[Secure-testing-commits] r18556 - data/CVE

[Florian Weimer]

Author: fw
Date: 2012-02-28 19:09:46 +0000 (Tue, 28 Feb 2012)
New Revision: 18556

Modified:
   data/CVE/list
Log:
CVE-2011-3377 openjdk-6, icedtea-web


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-02-28 19:05:04 UTC (rev 18555)
+++ data/CVE/list	2012-02-28 19:09:46 UTC (rev 18556)
@@ -7953,8 +7953,11 @@
 	- rpm 4.9.1.2-1 (low; bug #645325)
 	[squeeze] - rpm 4.8.1-6+squeeze1
 	[lenny] - rpm <no-dsa> (rpm isn't used a a package manager, very limited attack vector)
-CVE-2011-3377
+CVE-2011-3377 [IcedTea browser plugin Same Origin Policy suffix issue]
 	RESERVED
+	- openjdk-6 6b21~pre1-1
+	- icedtea-web 1.1.4-1
+	NOTE: Browser plugin was removed in openjdk-6 6b21~pre1-1.
 CVE-2011-3376 (org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat ...)
 	- tomcat7 7.0.22-1
 CVE-2011-3375 (Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not ...)