Author: joeyh
Date: 2009-07-12 21:14:13 +0000 (Sun, 12 Jul 2009)
New Revision: 12326
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-07-12 11:21:42 UTC (rev 12325)
+++ data/CVE/list 2009-07-12 21:14:13 UTC (rev 12326)
@@ -1439,7 +1439,7 @@
- strongswan 4.2.14-1.1 (medium; bug #531612)
[etch] - strongswan <not-affected> (Vulnerable code not present, IKEv2
was introduced in 4.3)
CVE-2009-1841 (js/src/xpconnect/src/xpcwrappedjsclass.cpp in Mozilla Firefox
before ...)
- {DSA-1820-1}
+ {DSA-1830-1 DSA-1820-1}
- xulrunner 1.9.0.11-1
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -1455,7 +1455,7 @@
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
CVE-2009-1838 (The garbage-collection implementation in Mozilla Firefox before
...)
- {DSA-1820-1}
+ {DSA-1830-1 DSA-1820-1}
- xulrunner 1.9.0.11-1
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -1466,7 +1466,7 @@
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <not-affected> (Doesn''t affect Gecko 1.8)
CVE-2009-1836 (Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and
...)
- {DSA-1820-1}
+ {DSA-1830-1 DSA-1820-1}
- xulrunner 1.9.0.11-1
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -1487,7 +1487,7 @@
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
CVE-2009-1832 (Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and
...)
- {DSA-1820-1}
+ {DSA-1830-1 DSA-1820-1}
- xulrunner 1.9.0.11-1
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -2674,7 +2674,7 @@
CVE-2009-1393
RESERVED
CVE-2009-1392 (The browser engine in Mozilla Firefox 3 before 3.0.11,
Thunderbird ...)
- {DSA-1820-1}
+ {DSA-1830-1 DSA-1820-1}
- xulrunner 1.9.0.11-1
[squeeze] - xulrunner 1.9.0.11-0lenny1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -2996,7 +2996,7 @@
- xulrunner 1.9.0.9-1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
CVE-2009-1307 (The view-source: URI implementation in Mozilla Firefox before
3.0.9, ...)
- {DSA-1797-1}
+ {DSA-1830-1 DSA-1797-1}
- icedove 2.0.0.22-1
- xulrunner 1.9.0.9-1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -3015,12 +3015,12 @@
- xulrunner 1.9.0.9-1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
CVE-2009-1303 (The browser engine in Mozilla Firefox before 3.0.9, Thunderbird
before ...)
- {DSA-1797-1}
+ {DSA-1830-1 DSA-1797-1}
- icedove 2.0.0.22-1
- xulrunner 1.9.0.9-1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
CVE-2009-1302 (The browser engine in Mozilla Firefox 3.x before 3.0.9,
Thunderbird ...)
- {DSA-1797-1}
+ {DSA-1830-1 DSA-1797-1}
- icedove 2.0.0.22-1
- xulrunner 1.9.0.9-1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -5081,7 +5081,7 @@
CVE-2009-0777 (Mozilla Firefox before 3.0.7, Thunderbird before 2.0.0.21, and
...)
- iceweasel 3.0.7-1 (low)
CVE-2009-0776 (nsIRDFService in Mozilla Firefox before 3.0.7, Thunderbird
before ...)
- {DSA-1751-1}
+ {DSA-1830-1 DSA-1751-1}
- icedove 2.0.0.22-1
- iceweasel 3.0
NOTE: Iceweasel in Lenny links against Xulrunner
@@ -5092,24 +5092,24 @@
- xulrunner 1.9.0.7-1
[etch] - xulrunner <not-affected> (Vulnerable code not present)
CVE-2009-0774 (The layout engine in Mozilla Firefox 2 and 3 before 3.0.7,
Thunderbird ...)
- {DSA-1751-1}
+ {DSA-1830-1 DSA-1751-1}
- icedove 2.0.0.22-1
- iceweasel 3.0
NOTE: Iceweasel in Lenny links against Xulrunner
- xulrunner 1.9.0.7-1
CVE-2009-0773 (The JavaScript engine in Mozilla Firefox before 3.0.7,
Thunderbird ...)
- {DSA-1751-1}
+ {DSA-1830-1 DSA-1751-1}
- icedove 2.0.0.22-1
- xulrunner 1.9.0.7-1
[etch] - xulrunner <not-affected> (Vulnerable code not present)
CVE-2009-0772 (The layout engine in Mozilla Firefox 2 and 3 before 3.0.7,
Thunderbird ...)
- {DSA-1751-1}
+ {DSA-1830-1 DSA-1751-1}
- icedove 2.0.0.22-1
- iceweasel 3.0
NOTE: Iceweasel in Lenny links against Xulrunner
- xulrunner 1.9.0.7-1
CVE-2009-0771 (The layout engine in Mozilla Firefox before 3.0.7, Thunderbird
before ...)
- {DSA-1751-1}
+ {DSA-1830-1 DSA-1751-1}
- icedove 2.0.0.22-1
- xulrunner 1.9.0.7-1
[etch] - xulrunner <not-affected> (Vulnerable code not present)
@@ -5629,7 +5629,7 @@
CVE-2009-0653 (OpenSSL, probably 0.9.6, does not verify the Basic Constraints
for an ...)
- openssl 0.9.8-1 (bug #517791)
CVE-2009-0652 (The Internationalized Domain Names (IDN) blacklist in Mozilla
Firefox ...)
- {DSA-1797-1}
+ {DSA-1830-1 DSA-1797-1}
- icedove 2.0.0.22-1
- xulrunner 1.9.0.9-1
[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer
covered by security support)
@@ -6978,6 +6978,7 @@
- xulrunner 1.9.0.5-1
[etch] - xulrunner <not-affected> (Only affects Xulrunner 1.9)
CVE-2009-0353 (Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6,
...)
+ {DSA-1830-1}
- iceweasel 3.0
NOTE: Iceweasel in Lenny links against Xulrunner
- xulrunner 1.9.0.5-1
@@ -6985,6 +6986,7 @@
NOTE: Iceape in Lenny only provides XPCOM libs
- icedove 2.0.0.22-1
CVE-2009-0352 (Multiple unspecified vulnerabilities in Mozilla Firefox 3.x
before ...)
+ {DSA-1830-1}
- iceweasel 3.0
NOTE: Iceweasel in Lenny links against Xulrunner
- xulrunner 1.9.0.5-1
@@ -8631,7 +8633,7 @@
NOTE: fixed in r6 point update
NOTE: http://www.tdiary.org/20071215.html
CVE-2009-0040 (The PNG reference library (aka libpng) before 1.0.43, and 1.2.x
before ...)
- {DSA-1750-1}
+ {DSA-1830-1 DSA-1750-1}
- icedove 2.0.0.22-1
- libpng 1.2.35-1 (bug #516256)
CVE-2009-0039 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the web ...)