Author: white
Date: 2010-03-31 08:31:33 +0000 (Wed, 31 Mar 2010)
New Revision: 14361
Modified:
data/CVE/list
Log:
Add missing icedove entries
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-03-31 08:20:48 UTC (rev 14360)
+++ data/CVE/list 2010-03-31 08:31:33 UTC (rev 14361)
@@ -9476,6 +9476,7 @@
CVE-2009-2408 (Mozilla Network Security Services (NSS) before 3.12.3, Firefox
before ...)
{DSA-1874-1}
- nss 3.12.3-1 (medium; bug #539934)
+ - icedove <unfixed> (medium)
CVE-2009-2651 (main/rtp.c in Asterisk Open Source 1.6.1 before 1.6.1.2 allows
remote ...)
- asterisk 1:1.6.2.0~dfsg~rc1-1 (low; bug #539473)
[etch] - asterisk <not-affected> (Vulnerable code not present)
@@ -9978,6 +9979,7 @@
CVE-2009-2463 (Multiple integer overflows in the (1) PL_Base64Decode and (2)
...)
{DSA-1931-1}
- nspr 4.8.2-1
+ - icedove <unfixed>
[etch] - nspr <end-of-life> (Mozilla packages from oldstable no longer
covered by security support)
CVE-2009-2462 (The browser engine in Mozilla Firefox before 3.0.12 and
Thunderbird ...)
{DSA-1840-1}
@@ -10198,6 +10200,7 @@
CVE-2009-2404 (Heap-based buffer overflow in a regular-expression parser in
Mozilla ...)
{DSA-1874-1}
- nss 3.12.3-1 (low; bug #539934)
+ - icedove <unfixed> (low)
CVE-2009-2403 (Heap-based buffer overflow in SCMPX 1.5.1 allows remote
attackers to ...)
NOT-FOR-US: SCMPX
CVE-2009-2402 (SQL injection vulnerability in index.php in the forum module in
...)