white at alioth.debian.org
2009-Jan-20 00:44 UTC
[Secure-testing-commits] r10994 - data/CVE
Author: white Date: 2009-01-20 00:44:31 +0000 (Tue, 20 Jan 2009) New Revision: 10994 Modified: data/CVE/list Log: CVE concerns MFSA 2007-37, which is fixed in current stable and affects only iceweasel/iceape Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-01-19 22:15:36 UTC (rev 10993) +++ data/CVE/list 2009-01-20 00:44:31 UTC (rev 10994) @@ -14578,8 +14578,8 @@ REJECTED CVE-2007-6589 (The jar protocol handler in Mozilla Firefox before 2.0.0.10 and ...) - iceape 1.1.7-1 (medium) - - iceweasel 2.0.0.10-1 (medium) - TODO: check mozilla derivatives/xulrunner + - iceweasel 2.0.0.10-1 (medium) + [etch] - iceape <not-affected> (Already fixed in current stable) CVE-2007-6588 (Cross-site scripting (XSS) vulnerability in PHCDownload 1.10 allows ...) NOT-FOR-US: PHCDownload CVE-2007-6587 (SQL injection vulnerability in plog-rss.php in Plogger 1.0 Beta 3.0 ...)