Secure testing commits - Apr 2010 - r14387 - data/CVE

Author: jmm-guest
Date: 2010-04-03 12:27:31 +0000 (Sat, 03 Apr 2010)
New Revision: 14387

Modified:
   data/CVE/list
Log:
- more webkit triage
- filed bug for viewvc
- bugnums
- new transmission issues


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-04-03 09:16:19 UTC (rev 14386)
+++ data/CVE/list	2010-04-03 12:27:31 UTC (rev 14387)
@@ -39,7 +39,7 @@
 CVE-2010-1219 (Directory traversal vulnerability in the JA News (com_janews)
...)
 	TODO: check
 CVE-2010-XXXX [opendchub]
-	- opendchub <unfixed> (bug filed)
+	- opendchub <unfixed> (bug #576308)
 CVE-2010-1218 (Cross-site scripting (XSS) vulnerability in the mm_forum
extension ...)
 	TODO: check
 CVE-2010-1217 (Directory traversal vulnerability in the JE Form Creator ...)
@@ -1358,8 +1358,11 @@
 	[lenny] - policykit <not-affected> (pkexec introduced in 0.92)
 CVE-2010-0749
 	RESERVED
+	- transmission <unfixed> (unimportant; bug filed)
 CVE-2010-0748
 	RESERVED
+	- transmission <unfixed> (medium; bug filed)
+	[lenny] - transmission <not-affected> (Support for Magnet links not yet
available)
 CVE-2010-0746
 	RESERVED
 CVE-2010-0745 [dovecot DoS]
@@ -3167,9 +3170,7 @@
 CVE-2010-0133
 	RESERVED
 CVE-2010-0132 (Cross-site scripting (XSS) vulnerability in ViewVC 1.1 before
1.1.5 ...)
-	- viewvc <unfixed>
-	NOTE: http://www.openwall.com/lists/oss-security/2010/03/30/2
-	TODO: file bug
+	- viewvc <unfixed> (bug #576307)
 CVE-2010-0131
 	RESERVED
 CVE-2010-0130
@@ -4111,7 +4112,7 @@
 	NOTE: proxy situations, the backend server is usually trusted, anyway.
 CVE-2010-0009 [Apache CouchDB Timing Attack Vulnerability]
 	RESERVED
-	- couchdb <unfixed> (bug filed)
+	- couchdb <unfixed> (bug #576304)
 	NOTE: I don''t really see the security implications?
 CVE-2010-0008 (The SCTP implementation in the Linux kernel before 2.6.23 allows
...)
 	- linux-2.6 2.6.23-1
@@ -6826,11 +6827,7 @@
 CVE-2009-3385 (The mail component in Mozilla SeaMonkey before 1.1.19 does not
...)
 	TODO: check
 CVE-2009-3384 (Multiple unspecified vulnerabilities in WebKit in Apple Safari
before ...)
-	- webkit 1.1.17-2 (medium; bug #559759)
-	- qt4-x11 <undetermined> (bug #561760)
-	[etch] - qt4-x11 <not-affected> (webkit support introduced in version
4.4)
-	- kdelibs <undetermined> (bug #561765)
-	- kde4libs <undetermined> (bug #561762)
+	- webkit <not-affected> (Windows-specific)
 CVE-2009-3383 (Multiple unspecified vulnerabilities in the JavaScript engine in
...)
 	- xulrunner 1.9.1.4-1
 	[lenny] - xulrunner <not-affected> (Only affects Firefox 3.5)

On Sat,  3 Apr 2010 12:27:33 +0000 Moritz Muehlenhoff wrote:
> Author: jmm-guest
> Date: 2010-04-03 12:27:31 +0000 (Sat, 03 Apr 2010)
> New Revision: 14387
> 
> Modified:
>    data/CVE/list
> Log:
> - more webkit triage
[...]
>  CVE-2009-3384 (Multiple unspecified vulnerabilities in WebKit in Apple
Safari before ...)
> -	- webkit 1.1.17-2 (medium; bug #559759)
> -	- qt4-x11 <undetermined> (bug #561760)
> -	[etch] - qt4-x11 <not-affected> (webkit support introduced in
version 4.4)
> -	- kdelibs <undetermined> (bug #561765)
> -	- kde4libs <undetermined> (bug #561762)
> +	- webkit <not-affected> (Windows-specific)
hi,

i think this affects all webkits.  the code changed is in
WebCore/loader/FTPDirectoryParser.cpp.  see:

https://bugzilla.redhat.com/show_bug.cgi?id=525788
http://trac.webkit.org/changeset/48725

mike