Author: gilbert-guest
Date: 2009-06-29 17:52:45 +0000 (Mon, 29 Jun 2009)
New Revision: 12227
Modified:
data/CVE/list
Log:
one more CVE for lenny xulrunner transition to squeeze
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-06-29 17:50:29 UTC (rev 12226)
+++ data/CVE/list 2009-06-29 17:52:45 UTC (rev 12227)
@@ -2145,8 +2145,10 @@
CVE-2009-1392 (The browser engine in Mozilla Firefox 3 before 3.0.11,
Thunderbird ...)
{DSA-1820-1}
- xulrunner 1.9.0.11-1
+ [squeeze] - xulrunner 1.9.0.11-0lenny1
+ [etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
- icedove <unfixed>
- [etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
+ TODO: determine whether icedove truely affected or whether issue solely within
xulrunner
CVE-2009-1391 (Off-by-one error in the inflate function in Zlib.xs in ...)
- perl 5.10.0-23 (medium; bug #532736)
- libcompress-raw-zlib-perl 2.015-2 (medium; bug #532738)