Author: joeyh
Date: 2005-09-13 18:57:29 +0000 (Tue, 13 Sep 2005)
New Revision: 1959
Modified:
data/CAN/list
data/DSA/list
Log:
munge version numbers for recent mozilla DTSA
fix DSA notes for mozilla DSA
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-09-13 18:51:31 UTC (rev 1958)
+++ data/CAN/list 2005-09-13 18:57:29 UTC (rev 1959)
@@ -2062,29 +2062,29 @@
CAN-2005-2270 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly
clone ...)
{DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (high)
- - mozilla 2:1.7.10-1 (high)
+ - mozilla 2:1.7.8-1sarge2 (high)
- mozilla-thunderbird 1.0.6-1 (high)
CAN-2005-2269 (Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2
does ...)
{DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (high)
- - mozilla 2:1.7.10-1 (medium)
+ - mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (medium)
CAN-2005-2268 (Firefox before 1.0.5 and Mozilla before 1.7.9 does not clearly
...)
{DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- - mozilla 2:1.7.10-1 (medium)
+ - mozilla 2:1.7.8-1sarge2 (medium)
CAN-2005-2267 (Firefox before 1.0.5 allows remote attackers to steal
information and ...)
{DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
CAN-2005-2266 (Firefox before 1.0.5 and Mozilla before 1.7.9 allows a child
frame to ...)
{DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- - mozilla 2:1.7.10-1 (medium)
+ - mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (low)
CAN-2005-2265 (Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2
and 7.2 ...)
{DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (high)
- - mozilla 2:1.7.10-1 (medium)
+ - mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (medium)
CAN-2005-2264 (Firefox before 1.0.5 allows remote attackers to steal sensitive
...)
{DSA-779-2 DSA-779-1 DTSA-8-2}
@@ -2092,19 +2092,19 @@
CAN-2005-2263 (The InstallTrigger.install method in Firefox before 1.0.5 and
Mozilla ...)
{DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- - mozilla 2:1.7.10-1 (medium)
+ - mozilla 2:1.7.8-1sarge2 (medium)
CAN-2005-2262 (Firefox 1.0.3 and 1.0.4, and Netscape 8.0.2, allows remote
attackers ...)
{DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
CAN-2005-2261 (Firefox before 1.0.5, Thunderbird before 1.0.5, Mozilla before
1.7.9, ...)
{DSA-779-2 DSA-781-1 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- - mozilla 2:1.7.10-1 (medium)
+ - mozilla 2:1.7.8-1sarge2 (medium)
- mozilla-thunderbird 1.0.6-1 (medium)
CAN-2005-2260 (The browser user interface in Firefox before 1.0.5, Mozilla
before ...)
{DSA-779-2 DSA-779-1 DTSA-8-2}
- mozilla-firefox 1.0.4-2sarge3 (medium)
- - mozilla 2:1.7.10-1 (medium)
+ - mozilla 2:1.7.8-1sarge2 (medium)
CAN-2002-2086 (Multiple cross-site scripting (XSS) vulnerabilities in magicHTML
of ...)
NOTE: not-for-us (magicHTML)
CAN-2002-2085 (Directory traversal vulnerability in page.cgi of WWWeBBB Forum
3.82 ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2005-09-13 18:51:31 UTC (rev 1958)
+++ data/DSA/list 2005-09-13 18:57:29 UTC (rev 1959)
@@ -1,7 +1,7 @@
[13 Sep 2005] DSA-810-1 mozilla - several
{CAN-2004-0718 CAN-2005-1937 CAN-2005-2260 CAN-2005-2261 CAN-2005-2263
CAN-2005-2265 CAN-2005-2266 CAN-2005-2268 CAN-2005-2269 CAN-2005-2270}
- - mozilla 1.7.8-1 (medium)
- NOTE: fixed in testing at time of DSA
+ - mozilla 2:1.7.8-1sarge2 (medium)
+ NOTE: not fixed in testing at time of DSA (buggy and TBS)
[13 Sep 2005] DSA-809-1 squid - several
{CAN-2005-2794 CAN-2005-2796}
- squid 2.5.10-5 (medium)