oss-sec mailing list archives
Webkit Dupes
From: Michael Gilbert <michael.s.gilbert () gmail com>
Date: Sat, 5 Feb 2011 18:35:17 -0500
Hi, The following issues are duplicate CVE assignments for webkit. Please merge and reject these as appropriate. CVE-2010-2902 and CVE-2010-1793: webkit commit #62662 http://code.google.com/p/chromium/issues/detail?id=48284 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1793 CVE-2010-2647 and CVE-2010-1786: webkit commit #61667 http://code.google.com/p/chromium/issues/detail?id=43488 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1793 CVE-2010-2302 and CVE-2010-1771: webkit commit #59876 http://code.google.com/p/chromium/issues/detail?id=44740 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1771 CVE-2010-2301 and CVE-2010-1762: webkit commit #59241 and #59242 http://code.google.com/p/chromium/issues/detail?id=43902 CVE-2010-2300 and CVE-2010-1759: webkit commit #59109 http://code.google.com/p/chromium/issues/detail?id=43315 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1759 CVE-2010-2902 and CVE-2010-1793: webkit commit #62662 and #62482 http://code.google.com/p/chromium/issues/detail?id=48284 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1793 CVE-2010-2647 and CVE-2010-1786: webkit commit #61667 http://code.google.com/p/chromium/issues/detail?id=43488 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1793 CVE-2010-2899 and CVE-2010-1783: webkit commit #62134 http://code.google.com/p/chromium/issues/detail?id=42736 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1793 CVE-2010-1769 and CVE-2010-1774: webkit commit #59495 both are apple announcements, and the only difference in the CVE descriptions is "itunes" vs "safari" CVE-2010-2441 and CVE-2010-1757 webkit commit #58829 i'm not 100% sure about this one since there is no useful info in CVE-2010-1757. the descriptions sound very much the same issue, but descriptions differ by "webkit on apple" vs "webkit" CVE-2010-1665 and CVE-2010-1417: webkit commit #58201 http://code.google.com/p/chromium/issues/detail?id=42294 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-1417 CVE-2010-0651 and CVE-2010-0051: webkit commit #52784 http://code.google.com/p/chromium/issues/detail?id=9877 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0051 Would it be possible to force Google and Apple to coordinate better to avoid these dupes? This is creating unnecessary work and making it appear that webkit has a lot more issues than it really does. Thanks, Mike
Current thread:
- Webkit Dupes Michael Gilbert (Feb 05)
- Re: Webkit Dupes Steven M. Christey (Feb 17)
- Re: Webkit Dupes Michael Gilbert (Feb 18)
- Re: Webkit Dupes Steven M. Christey (Feb 17)