Author: jmm-guest
Date: 2005-09-22 22:34:49 +0000 (Thu, 22 Sep 2005)
New Revision: 2113
Modified:
data/CAN/list
Log:
lots of really ugly mozilla vulnerabilities
Modified: data/CAN/list
==================================================================---
data/CAN/list 2005-09-22 22:27:15 UTC (rev 2112)
+++ data/CAN/list 2005-09-22 22:34:49 UTC (rev 2113)
@@ -714,24 +714,31 @@
CAN-2005-2707 [Firefox: Spoofing through clever construction of windows/tabs]
NOTE: reserved
- mozilla-firefox (unfixed; bug filed; medium)
+ - mozilla (unfixed; bug filed; medium)
CAN-2005-2706 [Firefox: Javascript execution with chrome privileges through
about: subcommand]
NOTE: reserved
- mozilla-firefox (unfixed; bug filed; high)
+ - mozilla (unfixed; bug filed; high)
CAN-2005-2705 [Firefox: Integer overflow in Javascript engine]
NOTE: reserved
- mozilla-firefox (unfixed; bug filed; high)
+ - mozilla (unfixed; bug filed; high)
CAN-2005-2704 [Firefox: Incorrect chrome/javascript permission handling]
NOTE: reserved
- mozilla-firefox (unfixed; bug filed; medium)
+ - mozilla (unfixed; bug filed; medium)
CAN-2005-2703 [Firefox: Incorrect passing of XMLHttp requests]
NOTE: reserved
- mozilla-firefox (unfixed; bug filed; medium)
+ - mozilla (unfixed; bug filed; medium)
CAN-2005-2702 [Firefox: Arbitrary code execution through crafted Unicode
sequences]
NOTE: reserved
- mozilla-firefox (unfixed; bug filed; high)
+ - mozilla (unfixed; bug filed; high)
CAN-2005-2701 [Firefox: Arbitrary code execution through crafted XBM through
unspecified vuln]
NOTE: reserved
- mozilla-firefox (unfixed; bug filed; medium)
+ - mozilla (unfixed; bug filed; medium)
CAN-2005-2700 (ssl_engine_kernel.c in mod_ssl before 2.8.24, when using ...)
{DSA-807-1 DSA-805-1}
- libapache-mod-ssl 2.8.24-1 (medium)