Author: alec-guest
Date: 2006-08-16 21:45:38 +0000 (Wed, 16 Aug 2006)
New Revision: 4583
Modified:
data/CVE/list
Log:
CVE-2005-4684, CVE-2005-4685: downgrade to unimportant so they go away from the
tracker (''hardly exploitable'')
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-08-16 21:13:06 UTC (rev 4582)
+++ data/CVE/list 2006-08-16 21:45:38 UTC (rev 4583)
@@ -8516,13 +8516,13 @@
NOT-FOR-US: PunBB
CVE-2005-4685 (Firefox and Mozilla can associate a cookie with multiple domains
when ...)
NOTE: see CVE-2005-4684
- - firefox <unfixed> (low)
- - mozilla <unfixed> (low)
+ - firefox <unfixed> (unimportant)
+ - mozilla <unfixed> (unimportant)
[sarge] - mozilla <no-dsa> (Hardly exploitable)
- - xulrunner <unfixed> (low)
+ - xulrunner <unfixed> (unimportant)
CVE-2005-4684 (Konqueror can associate a cookie with multiple domains when the
DNS ...)
NOTE:
http://cvs.fedora.redhat.com/viewcvs/fedora-security/audit/fc5?root=fedora&rev=1.172&view=markup
says "ignore (kdebase) not fixed upstream, low, can''t fix"
- - kdebase <unfixed> (low)
+ - kdebase <unfixed> (unimportant)
[sarge] - kdebase <no-dsa> (Hardly exploitable)
CVE-2005-4683 (PADL MigrationTools 46, when a failure occurs, stores contents
of ...)
- migrationtools 46-2.1 (bug #338920; medium)