Moritz Muehlenhoff
2006-Apr-27 09:07 UTC
[Secure-testing-commits] r3886 - in data: CVE DSA
Author: jmm-guest
Date: 2006-04-27 09:06:10 +0000 (Thu, 27 Apr 2006)
New Revision: 3886
Modified:
data/CVE/list
data/DSA/list
Log:
fix mozilla entries to be tracked by source package
remove one CVE from mozilla DSA
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-04-27 08:44:41 UTC (rev 3885)
+++ data/CVE/list 2006-04-27 09:06:10 UTC (rev 3886)
@@ -589,7 +589,7 @@
{DSA-1044-1}
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
NOTE: The Mozilla Foundation labels this as "critical", but
it''s not
@@ -598,82 +598,82 @@
{DSA-1044-1}
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-1740 (Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla
Suite ...)
{DSA-1044-1}
- firefox <unfixed> (low)
- mozilla-firefox <unfixed> (low)
- - mozilla-browser <unfixed> (low)
+ - mozilla <unfixed> (low)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-1739 (The CSS border-rendering code in Mozilla Firefox and Thunderbird
1.x ...)
{DSA-1044-1}
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-1738 (Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x
...)
{DSA-1044-1}
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-1737 (Integer overflow in Mozilla Firefox and Thunderbird 1.x before
1.5 and ...)
{DSA-1044-1}
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-1736 (Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla
Suite ...)
{DSA-1044-1}
- firefox <unfixed> (low)
- mozilla-firefox <unfixed> (low)
- - mozilla-browser <unfixed> (low)
+ - mozilla <unfixed> (low)
CVE-2006-1735 (Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before
1.0.8, ...)
{DSA-1044-1}
- firefox <unfixed> (high)
- mozilla-firefox <unfixed> (high)
- - mozilla-browser <unfixed> (high)
+ - mozilla <unfixed> (high)
- thunderbird <unfixed> (medium)
- mozilla-thunderbird <unfixed> (medium)
CVE-2006-1734 (Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before
1.0.8, ...)
{DSA-1044-1}
- firefox <unfixed> (high)
- mozilla-firefox <unfixed> (high)
- - mozilla-browser <unfixed> (high)
+ - mozilla <unfixed> (high)
- thunderbird <unfixed> (medium)
- mozilla-thunderbird <unfixed> (medium)
CVE-2006-1733 (Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before
1.0.8, ...)
{DSA-1044-1}
- firefox <unfixed> (high)
- mozilla-firefox <unfixed> (high)
- - mozilla-browser <unfixed> (high)
+ - mozilla <unfixed> (high)
- thunderbird <unfixed> (medium)
- mozilla-thunderbird <unfixed> (medium)
CVE-2006-1732 (Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x
...)
{DSA-1044-1}
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-1731 (Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before
1.0.8, ...)
{DSA-1044-1}
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-1730 (Integer overflow in Mozilla Firefox and Thunderbird 1.x before
1.5.0.2 ...)
{DSA-1044-1}
- firefox 1.5.dfsg+1.5.0.2-1 (high)
- mozilla-firefox <unfixed> (high)
- - mozilla-browser <unfixed> (high)
+ - mozilla <unfixed> (high)
- thunderbird <unfixed> (medium)
- mozilla-thunderbird <unfixed> (medium)
NOTE: MFSA2006-22 says that it is not clear whether Thunderbird is
@@ -682,20 +682,20 @@
{DSA-1044-1}
- firefox 1.5.dfsg+1.5.0.2-1 (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
NOTE: Can likely be used to steal OpenSSH keys and the like.
CVE-2006-1728 (Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x
...)
{DSA-1044-1}
- firefox 1.5.dfsg+1.5.0.2-1 (high)
- mozilla-firefox <unfixed> (high)
- - mozilla-browser <unfixed> (high)
+ - mozilla <unfixed> (high)
- thunderbird <unfixed> (medium)
- mozilla-thunderbird <unfixed> (medium)
CVE-2006-1727 (Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x
...)
{DSA-1044-1}
- firefox 1.5.dfsg+1.5.0.2-1 (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (medium)
- mozilla-thunderbird <unfixed> (medium)
NOTE: If print preview (and this bug) can be triggered from JavaScript,
@@ -709,7 +709,7 @@
NOTE: New bug in Firefox 1.5.
CVE-2006-1724 (Unspecified vulnerability in Firefox and Thunderbird before
1.5.0.2, ...)
- firefox 1.5.dfsg+1.5.0.2-1 (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
NOTE: MFSA2006-20 says exploitability has not been confirmed.
@@ -718,7 +718,7 @@
CVE-2006-1723 (Unspecified vulnerability in Firefox and Thunderbird before
1.5.0.2, ...)
- firefox <unfixed> (medium)
- mozilla-firefox <unfixed> (medium)
- - mozilla-browser <unfixed> (medium)
+ - mozilla <unfixed> (medium)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
NOTE: This is probably: https://bugzilla.mozilla.org/show_bug.cgi?id=320459
@@ -2967,14 +2967,14 @@
{DSA-1044-1}
- firefox <unfixed> (low)
- mozilla-firefox <unfixed> (low)
- - mozilla-browser <unfixed> (low)
+ - mozilla <unfixed> (low)
- thunderbird <unfixed> (low)
- mozilla-thunderbird <unfixed> (low)
CVE-2006-0748 (Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x
before ...)
{DSA-1044-1}
- firefox 1.5.dfsg+1.5.0.2-1 (high)
- mozilla-firefox <unfixed> (high)
- - mozilla-browser <unfixed> (high)
+ - mozilla <unfixed> (high)
- thunderbird <unfixed> (high)
- mozilla-thunderbird <unfixed> (high)
CVE-2006-0747
@@ -9688,7 +9688,7 @@
- mozilla-firefox 1.0.6-5 (bug #327452; bug #327802; bug #327366; medium)
- mozilla 2:1.7.12-1 (bug #327455; medium)
- mozilla-thunderbird 1.0.7-1
- NOTE: epiphany-browser is apparently fixed fix the mozilla-browser
+ NOTE: epiphany-browser is apparently fixed fix the mozilla
NOTE: upload; see bug #327366
CVE-2005-2930 (Stack-based buffer overflow in the _chm_find_in_PMGL function in
...)
{DSA-886-1}
Modified: data/DSA/list
==================================================================---
data/DSA/list 2006-04-27 08:44:41 UTC (rev 3885)
+++ data/DSA/list 2006-04-27 09:06:10 UTC (rev 3886)
@@ -1,5 +1,5 @@
[27 Apr 2006] DSA-1046-1 mozilla - several
- {CVE-2005-2353 CVE-2005-4134 CVE-2006-0292 CVE-2006-0293 CVE-2006-0296
CVE-2006-0748 CVE-2006-0749 CVE-2006-0884 CVE-2006-1045 CVE-2006-1529
CVE-2006-1530 CVE-2006-1531 CVE-2006-1723 CVE-2006-1724 CVE-2006-1727
CVE-2006-1728 CVE-2006-1729 CVE-2006-1730 CVE-2006-1731 CVE-2006-1733
CVE-2006-1734 CVE-2006-1735 CVE-2006-1736 CVE-2006-1737 CVE-2006-1738
CVE-2006-1739 CVE-2006-1740 CVE-2006-1741 CVE-2006-1742 CVE-2006-1790}
+ {CVE-2005-2353 CVE-2005-4134 CVE-2006-0292 CVE-2006-0293 CVE-2006-0748
CVE-2006-0749 CVE-2006-0884 CVE-2006-1045 CVE-2006-1529 CVE-2006-1530
CVE-2006-1531 CVE-2006-1723 CVE-2006-1724 CVE-2006-1727 CVE-2006-1728
CVE-2006-1729 CVE-2006-1730 CVE-2006-1731 CVE-2006-1733 CVE-2006-1734
CVE-2006-1735 CVE-2006-1736 CVE-2006-1737 CVE-2006-1738 CVE-2006-1739
CVE-2006-1740 CVE-2006-1741 CVE-2006-1742 CVE-2006-1790}
[sarge] - mozilla 1.7.8-1sarge5
[27 Apr 2006] DSA-1045-1 openvpn - design error
{CVE-2006-1629}