Re: Some CVE updates

To: Mike Hommey <mh@glandium.org>
Cc: debian-security-tracker@lists.debian.org
Subject: Re: Some CVE updates
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Wed, 14 Apr 2010 23:23:46 +0200
Message-id: <[🔎] 20100414212346.GA2985@galadriel.inutil.org>
In-reply-to: <[🔎] 20100413222749.GA4277@glandium.org>
References: <[🔎] 20100413222749.GA4277@glandium.org>

On Wed, Apr 14, 2010 at 12:27:49AM +0200, Mike Hommey wrote:
> Hi,
> 
> I went through the CVE list on the security tracker, and noted 2 CVEs
> marked as vulnerable in testing/unstable while it is not the case:
> - CVE-2009-4630 was fixed during the gecko 1.9.1 development cycle, and
>   as such was already fixed in all 2.x versions of iceape and 1.9.1.x
>   and 1.9.2.x versions of xulrunner.
> - CVE-2010-0182 was fixed in xulrunner 1.9.1.9-1, but I had to leave it
>   out of the changelog because at the time I wrote it, the equivalent
>   MFSA information was broken on mozilla.org, and I couldn't know what
>   CVE it was about.

Thanks, Michael commited some fixes, the Tracker should be up-to-date now.

Cheers,
         Moritz

Reply to:

References:
- Some CVE updates
  - From: Mike Hommey <mh@glandium.org>

Prev by Date: Re: Should security tracker and PTS track terminated oldstable security issue as open?
Next by Date: Re: Should security tracker and PTS track terminated oldstable security issue as open?
Previous by thread: Re: Some CVE updates
Next by thread: Should security tracker and PTS track terminated oldstable security issue as open?
Index(es):
- Date
- Thread