Author: gilbert-guest
Date: 2010-02-02 23:43:55 +0000 (Tue, 02 Feb 2010)
New Revision: 14012
Modified:
data/CVE/list
Log:
more info on mozilla issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-02-02 23:39:00 UTC (rev 14011)
+++ data/CVE/list 2010-02-02 23:43:55 UTC (rev 14012)
@@ -155,12 +155,20 @@
RESERVED
CVE-2009-4630 (Mozilla Necko, as used in Firefox, SeaMonkey, and other
applications, ...)
- xulrunner <unfixed> (low)
+ [etch] - xulrunner <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
+ [lenny] - xulrunner <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
- iceape <unfixed> (low)
+ [etch] - iceape <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
+ [lenny] - iceape <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
NOTE: mozilla's dns prefetching leads to disclosure of the user's
network location
TODO: this may be unimportant since mozilla has chosen to ignore the
issue
CVE-2009-4629 (Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and
other ...)
- icedove <unfixed> (low)
+ [etch] - icedove <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
+ [lenny] - icedove <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
- iceape <unfixed> (low)
+ [etch] - iceape <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
+ [lenny] - iceape <not-affected> (dns prefetching implemented in
xulrunner 1.9.1)
NOTE: mozilla's dns prefetching leads to disclosure of the user's
network location
TODO: this may be unimportant since mozilla has chosen to ignore the
issue
CVE-2005-4885 (Unspecified vulnerability on certain Sun StorEdge 6130 (SE6130)
...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits
