[Secure-testing-commits] r36790 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Sep 22 19:51:17 UTC 2015 

Author: carnil
Date: 2015-09-22 19:51:17 +0000 (Tue, 22 Sep 2015)
New Revision: 36790

Modified:
   data/CVE/list
Log:
Update iceweasel entries which only affect 40.x, thanks jmm

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-09-22 19:46:25 UTC (rev 36789)
+++ data/CVE/list	2015-09-22 19:51:17 UTC (rev 36790)
@@ -6877,10 +6877,7 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-112/
 CVE-2015-4516 [JavaScript immutable property enforcement can be bypassed]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-109/
 CVE-2015-4515
 	RESERVED
@@ -6890,19 +6887,13 @@
 	RESERVED
 CVE-2015-4512 [Out-of-bounds read during 2D canvas display on Linux 16-bit color depth systems]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-107/
 CVE-2015-4511
 	RESERVED
 CVE-2015-4510 [Use-after-free with shared workers and IndexedDB]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-104/
 CVE-2015-4509 [Use-after-free while manipulating HTML media content]
 	RESERVED
@@ -6911,17 +6902,11 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-106/
 CVE-2015-4508 [URL spoofing in reader mode]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-103/
 CVE-2015-4507 [Crash when using debugger with SavedStacks in JavaScript]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-102/
 CVE-2015-4506 [Buffer overflow in libvpx while parsing vp9 format video]
 	RESERVED
@@ -6935,31 +6920,19 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-100/
 CVE-2015-4504 [Out of bounds read in QCMS library with ICC V4 profile attributes]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-98/
 CVE-2015-4503 [Memory leak in mozTCPSocket to servers]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-97/
 CVE-2015-4502 [Scripted proxies can access inner window]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-108/
 CVE-2015-4501 [Miscellaneous memory safety hazards]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-96/
 CVE-2015-4500 [Miscellaneous memory safety hazards]
 	RESERVED
@@ -7082,10 +7055,7 @@
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-81/
 CVE-2015-4476 [Site attribute spoofing on Android by pasting URL with unknown scheme]
 	RESERVED
-	- iceweasel <unfixed>
-	[jessie] - iceweasel <not-affected> (Affects only 40.x)
-	[wheezy] - iceweasel <not-affected> (Affects only 40.x)
-	[squeeze] - iceweasel <not-affected> (Affects only 40.x)
+	- iceweasel <not-affected> (Affects only 40.x)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-99/
 CVE-2015-4475 (The mozilla::AudioSink function in Mozilla Firefox before 40.0 and ...)
 	{DSA-3333-1}

More information about the Secure-testing-commits mailing list