Author: jmm-guest
Date: 2005-07-17 10:20:37 +0000 (Sun, 17 Jul 2005)
New Revision: 1421
Modified:
data/CAN/list
Log:
Checked all security issues that affect Thunderbird.
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-07-17 10:02:33 UTC (rev 1420)
+++ data/CAN/list 2005-07-17 10:20:37 UTC (rev 1421)
@@ -11,9 +11,11 @@
CAN-2005-2270 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly
clone ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; high)
+ - mozilla-thunderbird (unfixed; bug filed; high)
CAN-2005-2269 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly
verify ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; medium)
+ - mozilla-thunderbird (unfixed; bug filed; medium)
CAN-2005-2268 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly
...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
@@ -22,9 +24,11 @@
CAN-2005-2266 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child
frame to ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
+ - mozilla-thunderbird (unfixed; bug filed; low)
CAN-2005-2265 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows remote
attackers ...)
- mozilla-firefox 1.0.5-1 (high)
- mozilla (unfixed; bug #318062; medium)
+ - mozilla-thunderbird (unfixed; bug filed; medium)
CAN-2005-2264 (Firefox before 1.0.5 allows remote attackers to steal sensitive
...)
- mozilla-firefox 1.0.5-1 (medium)
CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and
Mozilla ...)
@@ -35,7 +39,7 @@
CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, and Mozilla
before ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
- TODO: thunderbird
+ - mozilla-thunderbird (unfixed; bug filed; medium)
CAN-2005-2260 (The browser user interface in Firefox before 1.0.5 and Mozilla
before ...)
- mozilla-firefox 1.0.5-1 (medium)
- mozilla (unfixed; bug #318062; medium)
@@ -3037,6 +3041,7 @@
CAN-2005-1532 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not
properly ...)
- mozilla-firefox 1.0.4
- mozilla-browser 2:1.7.8
+ - mozilla-thunderbird (unfixed; bug filed; high)
CAN-2005-1531 (Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not
properly ...)
- mozilla-firefox 1.0.4
- mozilla-browser 2:1.7.8
@@ -4764,9 +4769,11 @@
CAN-2005-1160 (The privileged "chrome" UI code in Firefox
before 1.0.3 and Mozilla ...)
- mozilla-firefox 1.0.3-1
- mozilla 1.7.7-1
+ - mozilla-thunderbird (unfixed; bug filed; high)
CAN-2005-1159 (The native implementations of InstallTrigger and other functions
in ...)
- mozilla-firefox 1.0.3-1
- mozilla 1.7.7-1
+ - mozilla-thunderbird (unfixed; bug filed; medium)
CAN-2005-1158 (Multiple "missing security checks" in Firefox
before 1.0.3 allow ...)
- mozilla-firefox 1.0.3-1
CAN-2005-1157 (Firefox before 1.0.3, Mozilla Suite before 1.7.7, and Netscape
7.2 ...)
@@ -5150,6 +5157,7 @@
CAN-2005-0989 (The find_replen function in jsstr.c in the the Javascript engine
for ...)
- mozilla 1.7.7-1
- mozilla-firefox 1.0.2-3
+ - mozilla-thunderbird (unfixed; bug filed; medium)
CAN-2005-0988 (Race condition in gzip 1.2.4, 1.3.3, and earlier, when
decompressing a ...)
{DSA-752-1}
- gzip 1.3.5-10