thr3ads.net - Secure testing commits - [Secure-testing-commits] r7186

If this information is useful, please help other people find it:
Share via:

stef-guest at alioth.debian.org

2007-Nov-01 21:25 UTC

[Secure-testing-commits] r7186 - data/CVE

Author: stef-guest
Date: 2007-11-01 21:25:04 +0000 (Thu, 01 Nov 2007)
New Revision: 7186

Modified:
   data/CVE/list
Log:
xulrunner fixed

Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-11-01 21:24:07 UTC (rev 7185)
+++ data/CVE/list	2007-11-01 21:25:04 UTC (rev 7186)
@@ -1733,7 +1733,7 @@
 CVE-2007-5340 (Multiple vulnerabilities in the Javascript engine in Mozilla
Firefox ...)
 	{DSA-1396-1 DSA-1392-1 DSA-1391-1 DTSA-69-1 DTSA-71-1}
 	- iceweasel 2.0.0.8-1 (high)
-	- xulrunner <unfixed> (high)
+	- xulrunner 1.8.1.9-1 (high)
 	- icedove <unfixed> (low)
 	- iceape <unfixed> (high)
 	- mozilla <removed>
@@ -1743,18 +1743,17 @@
 CVE-2007-5339 (Multiple vulnerabilities in Mozilla Firefox before 2.0.0.8, ...)
 	{DSA-1396-1 DSA-1392-1 DSA-1391-1 DTSA-69-1 DTSA-71-1}
 	- iceweasel 2.0.0.8-1 (high)
-	- xulrunner <unfixed> (bug #447734; high)
+	- xulrunner 1.8.1.9-1 (bug #447734; high)
 	- icedove <unfixed> (low)
 	- iceape <unfixed> (high)
 	- mozilla <removed>
 	- mozilla-firefox <removed>
 	- mozilla-thunderbird <removed>
-	NOTE: xulrunner 1.8.1.6-1 still vulnerable
 	NOTE: MFSA2007-29
 CVE-2007-5338 (Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow
remote ...)
 	{DSA-1396-1 DSA-1392-1 DTSA-69-1}
 	- iceweasel 2.0.0.8-1
-	- xulrunner <unfixed>
+	- xulrunner 1.8.1.9-1
 	- iceape <unfixed>
 	- mozilla <removed>
 	- mozilla-firefox <removed>
@@ -1762,7 +1761,7 @@
 CVE-2007-5337 (Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5, when
...)
 	{DSA-1396-1 DSA-1392-1 DTSA-69-1}
 	- iceweasel 2.0.0.8-1
-	- xulrunner <unfixed>
+	- xulrunner 1.8.1.9-1
 	- iceape <unfixed>
 	- mozilla <removed>
 	- mozilla-firefox <removed>
@@ -1775,7 +1774,7 @@
 CVE-2007-5334 (Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 can
hide the ...)
 	{DSA-1396-1 DSA-1392-1 DTSA-69-1}
 	- iceweasel 2.0.0.8-1
-	- xulrunner <unfixed>
+	- xulrunner 1.8.1.9-1
 	- iceape <unfixed>
 	- mozilla <removed>
 	- mozilla-firefox <removed>
@@ -6122,7 +6121,7 @@
 CVE-2007-3511 (The focus handling for the onkeydown event in Mozilla Firefox
...)
 	{DSA-1396-1 DSA-1392-1 DTSA-69-1}
 	- iceweasel 2.0.0.8-1 (bug #438873; low)
-	- xulrunner <unfixed>
+	- xulrunner 1.8.1.9-1
 	- iceape <unfixed>
 	- mozilla <removed>
 	- mozilla-firefox <removed>
@@ -9054,7 +9053,7 @@
 CVE-2007-2292 (CRLF injection vulnerability in the Digest Authentication
support for ...)
 	{DSA-1396-1 DSA-1392-1 DTSA-69-1}
 	- iceweasel 2.0.0.8-1 (low)
-	- xulrunner <unfixed>
+	- xulrunner 1.8.1.9-1
 	- iceape <unfixed>
 	- mozilla <removed>
 	- mozilla-firefox <removed>
@@ -12037,7 +12036,7 @@
 CVE-2007-1095 (Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 do not
...)
 	{DSA-1396-1 DSA-1392-1 DTSA-69-1}
 	- iceweasel 2.0.0.8-1 (low; bug #445514)
-	- xulrunner <unfixed>
+	- xulrunner 1.8.1.9-1
 	- iceape <unfixed>
 	- mozilla <removed>
 	- mozilla-firefox <removed>

Secure testing commits - Nov 2007 - r7186 - data/CVE

[Secure-testing-commits] r7186 - data/CVE