Author: gilbert-guest Date: 2010-02-02 23:43:55 +0000 (Tue, 02 Feb 2010) New Revision: 14012 Modified: data/CVE/list Log: more info on mozilla issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-02-02 23:39:00 UTC (rev 14011) +++ data/CVE/list 2010-02-02 23:43:55 UTC (rev 14012) @@ -155,12 +155,20 @@ RESERVED CVE-2009-4630 (Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, ...) - xulrunner <unfixed> (low) + [etch] - xulrunner <not-affected> (dns prefetching implemented in xulrunner 1.9.1) + [lenny] - xulrunner <not-affected> (dns prefetching implemented in xulrunner 1.9.1) - iceape <unfixed> (low) + [etch] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1) + [lenny] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1) NOTE: mozilla''s dns prefetching leads to disclosure of the user''s network location TODO: this may be unimportant since mozilla has chosen to ignore the issue CVE-2009-4629 (Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other ...) - icedove <unfixed> (low) + [etch] - icedove <not-affected> (dns prefetching implemented in xulrunner 1.9.1) + [lenny] - icedove <not-affected> (dns prefetching implemented in xulrunner 1.9.1) - iceape <unfixed> (low) + [etch] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1) + [lenny] - iceape <not-affected> (dns prefetching implemented in xulrunner 1.9.1) NOTE: mozilla''s dns prefetching leads to disclosure of the user''s network location TODO: this may be unimportant since mozilla has chosen to ignore the issue CVE-2005-4885 (Unspecified vulnerability on certain Sun StorEdge 6130 (SE6130) ...)