Author: iuculano
Date: 2010-09-08 07:50:24 +0000 (Wed, 08 Sep 2010)
New Revision: 15287
Modified:
data/CVE/list
Log:
chromium/webkit issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-09-08 06:33:18 UTC (rev 15286)
+++ data/CVE/list 2010-09-08 07:50:24 UTC (rev 15287)
@@ -3303,9 +3303,10 @@
CVE-2010-1941 (Unspecified vulnerability in NEC WebSAM DeploymentManager 5.13
and ...)
NOT-FOR-US: NEC WebSAM DeploymentManager
CVE-2010-1940 (Apple Safari 4.0.5 on Windows sends the "Authorization:
Basic" header ...)
- - chromium-browser <undetermined>
- - webkit <undetermined>
+ - chromium-browser <not-affected>
+ - webkit <not-affected>
TODO: someone with access to the webkit security list please track down commit
+ NOTE: Safari-specific. Chromium and Safari have totally separate HTTP stacks.
CVE-2010-1939 (Use-after-free vulnerability in Apple Safari 4.0.5 on Windows
allows ...)
- chromium-browser <undetermined>
- webkit <undetermined>
@@ -3681,41 +3682,45 @@
{DSA-2105-1}
- freetype 2.4.2-1
CVE-2010-1796 (The AutoFill feature in Apple Safari before 5.0.1 on Mac OS X
10.5 ...)
- - webkit <undetermined>
- - chromium-browser <undetermined>
- TODO: someone with access to webkit security list, please check
+ - webkit <not-affected>
+ - chromium-browser <not-affected>
+ NOTE: Very Safari specific
CVE-2010-1795 (Untrusted search path vulnerability in Apple iTunes before 9.1,
when ...)
NOT-FOR-US: Apple iTunes on Windows
CVE-2010-1794 (The webdav_mount function in webdav_vfsops.c in the WebDAV
kernel ...)
NOT-FOR-US: Apple
CVE-2010-1793 (Multiple use-after-free vulnerabilities in WebKit in Apple
Safari ...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
+ - chromium-browser 5.0.375.125~r53311-1
NOTE: http://trac.webkit.org/changeset/62482
NOTE: http://trac.webkit.org/changeset/62662
NOTE: duplicated as cve-2010-2902
CVE-2010-1792 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through
10.6 and ...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
+ - chromium-browser <not-affected>
NOTE: http://trac.webkit.org/changeset/62386
+ NOTE: Chromium uses a totally different regexp implementation.
CVE-2010-1791 (Integer signedness error in WebKit in Apple Safari before 5.0.1
on Mac ...)
- - webkit <undetermined>
- - chromium-browser <undetermined>
- TODO: someone with access to webkit security list, please check
+ - webkit <not-affected>
+ - chromium-browser <not-affected>
+ NOTE: this is specific to Safari''s JavaScript engine
CVE-2010-1790 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through
10.6 and ...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
+ - chromium-browser <not-affected>
NOTE: http://trac.webkit.org/changeset/62301
+ NOTE: this is specific to Safari''s JavaScript engine
CVE-2010-1789 (Heap-based buffer overflow in WebKit in Apple Safari before
5.0.1 on ...)
- - webkit <undetermined>
- - chromium-browser <undetermined>
- TODO: someone with access to webkit security list, please check
+ - webkit <not-affected>
+ - chromium-browser <not-affected>
+ NOTE: this is specific to Safari''s JavaScript engine
CVE-2010-1788 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through
10.6 and ...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
+ - chromium-browser 5.0.375.127~r55887-1
+ NOTE: https://bugs.webkit.org/show_bug.cgi?id=40994
+ NOTE: http://trac.webkit.org/changeset/62482
CVE-2010-1787 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through
10.6 and ...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
+ - chromium-browser 5.0.375.127~r55887-1
NOTE: http://trac.webkit.org/changeset/61044
CVE-2010-1786 (Use-after-free vulnerability in WebKit in Apple Safari before
5.0.1 on ...)
- webkit 1.2.4-1
@@ -3724,20 +3729,24 @@
NOTE: duplicated as cve-2010-2647
CVE-2010-1785 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through
10.6 and ...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
+ - chromium-browser 5.0.375.99~r51029-1
NOTE: http://trac.webkit.org/changeset/61050
+ NOTE: http://trac.webkit.org/changeset/61051
CVE-2010-1784 (The counters functionality in the Cascading Style Sheets (CSS)
...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
+ - chromium-browser 5.0.375.125~r53311-1
NOTE: http://trac.webkit.org/changeset/62271
CVE-2010-1783 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through
10.6 and ...)
- webkit <undetermined>
- - chromium-browser <undetermined>
+ - chromium-browser 5.0.375.127~r55887-1
NOTE: duplicated as cve-2010-2899
+ NOTE: (Chromium Sec) This seems a duplicate of CVE-2010-3114
CVE-2010-1782 (WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through
10.6 and ...)
- webkit 1.2.4-1
- - chromium-browser <undetermined>
- NOTE: http://trac.webkit.org/changeset/60984
+ - chromium-browser 5.0.375.127~r55887-1
+ NOTE: https://bugs.webkit.org/show_bug.cgi?id=41375
+ NOTE: http://trac.webkit.org/changeset/63772
+ TODO: recheck webkit (the changeset was wrong)
CVE-2010-1781
RESERVED
- webkit <undetermined>
@@ -3746,14 +3755,15 @@
TODO: check
CVE-2010-1780 (Use-after-free vulnerability in WebKit in Apple Safari before
5.0.1 on ...)
- webkit <undetermined>
- - chromium-browser <undetermined>
- TODO: someone with access to webkit security list, please check
+ - chromium-browser 5.0.375.125~r53311-1
+ NOTE: https://bugs.webkit.org/show_bug.cgi?id=40407
+ NOTE: http://trac.webkit.org/changeset/60984
CVE-2010-1779
RESERVED
CVE-2010-1778 (Cross-site scripting (XSS) vulnerability in Apple Safari before
5.0.1 ...)
- - webkit <undetermined>
- - chromium-browser <undetermined>
- TODO: someone with access to webkit security list, please check
+ - webkit <not-affected>
+ - chromium-browser <not-affected>
+ NOTE: Safari only (chromium security team)
CVE-2010-1777 (Buffer overflow in Apple iTunes before 9.2.1 allows remote
attackers ...)
NOT-FOR-US: Apple iTunes
CVE-2010-1776