: This is very likely CVE-2011-2998, pinged Mozilla Sec Team
 CVE-2011-XXXX [http://www.mozilla.org/security/announce/2011/mfsa2011-45.html]
 	- xulrunner <not-affected> (Only affects Firefox >= 4)
 	- iceweasel <unfixed>
@@ -1937,18 +1946,53 @@
 	- iceape <not-affected> (Only affects Firefox >= 4)
 CVE-2011-3001
 	RESERVED
+	- xulrunner <not-affected> (Only affects Firefox >= 4)
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Only affects Firefox >= 4)
+	[squeeze] - iceweasel <not-affected> (Only affects Firefox >= 4)
+	- iceape <not-affected> (Only affects Firefox >= 4)
 CVE-2011-3000
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2999
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2998
 	RESERVED
 CVE-2011-2997
 	RESERVED
+	- xulrunner <not-affected> (Only affects Firefox 6)
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Only affects Firefox 6)
+	[squeeze] - iceweasel <not-affected> (Only affects Firefox 6)
+	- iceape <not-affected> (Only affects Firefox 6)
 CVE-2011-2996
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel 4.0-1
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
+	NOTE: Only affects firefox 3.6 code base, not 4.0 oder later
 CVE-2011-2995
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2994
 	RESERVED
 CVE-2011-2993 (The implementation of digital signatures for JAR files in Mozilla ...)
@@ -3656,6 +3700,12 @@
 	- icedove 3.1.11-1
 CVE-2011-2372
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny's iceweasel uses Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2371 (Integer overflow in the Array.reduceRight method in Mozilla Firefox ...)
 	{DSA-2273-3 DSA-2269-1 DSA-2268-1}
 	- xulrunner <removed>

More information about the Secure-testing-commits mailing list