thr3ads.net - Secure testing commits - [Secure-testing-commits] r17318

If this information is useful, please help other people find it:
Share via:
Moritz Muehlenhoff
2011-Sep-28 12:41 UTC
[Secure-testing-commits] r17318 - data/CVE

Author: jmm
Date: 2011-09-28 12:41:42 +0000 (Wed, 28 Sep 2011)
New Revision: 17318

Modified:
   data/CVE/list
Log:
more mozilla issues


Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-09-28 12:21:47 UTC (rev 17317)
+++ data/CVE/list	2011-09-28 12:41:42 UTC (rev 17318)
@@ -1,3 +1,12 @@
+CVE-2011-XXXX [http://www.mozilla.org/security/announce/2011/mfsa2011-37.html]
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel 4.0-1
+	[lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses
Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
+	NOTE: Only affects firefox 3.6 code base, not 4.0 oder later
+	NOTE: This is very likely CVE-2011-2998, pinged Mozilla Sec Team
 CVE-2011-XXXX [http://www.mozilla.org/security/announce/2011/mfsa2011-45.html]
 	- xulrunner <not-affected> (Only affects Firefox >= 4)
 	- iceweasel <unfixed>
@@ -1937,18 +1946,53 @@
 	- iceape <not-affected> (Only affects Firefox >= 4)
 CVE-2011-3001
 	RESERVED
+	- xulrunner <not-affected> (Only affects Firefox >= 4)
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Only affects Firefox >= 4)
+	[squeeze] - iceweasel <not-affected> (Only affects Firefox >= 4)
+	- iceape <not-affected> (Only affects Firefox >= 4)
 CVE-2011-3000
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses
Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2999
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses
Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2998
 	RESERVED
 CVE-2011-2997
 	RESERVED
+	- xulrunner <not-affected> (Only affects Firefox 6)
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Only affects Firefox 6)
+	[squeeze] - iceweasel <not-affected> (Only affects Firefox 6)
+	- iceape <not-affected> (Only affects Firefox 6)
 CVE-2011-2996
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel 4.0-1
+	[lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses
Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
+	NOTE: Only affects firefox 3.6 code base, not 4.0 oder later
 CVE-2011-2995
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses
Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2994
 	RESERVED
 CVE-2011-2993 (The implementation of digital signatures for JAR files in
Mozilla ...)
@@ -3656,6 +3700,12 @@
 	- icedove 3.1.11-1
 CVE-2011-2372
 	RESERVED
+	- icedove <unfixed>
+	- xulrunner <removed>
+	- iceweasel <unfixed>
+	[lenny] - iceweasel <not-affected> (Lenny''s iceweasel uses
Xulrunner from the xulrunner source pkg)
+	- iceape <unfixed>
+	[lenny] - iceape <not-affected> (Only a stub package)
 CVE-2011-2371 (Integer overflow in the Array.reduceRight method in Mozilla
Firefox ...)
 	{DSA-2273-3 DSA-2269-1 DSA-2268-1}
 	- xulrunner <removed>
Secure testing commits - Sep 2011 - r17318 - data/CVE

[Secure-testing-commits] r17318 - data/CVE
