[Secure-testing-commits] r24314 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Thu Nov 7 06:27:17 UTC 2013
Author: jmm
Date: 2013-11-07 06:27:16 +0000 (Thu, 07 Nov 2013)
New Revision: 24314
Modified:
data/CVE/list
Log:
icedove fixed, add eol tags for icedove and iceape
remove no-dsa for unimportant wireshark issue and add NOTE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-11-06 21:14:19 UTC (rev 24313)
+++ data/CVE/list 2013-11-07 06:27:16 UTC (rev 24314)
@@ -565,8 +565,8 @@
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9263
CVE-2013-6339 (The dissect_openwire_type function in ...)
- wireshark 1.10.3-1 (unimportant)
- [wheezy] - wireshark <no-dsa> (Minor issue)
[squeeze] - wireshark <not-affected> (OpenWire dissector introduced in 1.8.0)
+ NOTE: Not suitable for code injection
CVE-2013-6338 (The dissect_sip_common function in epan/dissectors/packet-sip.c in the ...)
{DSA-2792-1}
- wireshark 1.10.3-1
@@ -2252,7 +2252,9 @@
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ - icedove 17.0.10-1
+ [squeeze] - icedove <end-of-life>
+ [squeeze] - iceape <end-of-life>
- iceape <unfixed>
CVE-2013-5603 (Use-after-free vulnerability in the ...)
- iceweasel 24.1.0esr-1
@@ -2264,25 +2266,31 @@
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ [squeeze] - icedove <end-of-life>
+ [squeeze] - iceape <end-of-life>
+ - icedove 17.0.10-1
- iceape <unfixed>
CVE-2013-5601 (Use-after-free vulnerability in the ...)
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ - icedove 17.0.10-1
- iceape <unfixed>
CVE-2013-5600 (Use-after-free vulnerability in the ...)
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ [squeeze] - icedove <end-of-life>
+ [squeeze] - iceape <end-of-life>
+ - icedove 17.0.10-1
- iceape <unfixed>
CVE-2013-5599 (Use-after-free vulnerability in the nsIPresShell::GetPresContext ...)
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ [squeeze] - icedove <end-of-life>
+ [squeeze] - iceape <end-of-life>
+ - icedove 17.0.10-1
- iceape <unfixed>
CVE-2013-5598 (PDF.js in Mozilla Firefox before 25.0 and Firefox ESR 24.x before 24.1 ...)
- iceweasel 24.1.0esr-1
@@ -2294,7 +2302,9 @@
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ [squeeze] - icedove <end-of-life>
+ [squeeze] - iceape <end-of-life>
+ - icedove 17.0.10-1
- iceape <unfixed>
CVE-2013-5596 (The cycle collection (CC) implementation in Mozilla Firefox before ...)
- iceweasel 24.1.0esr-1
@@ -2306,7 +2316,9 @@
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ [squeeze] - icedove <end-of-life>
+ [squeeze] - iceape <end-of-life>
+ - icedove 17.0.10-1
- iceape <unfixed>
CVE-2013-5594
RESERVED
@@ -2320,19 +2332,21 @@
- iceweasel <unfixed>
[wheezy] - iceweasel <not-affected> (Only affects Firefox >=24)
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
- - iceape <unfixed>
+ - icedove <not-affected> (Only affects Firefox >=24)
+ - iceape <not-affected> (Only affects Firefox >=24)
CVE-2013-5591 (Unspecified vulnerability in the browser engine in Mozilla Firefox ...)
- iceweasel 24.1.0esr-1
[wheezy] - iceweasel <not-affected> (Only affects Firefox >=24)
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
- - iceape <unfixed>
+ - icedove <not-affected> (Only affects Firefox >=24)
+ - iceape <not-affected> (Only affects Firefox >=24)
CVE-2013-5590 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
{DSA-2788-1}
- iceweasel 24.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- - icedove <unfixed>
+ [squeeze] - icedove <end-of-life>
+ [squeeze] - iceape <end-of-life>
+ - icedove 17.0.10-1
- iceape <unfixed>
CVE-2013-5634 (arch/arm/kvm/arm.c in the Linux kernel before 3.10 on the ARM ...)
- linux 3.11.5-1
More information about the Secure-testing-commits
mailing list