Author: jmm-guest Date: 2006-12-13 23:32:09 +0100 (Wed, 13 Dec 2006) New Revision: 5115 Modified: data/CVE/list Log: xulrunner updates Modified: data/CVE/list ==================================================================--- data/CVE/list 2006-12-13 18:16:07 UTC (rev 5114) +++ data/CVE/list 2006-12-13 22:32:09 UTC (rev 5115) @@ -877,7 +877,8 @@ CVE-2006-6077 (The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and ...) - iceweasel <unfixed> (high) - mozilla-firefox <unfixed> (high) - - xulrunner <unfixed> (high) + - xulrunner <unfixed> (medium) + NOTE: Epiphany affected by xulrunner CVE-2006-6076 (Buffer overflow in the Tape Engine (tapeeng.exe) in Computer ...) NOT-FOR-US: BrightStor CVE-2006-6075 (Cross-site scripting (XSS) vulnerability in addpost1.asp in BaalAsp ...) @@ -1590,7 +1591,7 @@ - icedove 1.5.0.8-1 (medium) - mozilla <unfixed> (medium) [sarge] - mozilla <not-affected> (Vulnerable code not present) - - xulrunner <unfixed> (high) + - xulrunner 1.5.0.8-1 (high) - mozilla-firefox <removed> - mozilla-thunderbird <removed> [sarge] - mozilla <not-affected> (Vulnerable code not present) @@ -1829,7 +1830,7 @@ - firefox <unfixed> (unimportant) - icedove <unfixed> (unimportant) - mozilla <unfixed> (unimportant) - - xulrunner <unfixed> (low) + - xulrunner <unfixed> (unimportant) - mozilla-firefox <removed> (unimportant) - mozilla-thunderbird <removed> (unimportant) CVE-2006-5632 (Cross-site scripting (XSS) vulnerability in change_pass.php in iG Shop ...)