thr3ads.net - Secure testing commits - [Secure-testing-commits] r14392

If this information is useful, please help other people find it:
Share via:
Moritz Muehlenhoff
2010-Apr-03 17:57 UTC
[Secure-testing-commits] r14392 - data/CVE

Author: jmm-guest
Date: 2010-04-03 17:57:31 +0000 (Sat, 03 Apr 2010)
New Revision: 14392

Modified:
   data/CVE/list
Log:
iceape fixed
ncpfs fixed


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-04-03 17:50:54 UTC (rev 14391)
+++ data/CVE/list	2010-04-03 17:57:31 UTC (rev 14392)
@@ -1261,19 +1261,17 @@
 	[lenny] - fcron <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/fulldisclosure/2010/Mar/97
 CVE-2010-0791 (The (1) ncpmount, (2) ncpumount, and (3) ncplogin programs in
ncpfs ...)
-	- ncpfs <unfixed> (bug #572937)
+	- ncpfs 2.2.6-7 (bug #572937)
 	[lenny] - ncpfs <no-dsa> (Minor issue)
-	NOTE: http://seclists.org/fulldisclosure/2010/Mar/122
 CVE-2010-0790 (sutil/ncpumount.c in ncpumount in ncpfs 2.2.6 produces certain
...)
-	- ncpfs <unfixed> (bug #572937)
+	- ncpfs 2.2.6-7 (bug #572937)
 	[lenny] - ncpfs <no-dsa> (Minor issue)
-	NOTE: http://seclists.org/fulldisclosure/2010/Mar/122
 CVE-2010-0789 (fusermount in FUSE before 2.7.5, and 2.8.x before 2.8.2, allows
local ...)
 	{DSA-1989-1}
 	- fuse 2.8.1-1.2 (bug #567633)
 	NOTE: Initial DSA released as CVE-2009-3297
 CVE-2010-0788 (ncpfs 2.2.6 allows local users to cause a denial of service,
obtain ...)
-	- ncpfs <unfixed> (bug #572937)
+	- ncpfs 2.2.6-7 (bug #572937)
 	[lenny] - ncpfs <no-dsa> (Minor issue)
 CVE-2010-0787 (client/mount.cifs.c in mount.cifs in smbfs in Samba 3.0.22,
3.0.28a, ...)
 	{DSA-2004-1}
@@ -3046,31 +3044,49 @@
 	RESERVED
 	- xulrunner <unfixed> (low)
 	[lenny] - xulrunner <no-dsa> (Minor issue, no upstream fix for 3.0
series)
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0181 [Image src redirect to mailto: URL opens email editor]
 	RESERVED
 	- xulrunner <unfixed> (unimportant)
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0180
 	RESERVED
 CVE-2010-0179
 	RESERVED
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0178 [Chrome privilege escalation via forced URL drag and drop]
 	RESERVED
 	- xulrunner <unfixed>
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0177 [Dangling pointer vulnerability in nsPluginArray]
 	RESERVED
 	- xulrunner <unfixed>
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0176 [Dangling pointer vulnerability in nsTreeContentView]
 	RESERVED
 	- xulrunner <unfixed>
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0175 [Remote code execution with use-after-free in nsTreeSelection]
 	RESERVED
 	- xulrunner <unfixed>
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0174 [crashes in the browser engine]
 	RESERVED
 	- xulrunner <unfixed>
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2010-0173 [crashes in the browser engine]
 	RESERVED
 	- xulrunner <unfixed>
+	- iceape 2.0.4-1
+	[lenny] - iceape <not-affected> (Only a stub package)
 	[lenny] - xulrunner <not-affected> (Only affects Firefox >= 3.5)
 CVE-2010-0172 (toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in
the ...)
 	TODO: check
Secure testing commits - Apr 2010 - r14392 - data/CVE

[Secure-testing-commits] r14392 - data/CVE
