Author: jmm-guest
Date: 2006-10-01 08:48:24 +0000 (Sun, 01 Oct 2006)
New Revision: 4788
Modified:
data/CVE/list
Log:
mark two mozilla non-issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2006-10-01 08:31:52 UTC (rev 4787)
+++ data/CVE/list 2006-10-01 08:48:24 UTC (rev 4788)
@@ -13621,12 +13621,10 @@
NOT-FOR-US: Safari
NOTE: Not reproducible with konqueror 4:3.4.2-4.
CVE-2005-3896 (Mozilla allows remote attackers to cause a denial of service
(CPU ...)
- NOTE: maintainers don''t believe it is a security bug and
can''t reproduce
- NOTE: after 1.5.dfsg-1
- - firefox 1.5.dfsg-1 (bug #340283; bug #345469; low)
- NOTE: mozilla-firefox became a transitional package so not vulnerable
- - mozilla-firefox 1.4.99+1.5rc3.dfsg-2 (bug #340283; bug #345469; low)
- - mozilla <unfixed> (bug #340282; low)
+ NOTE: maintainers don''t believe it is a security bug and
can''t reproduce after 1.5.dfsg-1
+ - firefox 1.5.dfsg-1 (bug #340283; bug #345469; unimportant)
+ - mozilla-firefox 1.4.99+1.5rc3.dfsg-2 (bug #340283; bug #345469; unimportant)
+ - mozilla <unfixed> (bug #340282; unimportant)
CVE-2005-3895 (Open Ticket Request System (OTRS) 1.0.0 through 1.3.2 and 2.0.0
...)
{DSA-973-1}
- otrs 2.0.4p01-1 (bug #340352; medium)
@@ -18448,9 +18446,9 @@
CVE-2005-2415 (Multiple SQL injection vulnerabilities in Contrexx before 1.0.5
allow ...)
NOT-FOR-US: Contrexx
CVE-2005-2414 (Race condition in the xpcom library, as used by web browsers
such as ...)
- - mozilla-firefox (bug #327549; low)
- - mozilla (bug #327550; low)
- TODO: check more Mozilla-based browsers
+ - mozilla-firefox (bug #327549; unimportant)
+ - mozilla (bug #327550; unimportant)
+ NOTE: The turned out to be non-exploitable
CVE-2005-2413 (PHP remote file inclusion vulnerability in
apa_phpinclude.inc.php in ...)
NOT-FOR-US: Atomic Photo Album
CVE-2005-2412 (PHP remote file inclusion vulnerability in block.php in PHP
FirstPost ...)