[Secure-testing-commits] r27891 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Jul 22 19:55:19 UTC 2014


Author: carnil
Date: 2014-07-22 19:55:19 +0000 (Tue, 22 Jul 2014)
New Revision: 27891

Modified:
   data/CVE/list
Log:
Add CVE-2014-1552

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-07-22 19:54:14 UTC (rev 27890)
+++ data/CVE/list	2014-07-22 19:55:19 UTC (rev 27891)
@@ -8790,8 +8790,12 @@
 	RESERVED
 CVE-2014-1553
 	RESERVED
-CVE-2014-1552
+CVE-2014-1552 [IFRAME sandbox same-origin access through redirect]
 	RESERVED
+	- iceweasel <unfixed>
+	- icedove <unfixed>
+	TODO: only 31 series?
+	NOTE: https://www.mozilla.org/security/announce/2014/mfsa2014-66.html
 CVE-2014-1551 [Use-after-free in DirectWrite font handling]
 	RESERVED
 	- iceweasel <not-affected> (Affects only Windows plattform)




More information about the Secure-testing-commits mailing list