[Secure-testing-commits] r22109 - data/CVE

Salvatore Bonaccorso carnil at alioth.debian.org
Wed May 1 05:42:36 UTC 2013 

Author: carnil
Date: 2013-05-01 05:42:36 +0000 (Wed, 01 May 2013)
New Revision: 22109

Modified:
   data/CVE/list
Log:
mark iceweasel issues as unfixed in unstable

As security-tracker canot track experimental, mark icewasel issues as unfixed, but add a note
on which version in experimental they where fixed, to recheck, when iceweasel enters unstable

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-04-30 22:51:27 UTC (rev 22108)
+++ data/CVE/list	2013-05-01 05:42:36 UTC (rev 22109)
@@ -5899,9 +5899,10 @@
 	- iceweasel <unfixed>
 	NOTE: fixed in experimental 20.0-1
 CVE-2013-0787 (Use-after-free vulnerability in the nsEditor::IsPreformatted function ...)
-	- iceweasel 19.0.2-1
+	- iceweasel <unfixed>
 	- icedove <unfixed>
 	- iceape <unfixed>
+	NOTE: Fixed in experimental in 19.0.2-1, update when enters unstable
 CVE-2013-0786 (The Bugzilla::Search::build_subselect function in Bugzilla 2.x and 3.x ...)
 	- bugzilla <removed> (low)
 	[squeeze] - bugzilla <no-dsa> (Minor issue)
@@ -5915,21 +5916,24 @@
 	- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 	- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 CVE-2013-0783 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
-	- iceweasel 19.0-1 (bug #703071)
+	- iceweasel <unfixed> (bug #703071)
 	- icedove <unfixed>
 	- iceape <unfixed>
+	NOTE: Fixed in experimental in 19.0-1, update when enters unstable
 CVE-2013-0782 (Heap-based buffer overflow in the nsSaveAsCharset::DoCharsetConversion ...)
-	- iceweasel 19.0-1 (bug #703071)
+	- iceweasel <unfixed> (bug #703071)
 	- icedove <unfixed>
 	- iceape <unfixed>
+	NOTE: Fixed in experimental in 19.0-1, update when enters unstable
 CVE-2013-0781 (Use-after-free vulnerability in the nsPrintEngine::CommonPrint ...)
 	- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 	- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 	- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 CVE-2013-0780 (Use-after-free vulnerability in the ...)
-	- iceweasel 19.0-1 (bug #703071)
+	- iceweasel <unfixed> (bug #703071)
 	- icedove <unfixed>
 	- iceape <unfixed>
+	NOTE: Fixed in experimental in 19.0-1, update when enters unstable
 CVE-2013-0779 (The nsCodingStateMachine::NextState function in Mozilla Firefox before ...)
 	- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 	- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
@@ -5943,21 +5947,24 @@
 	- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 	- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 CVE-2013-0776 (Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, ...)
-	- iceweasel 19.0-1 (bug #703071)
+	- iceweasel <unfixed> (bug #703071)
 	- icedove <unfixed>
 	- iceape <unfixed>
+	NOTE: Fixed in experimental in 19.0-1, update when enters unstable
 CVE-2013-0775 (Use-after-free vulnerability in the ...)
-	- iceweasel 19.0-1 (bug #703071)
+	- iceweasel <unfixed> (bug #703071)
 	- icedove <unfixed>
 	- iceape <unfixed>
+	NOTE: Fixed in experimental in 19.0-1, update when enters unstable
 CVE-2013-0774 (Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, ...)
 	- iceape <not-affected> (Introduced in Firefox 15)
 	- iceweasel <not-affected> (Introduced in Firefox 15)
 	- icedove <not-affected> (Introduced in Firefox 15)
 CVE-2013-0773 (The Chrome Object Wrapper (COW) and System Only Wrapper (SOW) ...)
-	- iceweasel 19.0-1 (bug #703071)
+	- iceweasel <unfixed> (bug #703071)
 	- icedove <unfixed>
 	- iceape <unfixed>
+	NOTE: Fixed in experimental in 19.0-1, update when enters unstable
 CVE-2013-0772 (The RasterImage::DrawFrameTo function in Mozilla Firefox before 19.0, ...)
 	- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
 	- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)

More information about the Secure-testing-commits mailing list