Author: gilbert-guest Date: 2010-02-26 21:08:49 +0000 (Fri, 26 Feb 2010) New Revision: 14157 Modified: data/CVE/list Log: info on webkit issue Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-02-26 20:45:35 UTC (rev 14156) +++ data/CVE/list 2010-02-26 21:08:49 UTC (rev 14157) @@ -147,11 +147,12 @@ - kde4libs <undetermined> (low) CVE-2010-0650 (WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, ...) - chromium-browser <itp> (bug #520334) - - webkit <undetermined> (low) - - qt4-x11 <undetermined> (low) - - kdelibs <undetermined> (low) - - kde4libs <undetermined> (low) - TODO: check (not enough info available yet since webkit bug is still restricted) + - webkit 1.1.21-1 (unimportant) + NOTE: http://code.google.com/p/chromium/issues/detail?id=3275 + - qt4-x11 <undetermined> (unimportant) + - kdelibs <undetermined> (unimportant) + - kde4libs <undetermined> (unimportant) + NOTE: unimportant because this is just a popup blocker bypass CVE-2010-0649 (Integer overflow in the CrossCallParamsEx::CreateFromBuffer function ...) - chromium-browser <itp> (bug #520334) CVE-2010-0648 (Mozilla Firefox, possibly before 3.6, allows remote attackers to ...)