diff options
author | Moritz Muehlenhoff <jmm@debian.org> | 2016-04-27 11:55:04 +0000 |
---|---|---|
committer | Moritz Muehlenhoff <jmm@debian.org> | 2016-04-27 11:55:04 +0000 |
commit | c30ed9354d8d14ce2d31ba35d3085c905110e881 (patch) | |
tree | 2999fea218e0b6966ad74a0bb2e5c381adbed537 /data/CVE/2007.list | |
parent | 6e17db3e70d071ba445782f2d08c894258c7d338 (diff) |
iceweasel is removed from sid
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@41232 e39458fd-73e7-0310-bf30-c45bca0a0e42
Diffstat (limited to 'data/CVE/2007.list')
-rw-r--r-- | data/CVE/2007.list | 20 |
1 files changed, 10 insertions, 10 deletions
diff --git a/data/CVE/2007.list b/data/CVE/2007.list index 088cb262be..1a92aca241 100644 --- a/data/CVE/2007.list +++ b/data/CVE/2007.list @@ -113,7 +113,7 @@ CVE-2007-6716 (fs/direct-io.c in the dio subsystem in the Linux kernel before 2. - linux-2.6.24 <not-affected> (Vulnerable code not present) NOTE: 848c4dd5153c7a0de55470ce99a8e13a63b4703f CVE-2007-6715 (Mozilla Firefox allows remote attackers to cause a denial of service ...) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) NOTE: browser dos not treated as security issues NOTE: cant reproduce on 2.0.0.12-1 and 2.0.0.14-2, already fixed? CVE-2007-6713 (Unspecified vulnerability in Flip4Mac WMV before 2.2.0.49 has unknown ...) @@ -2094,7 +2094,7 @@ CVE-2007-5898 (The (1) htmlentities and (2) htmlspecialchars functions in PHP be CVE-2007-5897 (Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, ...) NOT-FOR-US: Oracle CVE-2007-5896 (Mozilla Firefox 2.0.0.9 allows remote attackers to cause a denial of ...) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) NOTE: Browser crashes not treated as security problems CVE-2007-5895 RESERVED @@ -3177,7 +3177,7 @@ CVE-2007-5416 (Drupal 5.2 and earlier does not properly unset variables when the NOTE: The underlying PHP issue has been fixed in DSA 1206. NOTE: Plus, register_globals is not supported in Debian CVE-2007-5415 (Cross-site scripting (XSS) vulnerability in Mozilla Firefox 2.0, when ...) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) NOTE: if you are on a site which allows UTF-7 sure you need to sanitize the NOTE: equivalent strings in UTF-7 NOTE: referring to the mozilla security team this is a non-issue and a duplicate of @@ -5735,7 +5735,7 @@ CVE-2007-4358 (Zoidcom 0.6.7 and earlier allows remote attackers to cause a deni CVE-2007-4357 (Mozilla Firefox 2.0.0.6 and earlier allows remote attackers to spoof ...) - mozilla-firefox <removed> (unimportant) - mozilla <removed> (unimportant) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) - iceape <removed> (unimportant) CVE-2007-4356 (Microsoft Internet Explorer 6 and 7 embeds FTP credentials in HTML ...) NOT-FOR-US: Microsoft Internet Explorer @@ -9734,7 +9734,7 @@ CVE-2007-2673 (SQL injection vulnerability in includes/funcs_vendors.php in Cens CVE-2007-2672 (SQL injection vulnerability in index.php in PHP Coupon Script 3.0 ...) NOT-FOR-US: PHP Coupon Script CVE-2007-2671 (Mozilla Firefox 2.0.0.3 allows remote attackers to cause a denial of ...) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) NOTE: Browser crashes not treated as security problems CVE-2007-2670 (PHPChain 1.0 and earlier allows remote attackers to obtain the ...) NOT-FOR-US: PHPChain @@ -10951,7 +10951,7 @@ CVE-2007-2164 (Konqueror 3.5.5 release 45.4 allows remote attackers to cause a d CVE-2007-2163 (Apple Safari allows remote attackers to cause a denial of service ...) NOT-FOR-US: Apple Safari CVE-2007-2162 ((1) Mozilla Firefox 2.0.0.3 and (2) GNU IceWeasel 2.0.0.3 allow remote ...) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) NOTE: Browser crashes are not treated as security problems CVE-2007-2161 (Microsoft Internet Explorer 7 allows remote attackers to cause a ...) NOT-FOR-US: Microsoft Internet Explorer @@ -11381,7 +11381,7 @@ CVE-2007-XXXX [mydms SQL injection] CVE-2007-1971 (SQL injection vulnerability in fotokategori.asp in Gazi Okul Sitesi ...) NOT-FOR-US: fotokategori.asp CVE-2007-1970 (Mozilla Firefox does not warn the user about HTTP elements on an HTTPS ...) - - iceweasel <unfixed> (unimportant; bug #556267) + - iceweasel <removed> (unimportant; bug #556267) [etch] - iceweasel <end-of-life> (Etch Packages no longer covered by security support) [lenny] - iceweasel <no-dsa> (Minor issue) CVE-2007-1969 (Cross-site scripting (XSS) vulnerability in admin/modify.php in Sam ...) @@ -11915,7 +11915,7 @@ CVE-2007-1738 (TrueCrypt 4.3, when installed setuid root, allows local users to CVE-2007-1737 (Opera 9.10 does not check URLs embedded in (1) object or (2) iframe ...) NOT-FOR-US: Opera CVE-2007-1736 (Mozilla Firefox 2.0.0.3 does not check URLs embedded in (1) object or ...) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) NOTE: I don't believe this has relevant security impact, such a black list NOTE: will register URLs found in the wild and the used adresses will be NOTE: volatile anyway @@ -13095,7 +13095,7 @@ CVE-2007-1258 (Unspecified vulnerability in Cisco IOS 12.2SXA, SXB, SXD, and SXF CVE-2007-1257 (The Network Analysis Module (NAM) in Cisco Catalyst Series 6000, 6500, ...) NOT-FOR-US: Cisco CVE-2007-1256 (Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address ...) - - iceweasel <unfixed> (unimportant) + - iceweasel <removed> (unimportant) NOTE: Not exploitable CVE-2007-1255 (Unrestricted file upload vulnerability in admin.bbcode.php in ...) NOT-FOR-US: Connectix Boards @@ -13469,7 +13469,7 @@ CVE-2007-1086 (Unspecified binaries in IBM DB2 8.x before 8.1 FixPak 15 and 9.1 CVE-2007-1085 (Cross-site scripting (XSS) vulnerability in Google Desktop allows ...) NOT-FOR-US: Google Desktop CVE-2007-1084 (Mozilla Firefox 2.0.0.1 and earlier does not prompt users before ...) - - iceweasel <unfixed> (unimportant; bug #556268) + - iceweasel <removed> (unimportant; bug #556268) - iceape <removed> (unimportant) - epiphany-browser <unfixed> (unimportant; bug #556272) NOTE: only epiphany-gecko backend affected |