jmm-guest at alioth.debian.org
2009-Apr-01 20:26 UTC
[Secure-testing-commits] r11525 - data/CVE
Author: jmm-guest Date: 2009-04-01 20:26:16 +0000 (Wed, 01 Apr 2009) New Revision: 11525 Modified: data/CVE/list Log: more research on old Mozilla issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-04-01 18:51:33 UTC (rev 11524) +++ data/CVE/list 2009-04-01 20:26:16 UTC (rev 11525) @@ -12484,7 +12484,7 @@ CVE-2008-2421 (Cross-site scripting (XSS) vulnerability in the Web GUI in SAP Web ...) NOT-FOR-US: Web GUI in SAP Web Application Server (WAS) CVE-2008-2419 (Mozilla Firefox 2.0.0.14 allows remote attackers to cause a denial of ...) - - iceweasel <unfixed> (low; bug #484484) + NOTE: Mozilla bug 435130, not reproducible by upstream CVE-2008-2418 (Race condition in the STREAMS Administrative Driver (sad) in Sun ...) NOT-FOR-US: STREAMS Administrative Driver SUN CVE-2008-2417 (SQL injection vulnerability in showQAnswer.asp in How2ASP.net Webboard ...) @@ -17391,7 +17391,9 @@ CVE-2008-0368 (onedcu in IBM Informix Dynamic Server (IDS) 10.x before 10.00.xC8 ...) NOT-FOR-US: IBM Informix Dynamic Server CVE-2008-0367 (Mozilla Firefox 2.0.0.11, 3.0b2, and possibly earlier versions, when ...) - - iceweasel <unfixed> (low) + - iceweasel 3.0 (low) + [etch] - iceweasel <no-dsa> (Minor issue) + NOTE: Mozilla #244273 CVE-2008-0366 (CORE FORCE before 0.95.172 does not properly validate arguments to ...) NOT-FOR-US: CORE FORCE CVE-2008-0365 (Multiple buffer overflows in CORE FORCE before 0.95.172 allow local ...)