Author: joeyh
Date: 2005-09-13 15:56:58 +0000 (Tue, 13 Sep 2005)
New Revision: 1953
Modified:
data/DSA/list
Log:
switch firefox version numbers to the sarge versions, which are even in
testing now
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-09-13 14:43:16 UTC (rev 1952)
+++ data/DSA/list 2005-09-13 15:56:58 UTC (rev 1953)
@@ -71,7 +71,7 @@
[21 Aug 2005] DSA-779-2 mozilla-firefox - several
NOTE: Essentially 1.0.6 with rolled-back version number, backported version
had regressions
{CAN-2005-2260 CAN-2005-2261 CAN-2005-2262 CAN-2005-2263 CAN-2005-2264
CAN-2005-2265 CAN-2005-2266 CAN-2005-2267 CAN-2005-2268 CAN-2005-2269
CAN-2005-2270}
- - mozilla-firefox 1.0.6-1 (medium)
+ - mozilla-firefox 1.0.4-2sarge3 (medium)
NOTE: not fixed in testing at time of DSA (waiting on dependencies)
NOTE: Fixed in DTSA, which will have the same regressions, should be
checked/reverted
[01 Sep 2005] DSA-793-1 courier - missing input sanitising
@@ -136,7 +136,7 @@
NOTE: not fixed in testing at time of DSA (nor in unstable; C++ ABI
transition)
[21 Aug 2005] DSA-779-1 mozilla-firefox - several
{CAN-2005-2260 CAN-2005-2261 CAN-2005-2262 CAN-2005-2263 CAN-2005-2264
CAN-2005-2265 CAN-2005-2266 CAN-2005-2267 CAN-2005-2268 CAN-2005-2269
CAN-2005-2270}
- - mozilla-firefox 1.0.6-1 (medium)
+ - mozilla-firefox 1.0.4-2sarge3 (medium)
NOTE: not fixed in testing at time of DSA (build and deps)
[19 Aug 2005] DSA-778-1 mantis - missing input sanitising
{CAN-2005-2556 CAN-2005-2557}
@@ -152,7 +152,7 @@
NOTE: not fixed in testing at time of DSA (waiting on dependencies)
[12 Aug 2005] DSA-775-1 mozilla-firefox - frame injection spoofing
{CAN-2004-0718 CAN-2005-1937}
- - mozilla-firefox 1.0.4-3 (medium)
+ - mozilla-firefox 1.0.4-2sarge3 (medium)
NOTE: IMO the information about the sid fix in the DSA is wrong, pinged
security@
NOTE: fixed in testing at time of DSA
[12 Aug 2005] DSA-774-1 fetchmail - buffer overflow