Author: jmm-guest Date: 2010-12-29 00:07:43 +0000 (Wed, 29 Dec 2010) New Revision: 15760 Modified: data/CVE/list Log: record bugzilla tpu fix Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-12-28 21:36:23 UTC (rev 15759) +++ data/CVE/list 2010-12-29 00:07:43 UTC (rev 15760) @@ -2748,6 +2748,7 @@ [lenny] - xulrunner <not-affected> (bug in optimization added later) CVE-2010-3764 (The Old Charts implementation in Bugzilla 2.12 through 3.2.8, 3.4.8, ...) - bugzilla <unfixed> (bug #602420; low) + [squeeze] - bugzilla 3.6.2.0-4.2 CVE-2010-3763 (Cross-site scripting (XSS) vulnerability in core/summary_api.php in ...) - mantis 1.1.8+dfsg-9 (bug #601618) [lenny] - mantis 1.1.6+dfsg-2lenny4 @@ -4329,6 +4330,7 @@ - nss 3.12.8-1 CVE-2010-3172 (CRLF injection vulnerability in Bugzilla before 3.2.9, 3.4.x before ...) - bugzilla <unfixed> (bug #602420; low) + [squeeze] - bugzilla 3.6.2.0-4.2 CVE-2010-3171 (The Math.random function in the JavaScript implementation in Mozilla ...) NOTE: Will likely be rejected by MITRE CVE-2010-3170 (Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird ...)