[Secure-testing-commits] r28082 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Mon Aug 4 17:22:38 UTC 2014 

Author: jmm
Date: 2014-08-04 17:22:38 +0000 (Mon, 04 Aug 2014)
New Revision: 28082

Modified:
   data/CVE/list
Log:
icedove fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-08-04 15:25:58 UTC (rev 28081)
+++ data/CVE/list	2014-08-04 17:22:38 UTC (rev 28082)
@@ -9198,7 +9198,7 @@
 	NOTE: https://www.mozilla.org/security/announce/2014/mfsa2014-60.html
 CVE-2014-1560 (Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote ...)
 	- iceweasel 31.0-1
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[wheezy] - iceweasel <not-affected> (Only affects releases after ESR24)
 	[wheezy] - icedove <not-affected> (Only affects releases after ESR24)
 	[squeeze] - iceweasel <end-of-life>
@@ -9206,7 +9206,7 @@
 	NOTE: https://www.mozilla.org/security/announce/2014/mfsa2014-65.html
 CVE-2014-1559 (Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote ...)
 	- iceweasel 31.0-1
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[wheezy] - iceweasel <not-affected> (Only affects releases after ESR24)
 	[wheezy] - icedove <not-affected> (Only affects releases after ESR24)
 	[squeeze] - iceweasel <end-of-life>
@@ -9214,7 +9214,7 @@
 	NOTE: https://www.mozilla.org/security/announce/2014/mfsa2014-65.html
 CVE-2014-1558 (Mozilla Firefox before 31.0 and Thunderbird before 31.0 allow remote ...)
 	- iceweasel 31.0-1
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[wheezy] - iceweasel <not-affected> (Only affects releases after ESR24)
 	[wheezy] - icedove <not-affected> (Only affects releases after ESR24)
 	[squeeze] - iceweasel <end-of-life>
@@ -9224,21 +9224,21 @@
 	{DSA-2996-1 DSA-2986-1}
 	- iceweasel 31.0-1
 	[squeeze] - iceweasel <end-of-life>
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[squeeze] - icedove <end-of-life>
 	NOTE: http://www.mozilla.org/security/announce/2014/mfsa2014-64.html
 CVE-2014-1556 (Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and ...)
 	{DSA-2996-1 DSA-2986-1}
 	- iceweasel 31.0-1
 	[squeeze] - iceweasel <end-of-life>
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[squeeze] - icedove <end-of-life>
 	NOTE: https://www.mozilla.org/security/announce/2014/mfsa2014-62.html
 CVE-2014-1555 (Use-after-free vulnerability in the nsDocLoader::OnProgress function ...)
 	{DSA-2996-1 DSA-2986-1}
 	- iceweasel 31.0-1
 	[squeeze] - iceweasel <end-of-life>
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[squeeze] - icedove <end-of-life>
 	NOTE: http://www.mozilla.org/security/announce/2014/mfsa2014-61.html
 CVE-2014-1554
@@ -9247,7 +9247,7 @@
 	RESERVED
 CVE-2014-1552 (Mozilla Firefox before 31.0 and Thunderbird before 31.0 do not ...)
 	- iceweasel 31.0-1
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[wheezy] - iceweasel <not-affected> (Only affects releases after ESR24)
 	[wheezy] - icedove <not-affected> (Only affects releases after ESR24)
 	[squeeze] - iceweasel <end-of-life>
@@ -9261,7 +9261,7 @@
 	- iceweasel 31.0-1
 	[wheezy] - iceweasel <not-affected> (Only affects releases after ESR24)
 	[squeeze] - iceweasel <end-of-life>
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[squeeze] - icedove <end-of-life>
 	[wheezy] - icedove <not-affected> (Only affects releases after ESR24)
 	NOTE: https://www.mozilla.org/security/announce/2014/mfsa2014-58.html
@@ -9269,7 +9269,7 @@
 	- iceweasel 31.0-1
 	[wheezy] - iceweasel <not-affected> (Only affects releases after ESR24)
 	[squeeze] - iceweasel <end-of-life>
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[squeeze] - icedove <end-of-life>
 	[wheezy] - icedove <not-affected> (Only affects releases after ESR24)
 	NOTE: https://www.mozilla.org/security/announce/2014/mfsa2014-57.html
@@ -9281,7 +9281,7 @@
 	{DSA-2996-1 DSA-2986-1}
 	- iceweasel 31.0-1
 	[squeeze] - iceweasel <end-of-life>
-	- icedove <unfixed>
+	- icedove 31.0-1
 	[squeeze] - icedove <end-of-life>
 	NOTE: http://www.mozilla.org/security/announce/2014/mfsa2014-56.html
 CVE-2014-1546
@@ -37915,9 +37915,10 @@
 CVE-2012-4543 (Multiple cross-site scripting (XSS) vulnerabilities in Red Hat ...)
 	NOT-FOR-US: Red Hat Certificate System
 CVE-2012-4542 (block/scsi_ioctl.c in the Linux kernel through 3.8 does not properly ...)
-	- linux <unfixed>
-	- linux-2.6 <removed>
+	- linux <unfixed> (unimportant)
+	- linux-2.6 <removed> (unimportant)
 	[squeeze] - linux-2.6 <no-dsa> (Too intrusive to backport)
+	NOTE: No upstream fix seems to be planned/treated as non-issue. Marking as unimportant
 CVE-2012-4541 (Cross-site scripting (XSS) vulnerability in Piwik before 1.9 allows ...)
 	- piwik <itp> (bug #506933)
 CVE-2012-4540 (Off-by-one error in the invoke function in ...)

More information about the Secure-testing-commits mailing list