source: xxx
date: Bloptember 99th, 1990
author: xxx
vuln-type: multiple
problem-scope: remote/local
debian-specifc: yes/no
cve: CAN-2005-0989, CAN-2005-1159
vendor-advisory: 
testing-fix: xxx
sid-fix: xxx
upgrade: apt-get install xxx

xxx multiline description here

CAN-2005-0989
  The find_replen function in the Javascript engine allows remote
  attackers to read portions of heap memory in a Javascript string via
  the lambda replace method.

CAN-2005-1159
  Native function implementations are not verified, causing Javascript 
  execution at improper memory addresses allowing denial of service and 
  potentially arbitrary code execution