[Secure-testing-commits] r22629 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Sun Jun 16 17:42:58 UTC 2013
Author: jmm
Date: 2013-06-16 17:42:58 +0000 (Sun, 16 Jun 2013)
New Revision: 22629
Modified:
data/CVE/list
Log:
end-of-life for iceweasel in squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-16 17:38:33 UTC (rev 22628)
+++ data/CVE/list 2013-06-16 17:42:58 UTC (rev 22629)
@@ -7004,12 +7004,14 @@
CVE-2013-1681 (Use-after-free vulnerability in the ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
CVE-2013-1680 (Use-after-free vulnerability in the nsFrameList::FirstChild function ...)
{DSA-2699-1}
+ [squeeze] - iceweasel <end-of-life>
- iceweasel 17.0.6esr-1
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
@@ -7018,6 +7020,7 @@
CVE-2013-1679 (Use-after-free vulnerability in the ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -7025,6 +7028,7 @@
CVE-2013-1678 (The _cairo_xlib_surface_add_glyph function in Mozilla Firefox before ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -7032,6 +7036,7 @@
CVE-2013-1677 (The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -7039,6 +7044,7 @@
CVE-2013-1676 (The SelectionIterator::GetNextSegment function in Mozilla Firefox ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -7046,6 +7052,7 @@
CVE-2013-1675 (Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -7053,6 +7060,7 @@
CVE-2013-1674 (Use-after-free vulnerability in Mozilla Firefox before 21.0, Firefox ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -7066,10 +7074,10 @@
CVE-2013-1671 (Mozilla Firefox before 21.0 does not properly implement the INPUT ...)
- iceweasel <unfixed>
[wheezy] - iceweasel <not-affected> (Doesn't affect ESR 17 series)
- NOTE: fixed in experimental in 21.0-1
CVE-2013-1670 (The Chrome Object Wrapper (COW) implementation in Mozilla Firefox ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9352,6 +9360,7 @@
CVE-2013-0801 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
{DSA-2699-1}
- iceweasel 17.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9359,6 +9368,7 @@
CVE-2013-0800 (Integer signedness error in the pixman_fill_sse2 function in ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9376,6 +9386,7 @@
CVE-2013-0796 (The WebGL subsystem in Mozilla Firefox before 20.0, Firefox ESR 17.x ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9387,19 +9398,23 @@
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
- iceweasel 17.0.5esr-1
+ [squeeze] - iceweasel <end-of-life>
CVE-2013-0794 (Mozilla Firefox before 20.0 and SeaMonkey before 2.17 do not prevent ...)
- iceweasel 17.0.5esr-1 (low)
+ [squeeze] - iceweasel <end-of-life>
- iceape <unfixed> (low)
[squeeze] - iceape <end-of-life>
CVE-2013-0793 (Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
CVE-2013-0792 (Mozilla Firefox before 20.0 and SeaMonkey before 2.17, when ...)
- iceweasel 17.0.5esr-1 (low)
+ [squeeze] - iceweasel <end-of-life>
- iceape <unfixed> (low)
[squeeze] - iceape <end-of-life>
CVE-2013-0791 (The CERT_DecodeCertPackage function in Mozilla Network Security ...)
@@ -9414,12 +9429,14 @@
CVE-2013-0788 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1
+ [squeeze] - iceweasel <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
CVE-2013-0787 (Use-after-free vulnerability in the nsEditor::IsPreformatted function ...)
{DSA-2699-1}
+ [squeeze] - iceweasel <end-of-life>
- iceweasel 17.0.5esr-1
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
@@ -9440,6 +9457,7 @@
CVE-2013-0783 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1 (bug #703071)
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9447,6 +9465,7 @@
CVE-2013-0782 (Heap-based buffer overflow in the nsSaveAsCharset::DoCharsetConversion ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1 (bug #703071)
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9458,6 +9477,7 @@
CVE-2013-0780 (Use-after-free vulnerability in the ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1 (bug #703071)
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9477,6 +9497,7 @@
CVE-2013-0776 (Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1 (bug #703071)
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9484,6 +9505,7 @@
CVE-2013-0775 (Use-after-free vulnerability in the ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1 (bug #703071)
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9495,6 +9517,7 @@
CVE-2013-0773 (The Chrome Object Wrapper (COW) and System Only Wrapper (SOW) ...)
{DSA-2699-1}
- iceweasel 17.0.5esr-1 (bug #703071)
+ [squeeze] - iceweasel <end-of-life>
- icedove 17.0.5-1
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
@@ -9513,6 +9536,7 @@
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0769 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove 10.0.12-1
[squeeze] - icedove <end-of-life>
- iceape 2.7.12-1
@@ -9522,6 +9546,7 @@
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0767 (The nsSVGPathElement::GetPathLengthScale function in Mozilla Firefox ...)
+ [squeeze] - iceweasel <end-of-life>
- iceweasel 10.0.12esr-1
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
@@ -9529,6 +9554,7 @@
[squeeze] - iceape <end-of-life>
CVE-2013-0766 (Use-after-free vulnerability in the ~nsHTMLEditRules implementation in ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
@@ -9547,6 +9573,7 @@
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0762 (Use-after-free vulnerability in the imgRequest::OnStopFrame function ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
@@ -9561,12 +9588,14 @@
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0759 (Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
[squeeze] - iceape <end-of-life>
CVE-2013-0758 (Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
@@ -9585,12 +9614,14 @@
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0754 (Use-after-free vulnerability in the ListenerManager implementation in ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
[squeeze] - iceape <end-of-life>
CVE-2013-0753 (Use-after-free vulnerability in the serializeToStream implementation ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove 10.0.12-1
[squeeze] - icedove <end-of-life>
- iceape 2.7.12-1
@@ -9605,6 +9636,7 @@
- icedove <not-affected> (Android-specific)
CVE-2013-0750 (Integer overflow in the JavaScript implementation in Mozilla Firefox ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
@@ -9615,6 +9647,7 @@
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0748 (The XBL.__proto__.toString implementation in Mozilla Firefox before ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
@@ -9625,6 +9658,7 @@
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0746 (Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
[squeeze] - icedove <end-of-life>
- icedove 10.0.12-1
- iceape 2.7.12-1
@@ -9635,6 +9669,7 @@
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2013-0744 (Use-after-free vulnerability in the ...)
- iceweasel 10.0.12esr-1
+ [squeeze] - iceweasel <end-of-life>
- icedove 10.0.12-1
[squeeze] - icedove <end-of-life>
- iceape 2.7.12-1
@@ -23365,6 +23400,7 @@
- iceweasel 10.0.6esr-1
CVE-2012-1965 (Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 do ...)
- iceweasel 10.0.6esr-1
+ [squeeze] - iceweasel <end-of-life>
CVE-2012-1964 (The certificate-warning functionality in ...)
- iceweasel 10.0.6esr-1
- icedove 10.0.6-1
More information about the Secure-testing-commits
mailing list