Author: derevko-guest
Date: 2009-12-05 18:24:24 +0000 (Sat, 05 Dec 2009)
New Revision: 13457
Modified:
data/CVE/list
Log:
webkit issue triage
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-12-05 13:51:07 UTC (rev 13456)
+++ data/CVE/list 2009-12-05 18:24:24 UTC (rev 13457)
@@ -7381,12 +7381,11 @@
- webkit 1.1.12-1 (low; bug #535793)
CVE-2009-1701 (Use-after-free vulnerability in the JavaScript DOM
implementation in ...)
- webkit 1.1.12-1 (medium; bug #535793)
+ NOTE: invasive patch to backport.
CVE-2009-1700 (The XSLT implementation in WebKit in Apple Safari before 4.0,
iPhone ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (low; bug #535793)
CVE-2009-1699 (The XSL stylesheet implementation in WebKit in Apple Safari
before ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.0.1-4 (medium; bug #535793)
CVE-2009-1698 (WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1,
and ...)
{DSA-1868-1 DSA-1867-1}
- webkit 1.1.5-1 (medium; bug #534946)
@@ -7395,27 +7394,23 @@
- kde4libs 4:4.3.0-1 (medium; bug #534949)
- qt4-x11 4:4.5.2-1 (medium; bug #534947)
CVE-2009-1697 (CRLF injection vulnerability in WebKit in Apple Safari before
4.0, ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.15.2-1 (medium; bug #535793)
CVE-2009-1696 (WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1,
and ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (medium; bug #535793)
+ [lenny] - webkit <not-affected> (Vulnerable code not present)
CVE-2009-1695 (Cross-site scripting (XSS) vulnerability in WebKit in Apple
Safari ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (low; bug #535793)
CVE-2009-1694 (WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1,
and ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (low; bug #535793)
CVE-2009-1693 (WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1,
and ...)
- webkit <unfixed> (medium; bug #535793)
TODO: work with upstream to determine affected/not-affected webkit versions
CVE-2009-1692 (WebKit before r41741, as used in Apple iPhone OS 1.0 through
2.2.1, ...)
- - webkit <unfixed> (medium; bug #535793)
+ - webkit 1.1.12-1 (low; bug #535793)
NOTE: upstream (undisclosed) bug report is
https://bugs.webkit.org/show_bug.cgi?id=23319
- TODO: work with upstream to determine affected/not-affected webkit versions
CVE-2009-1691 (Cross-site scripting (XSS) vulnerability in WebKit in Apple
Safari ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (medium; bug #535793)
+ [lenny] - webkit <not-affected> (Vulnerable code not present)
CVE-2009-1690 (Use-after-free vulnerability in WebKit, as used in Apple Safari
before ...)
{DSA-1868-1 DSA-1867-1}
- webkit 1.1.5-1 (medium; bug #534946)
@@ -7425,11 +7420,11 @@
NOTE: http://websvn.kde.org/?view=rev&revision=983316
- qt4-x11 4:4.5.2-1 (medium; bug #534947)
CVE-2009-1689 (Cross-site scripting (XSS) vulnerability in WebKit in Apple
Safari ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (low; bug #535793)
+ [lenny] - webkit <not-affected> (Vulnerable code not present)
CVE-2009-1688 (Cross-site scripting (XSS) vulnerability in WebKit in Apple
Safari ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (low; bug #535793)
+ [lenny] - webkit <not-affected> (Vulnerable code not present)
CVE-2009-1687 (The JavaScript garbage collector in WebKit in Apple Safari
before 4.0, ...)
{DSA-1868-1 DSA-1867-1}
- webkit 1.1.5-1 (medium; bug #534946)
@@ -7438,22 +7433,18 @@
NOTE: http://trac.webkit.org/changeset/41854
- qt4-x11 4:4.5.2-1 (medium; bug #534946)
CVE-2009-1686 (WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1,
and ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
- TODO: check
+ - webkit 1.1.12-1 (medium; bug #535793)
+ [lenny] - webkit <not-affected> (Vulnerable code not present)
CVE-2009-1685 (Cross-site scripting (XSS) vulnerability in WebKit in Apple
Safari ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.0.1-4 (medium; bug #535793)
CVE-2009-1684 (Cross-site scripting (XSS) vulnerability in WebKit in Apple
Safari ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (low; bug #535793)
CVE-2009-1683 (The Telephony component in Apple iPhone OS 1.0 through 2.2.1 and
...)
NOT-FOR-US: iPhone
CVE-2009-1682 (Apple Safari before 4.0 does not properly check for revoked
Extended ...)
NOT-FOR-US: Apple Safari
CVE-2009-1681 (WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1,
and ...)
- - webkit <unfixed> (medium; bug #535793)
- TODO: work with upstream to determine affected/not-affected webkit versions
+ - webkit 1.1.12-1 (low; bug #535793)
CVE-2009-1680 (Safari in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for
iPod ...)
NOT-FOR-US: Safari in Apple iPhone OS
CVE-2009-1679 (The Profiles component in Apple iPhone OS 1.0 through 2.2.1 and
iPhone ...)
Michael Gilbert
2009-Dec-05 19:11 UTC
[Secure-testing-team] [Secure-testing-commits] r13457 - data/CVE
On Sat, 5 Dec 2009 18:24:26 +0000 Giuseppe Iuculano wrote:> Author: derevko-guest > Date: 2009-12-05 18:24:24 +0000 (Sat, 05 Dec 2009) > New Revision: 13457 > > Modified: > data/CVE/list > Log: > webkit issue triagethis triage is great news! i was starting to think that webkit was going to have to become considered unsupportable since there has been no progress for so long. does this mean that you now have access to the apple''s "private" info for their *publicly* disclosed webkit issues (i still don''t see any info/patches related to these issues on any of the cve pages or anywhere else that''s obvious)? if so, does that mean that you are to be primarily responsible for webkit security? if so, that is good news given the circumstances; of course, it would be much more ideal for apple to actually disclose information about their "disclosed" issues. thanks for finding a way to make progress! mike
Giuseppe Iuculano
2009-Dec-06 11:02 UTC
[Secure-testing-team] [Secure-testing-commits] r13457 - data/CVE
Michael Gilbert ha scritto:> does this mean that you now have access to the apple''s "private" info > for their *publicly* disclosed webkit issues (i still don''t see any > info/patches related to these issues on any of the cve pages or anywhere > else that''s obvious)? if so, does that mean that you are to be primarily > responsible for webkit security? if so, that is good news given the > circumstances; of course, it would be much more ideal for apple to > actually disclose information about their "disclosed" issues.No, I just discovered that Ubuntu people have the changeset links for every webkit issue in their CVE tracker. Cheers, Giuseppe. -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 198 bytes Desc: OpenPGP digital signature URL: <http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20091206/6da85a59/attachment.pgp>