Author: jmm-guest Date: 2009-11-23 18:12:07 +0000 (Mon, 23 Nov 2009) New Revision: 13353 Modified: data/CVE/list Log: - dovecot only affects sid/squeeze - mark older firefox as design/non-issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-11-23 16:59:45 UTC (rev 13352) +++ data/CVE/list 2009-11-23 18:12:07 UTC (rev 13353) @@ -111,8 +111,9 @@ [lenny] - nginx <no-dsa> (upload rights required) CVE-2009-XXXX [dovecot 0777 base_dir creation] - dovecot <unfixed> (medium) - NOTE: http://www.dovecot.org/list/dovecot-news/2009-November/000143.html - TODO: check + [lenny] - dovecot <not-affected> (Only affects 1.2.x) + [etch] - dovecot <not-affected> (Only affects 1.2.x) + NOTE: http://www.dovecot.org/list/dovecot-news/2009-November/000143.html, CVE requested on oss-sec CVE-2009-XXXX [php temporary files exhaustion DoS] - php5 5.2.11.dfsg.1-2 (medium) - php4 <unfixed> (medium) @@ -42194,22 +42195,12 @@ CVE-2007-1085 (Cross-site scripting (XSS) vulnerability in Google Desktop allows ...) NOT-FOR-US: Google Desktop CVE-2007-1084 (Mozilla Firefox 2.0.0.1 and earlier does not prompt users before ...) - - iceweasel <unfixed> (low; bug #556268) - [etch] - iceweasel <no-dsa> (Minor issue) - [lenny] - iceweasel <no-dsa> (Minor issue) - - iceape <unfixed> (low) - [etch] - iceape <no-dsa> (Minor issue) - [lenny] - iceape <no-dsa> (minor issue) - - epiphany-browser <unfixed> (low; bug #556272) - [etch] - epiphany-browser <no-dsa> (minor issue) - [lenny] - epiphany-browser <no-dsa> (minor issue) + - iceweasel <unfixed> (unimportant; bug #556268) + - iceape <unfixed> (unimportant) + - epiphany-browser <unfixed> (unimportant; bug #556272) NOTE: only epiphany-gecko backend affected - - galeon <unfixed> (low; bug #556270) - [etch] - galeon <no-dsa> (minor issue) - [lenny] - galeon <no-dsa> (minor issue) - - kazehakase <unfixed> (low; bug #556271) - [etch] - kazehakase <no-dsa> (minor issue) - [lenny] - kazehakase <no-dsa> (minor issue) + - galeon <unfixed> (unimportant; bug #556270) + - kazehakase <unfixed> (unimportant; bug #556271) - conkeror <not-affected> (doesn''t support bookmarks) - webkit <not-affected> (doesn''t support javascript embedded in bookmarks) CVE-2007-1083 (Buffer overflow in the Configuration Checker (ConfigChk) ActiveX ...)