[Git][security-tracker-team/security-tracker][master] kde4libs removed from unstable
Salvatore Bonaccorso
carnil at debian.org
Sun Aug 25 16:54:23 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
aa2a98ff by Salvatore Bonaccorso at 2019-08-25T15:53:32Z
kde4libs removed from unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -23676,7 +23676,7 @@ CVE-2019-7444
CVE-2019-7443 (KDE KAuth before 5.55 allows the passing of parameters with arbitrary ...)
- kauth 5.54.0-2 (bug #921995)
[stretch] - kauth 5.28.0-2+deb9u1
- - kde4libs <unfixed> (bug #922727)
+ - kde4libs <removed> (bug #922727)
[buster] - kde4libs <no-dsa> (Minor issue)
[stretch] - kde4libs <no-dsa> (Minor issue)
[jessie] - kde4libs <no-dsa> (Minor issue)
@@ -294549,7 +294549,7 @@ CVE-2010-XXXX [browser javascript document.write denial-of-service]
- webkit <unfixed> (unimportant; bug #568485)
- qt4-x11 <unfixed> (unimportant)
- kdelibs <unfixed> (unimportant)
- - kde4libs <unfixed> (unimportant)
+ - kde4libs <removed> (unimportant)
CVE-2010-0466
RESERVED
CVE-2010-0465 (Cross-site scripting (XSS) vulnerability in the online Documents funct ...)
@@ -296749,7 +296749,7 @@ CVE-2009-XXXX [browser-based css info disclosure]
- webkit <unfixed> (unimportant; bug #560870)
- qt4-x11 <unfixed> (unimportant; bug #561754)
- kdelibs <unfixed> (unimportant; bug #561752)
- - kde4libs <unfixed> (unimportant; bug #561753)
+ - kde4libs <removed> (unimportant; bug #561753)
- kazehakase <unfixed> (unimportant; bug #560871)
- epiphany-browser <unfixed> (unimportant; bug #560872)
- galeon <unfixed> (unimportant; bug #560873)
@@ -299717,7 +299717,7 @@ CVE-2009-3272 (Stack consumption vulnerability in WebKit.dll in WebKit in Apple
- qt4-x11 <unfixed> (unimportant)
[etch] - qt4-x11 <not-affected> (webkit support introduced in version 4.4)
- kdelibs <unfixed> (unimportant)
- - kde4libs <unfixed> (unimportant)
+ - kde4libs <removed> (unimportant)
NOTE: browser crashers are not considered security-relevant
CVE-2009-3271 (Apple Safari on iPhone OS 3.0.1 allows remote attackers to cause a den ...)
NOT-FOR-US: Apple Safari on iPhone OS 3.0.1
@@ -300672,7 +300672,7 @@ CVE-2009-3016 (Apple Safari 4.0.3 does not properly block javascript: and data:
CVE-2009-3015 (QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and d ...)
- qt4-x11 <unfixed> (unimportant)
- kdelibs <unfixed> (unimportant)
- - kde4libs <unfixed> (unimportant)
+ - kde4libs <removed> (unimportant)
NOTE: This is a web site issue (open redirector), not a browser problem.
CVE-2009-3014 (Mozilla Firefox 3.0.13 and earlier, 3.5, 3.6 a1 pre, and 3.7 a1 pre; S ...)
NOTE: This is a web site issue (open redirector), not a browser problem.
@@ -304749,7 +304749,7 @@ CVE-2009-1724 (Cross-site scripting (XSS) vulnerability in WebKit in Apple Safar
- webkit 1.1.13-1 (low; bug #538402)
[lenny] - webkit <no-dsa> (Unmaintained in Lenny, only affects fringe apps)
- kdelibs <unfixed> (unimportant)
- - kde4libs <unfixed> (unimportant)
+ - kde4libs <removed> (unimportant)
NOTE: http://www.thespanner.co.uk/2009/06/19/minor-safari-cross-domain-bug/
CVE-2009-1723 (CFNetwork in Apple Mac OS X 10.5 before 10.5.8 places an incorrect URL ...)
NOT-FOR-US: CFNetwork in Apple Mac OS X
@@ -304768,7 +304768,7 @@ CVE-2009-1718 (WebKit in Apple Safari before 4.0 allows user-assisted remote att
- webkit 1.1.12-1 (medium; bug #535793)
[lenny] - webkit <no-dsa> (Minor issue)
- kdelibs <unfixed> (unimportant)
- - kde4libs <unfixed> (unimportant)
+ - kde4libs <removed> (unimportant)
- qt4-x11 4:4.6.2-4 (low; bug #561760)
[lenny] - qt4-x11 <no-dsa> (qtwebkit not supported security-wise)
NOTE: QT4 might be fixed earlier, but only 4.6.2 was checked against
@@ -304945,7 +304945,7 @@ CVE-2009-1692 (WebKit before r41741, as used in Apple iPhone OS 1.0 through 2.2.
{DSA-1950-1}
- webkit 1.1.12-1 (low; bug #535793)
- kdelibs <unfixed> (unimportant)
- - kde4libs <unfixed> (unimportant)
+ - kde4libs <removed> (unimportant)
- qt4-x11 4:4.6.2-4 (unimportant)
NOTE: QT4 might be fixed earlier, but only 4.6.2 was checked against
NOTE: upstream (undisclosed) bug report is https://bugs.webkit.org/show_bug.cgi?id=23319
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aa2a98ffcd2ff06a1a63de4a1246721ac7b49a5d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aa2a98ffcd2ff06a1a63de4a1246721ac7b49a5d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190825/e7bb7dee/attachment.html>
More information about the debian-security-tracker-commits
mailing list