[Secure-testing-commits] r5515 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Tue Mar 6 10:14:16 CET 2007
Author: joeyh
Date: 2007-03-06 09:14:13 +0000 (Tue, 06 Mar 2007)
New Revision: 5515
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-03-06 09:10:53 UTC (rev 5514)
+++ data/CVE/list 2007-03-06 09:14:13 UTC (rev 5515)
@@ -1,3 +1,73 @@
+CVE-2007-1282 (Integer overflow in Mozilla Thunderbird before 1.5.0.10 and SeaMonkey ...)
+ TODO: check
+CVE-2007-1281 (Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux ...)
+ TODO: check
+CVE-2007-1280
+ RESERVED
+CVE-2007-1279
+ RESERVED
+CVE-2007-1278
+ RESERVED
+CVE-2007-1277 (WordPress 2.1.1, as downloaded from some official distribution sites ...)
+ TODO: check
+CVE-2007-1276 (Multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi in ...)
+ TODO: check
+CVE-2007-1275
+ RESERVED
+CVE-2007-1274
+ RESERVED
+CVE-2006-7134 (Unrestricted file upload vulnerability in main_user.php in Upload Tool ...)
+ TODO: check
+CVE-2006-7133 (Directory traversal vulnerability in upload/bin/download.php in Upload ...)
+ TODO: check
+CVE-2006-7132 (Directory traversal vulnerability in pmd-config.php in PHPMyDesk ...)
+ TODO: check
+CVE-2006-7131 (PHP remote file inclusion vulnerability in extras/mt.php in Jinzora ...)
+ TODO: check
+CVE-2006-7130 (PHP remote file inclusion vulnerability in ...)
+ TODO: check
+CVE-2006-7129 (ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier ...)
+ TODO: check
+CVE-2006-7128 (PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 ...)
+ TODO: check
+CVE-2006-7127 (Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 ...)
+ TODO: check
+CVE-2006-7126 (SQL injection vulnerability in Joomla BSQ Sitestats 1.8.0 and 2.2.1 ...)
+ TODO: check
+CVE-2006-7125 (Cross-site scripting (XSS) vulnerability in Joomla BSQ Sitestats 1.8.0 ...)
+ TODO: check
+CVE-2006-7124 (PHP remote file inclusion vulnerability in external/rssfeeds.php in ...)
+ TODO: check
+CVE-2006-7123 (Multiple SQL injection vulnerabilities in BSQ Sitestats (component for ...)
+ TODO: check
+CVE-2006-7122 (Cross-site scripting (XSS) vulnerability in the IP Address Lookup ...)
+ TODO: check
+CVE-2006-7121 (The HTTP server in Linksys SPA-921 VoIP Desktop Phone allows remote ...)
+ TODO: check
+CVE-2006-7120 (** DISPUTED ** ...)
+ TODO: check
+CVE-2006-7119 (PHP remote file inclusion vulnerability in kernel/system/startup.php ...)
+ TODO: check
+CVE-2006-7118 (SQL injection vulnerability in index.asp in DMXReady Site Engine ...)
+ TODO: check
+CVE-2006-7117 (Multiple directory traversal vulnerabilities in Kubix 0.7 and earlier ...)
+ TODO: check
+CVE-2006-7116 (SQL injection vulnerability in includes/functions.php in Kubix 0.7 and ...)
+ TODO: check
+CVE-2006-7115 (SQL injection vulnerability in PHPKit 1.6.1 RC2 allows remote ...)
+ TODO: check
+CVE-2006-7114 (P-News 2.0 stores db/user.txt under the web document root with ...)
+ TODO: check
+CVE-2006-7113 (Unrestricted file upload vulnerability in P-News 2.0 allows remote ...)
+ TODO: check
+CVE-2006-7112 (Directory traversal vulnerability in error.php in MD-Pro 1.0.76 and ...)
+ TODO: check
+CVE-2006-7111 (Unspecified vulnerability in Futomi's CGI Cafe KMail CGI 1.0.3 and ...)
+ TODO: check
+CVE-2006-7110 (Directory traversal vulnerability in the delete function in IMCE ...)
+ TODO: check
+CVE-2006-7109 (Unrestricted file upload vulnerability in IMCE before 1.6, a Drupal ...)
+ TODO: check
CVE-2007-XXXX [buffer overruns in GIT's http-push.c, fixed in 1.5.0.3]
- git-core <unfixed> (bug #413629; low)
CVE-2007-1273
@@ -538,7 +608,8 @@
NOT-FOR-US: Hot Links
CVE-2006-7085 (Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers ...)
NOT-FOR-US: Rigter Portal System
-CVE-2006-7084 (Directory traversal vulnerability in index.php in Rigter Portal System ...)
+CVE-2006-7084
+ REJECTED
NOT-FOR-US: Rigter Portal System
CVE-2006-7083 (Directory traversal vulnerability in index.php in Rigter Portal System ...)
NOT-FOR-US: Rigter Portal System
@@ -792,8 +863,8 @@
[sarge] - mozilla-tunderbird <unfixed> (low)
[sarge] - mozilla-firefox <unfixed> (low)
[sarge] - mozilla <unfixed> (low)
-CVE-2007-0994
- RESERVED
+CVE-2007-0994 (A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x ...)
+ TODO: check
CVE-2007-0993
RESERVED
CVE-2007-0992
@@ -1586,22 +1657,22 @@
RESERVED
CVE-2007-0719
RESERVED
-CVE-2007-0718
- RESERVED
-CVE-2007-0717
- RESERVED
-CVE-2007-0716
- RESERVED
-CVE-2007-0715
- RESERVED
-CVE-2007-0714
- RESERVED
-CVE-2007-0713
- RESERVED
-CVE-2007-0712
- RESERVED
-CVE-2007-0711
- RESERVED
+CVE-2007-0718 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+ TODO: check
+CVE-2007-0717 (Integer overflow in Apple QuickTime before 7.1.5 allows remote ...)
+ TODO: check
+CVE-2007-0716 (Stack-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+ TODO: check
+CVE-2007-0715 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+ TODO: check
+CVE-2007-0714 (Integer overflow in Apple QuickTime before 7.1.5 allows remote ...)
+ TODO: check
+CVE-2007-0713 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+ TODO: check
+CVE-2007-0712 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+ TODO: check
+CVE-2007-0711 (Integer overflow in Apple QuickTime before 7.1.5, when installed on ...)
+ TODO: check
CVE-2007-0710 (The Bonjour functionality in iChat in Apple Mac OS X 10.3.9 allows remote ...)
NOT-FOR-US: Apple iChat
CVE-2007-0709 (cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) ...)
More information about the Secure-testing-commits
mailing list