[Secure-testing-commits] r5515 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Mar 6 10:14:16 CET 2007


Author: joeyh
Date: 2007-03-06 09:14:13 +0000 (Tue, 06 Mar 2007)
New Revision: 5515

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-03-06 09:10:53 UTC (rev 5514)
+++ data/CVE/list	2007-03-06 09:14:13 UTC (rev 5515)
@@ -1,3 +1,73 @@
+CVE-2007-1282 (Integer overflow in Mozilla Thunderbird before 1.5.0.10 and SeaMonkey ...)
+	TODO: check
+CVE-2007-1281 (Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux ...)
+	TODO: check
+CVE-2007-1280
+	RESERVED
+CVE-2007-1279
+	RESERVED
+CVE-2007-1278
+	RESERVED
+CVE-2007-1277 (WordPress 2.1.1, as downloaded from some official distribution sites ...)
+	TODO: check
+CVE-2007-1276 (Multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi in ...)
+	TODO: check
+CVE-2007-1275
+	RESERVED
+CVE-2007-1274
+	RESERVED
+CVE-2006-7134 (Unrestricted file upload vulnerability in main_user.php in Upload Tool ...)
+	TODO: check
+CVE-2006-7133 (Directory traversal vulnerability in upload/bin/download.php in Upload ...)
+	TODO: check
+CVE-2006-7132 (Directory traversal vulnerability in pmd-config.php in PHPMyDesk ...)
+	TODO: check
+CVE-2006-7131 (PHP remote file inclusion vulnerability in extras/mt.php in Jinzora ...)
+	TODO: check
+CVE-2006-7130 (PHP remote file inclusion vulnerability in ...)
+	TODO: check
+CVE-2006-7129 (ISS BlackICE PC Protection 3.6 cpj and cpu, and possibly earlier ...)
+	TODO: check
+CVE-2006-7128 (PHP remote file inclusion vulnerability in forum/forum.php JAF CMS 4.0 ...)
+	TODO: check
+CVE-2006-7127 (Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 ...)
+	TODO: check
+CVE-2006-7126 (SQL injection vulnerability in Joomla BSQ Sitestats 1.8.0 and 2.2.1 ...)
+	TODO: check
+CVE-2006-7125 (Cross-site scripting (XSS) vulnerability in Joomla BSQ Sitestats 1.8.0 ...)
+	TODO: check
+CVE-2006-7124 (PHP remote file inclusion vulnerability in external/rssfeeds.php in ...)
+	TODO: check
+CVE-2006-7123 (Multiple SQL injection vulnerabilities in BSQ Sitestats (component for ...)
+	TODO: check
+CVE-2006-7122 (Cross-site scripting (XSS) vulnerability in the IP Address Lookup ...)
+	TODO: check
+CVE-2006-7121 (The HTTP server in Linksys SPA-921 VoIP Desktop Phone allows remote ...)
+	TODO: check
+CVE-2006-7120 (** DISPUTED ** ...)
+	TODO: check
+CVE-2006-7119 (PHP remote file inclusion vulnerability in kernel/system/startup.php ...)
+	TODO: check
+CVE-2006-7118 (SQL injection vulnerability in index.asp in DMXReady Site Engine ...)
+	TODO: check
+CVE-2006-7117 (Multiple directory traversal vulnerabilities in Kubix 0.7 and earlier ...)
+	TODO: check
+CVE-2006-7116 (SQL injection vulnerability in includes/functions.php in Kubix 0.7 and ...)
+	TODO: check
+CVE-2006-7115 (SQL injection vulnerability in PHPKit 1.6.1 RC2 allows remote ...)
+	TODO: check
+CVE-2006-7114 (P-News 2.0 stores db/user.txt under the web document root with ...)
+	TODO: check
+CVE-2006-7113 (Unrestricted file upload vulnerability in P-News 2.0 allows remote ...)
+	TODO: check
+CVE-2006-7112 (Directory traversal vulnerability in error.php in MD-Pro 1.0.76 and ...)
+	TODO: check
+CVE-2006-7111 (Unspecified vulnerability in Futomi's CGI Cafe KMail CGI 1.0.3 and ...)
+	TODO: check
+CVE-2006-7110 (Directory traversal vulnerability in the delete function in IMCE ...)
+	TODO: check
+CVE-2006-7109 (Unrestricted file upload vulnerability in IMCE before 1.6, a Drupal ...)
+	TODO: check
 CVE-2007-XXXX [buffer overruns in GIT's http-push.c, fixed in 1.5.0.3]
 	- git-core <unfixed> (bug #413629; low)
 CVE-2007-1273
@@ -538,7 +608,8 @@
 	NOT-FOR-US: Hot Links
 CVE-2006-7085 (Rigter Portal System (RPS) 1.0, 2.0, and 3.0 allows remote attackers ...)
 	NOT-FOR-US: Rigter Portal System
-CVE-2006-7084 (Directory traversal vulnerability in index.php in Rigter Portal System ...)
+CVE-2006-7084
+	REJECTED
 	NOT-FOR-US: Rigter Portal System
 CVE-2006-7083 (Directory traversal vulnerability in index.php in Rigter Portal System ...)
 	NOT-FOR-US: Rigter Portal System
@@ -792,8 +863,8 @@
 	[sarge] - mozilla-tunderbird <unfixed> (low)
 	[sarge] - mozilla-firefox <unfixed> (low)
 	[sarge] - mozilla <unfixed> (low)
-CVE-2007-0994
-	RESERVED
+CVE-2007-0994 (A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x ...)
+	TODO: check
 CVE-2007-0993
 	RESERVED
 CVE-2007-0992
@@ -1586,22 +1657,22 @@
 	RESERVED
 CVE-2007-0719
 	RESERVED
-CVE-2007-0718
-	RESERVED
-CVE-2007-0717
-	RESERVED
-CVE-2007-0716
-	RESERVED
-CVE-2007-0715
-	RESERVED
-CVE-2007-0714
-	RESERVED
-CVE-2007-0713
-	RESERVED
-CVE-2007-0712
-	RESERVED
-CVE-2007-0711
-	RESERVED
+CVE-2007-0718 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+	TODO: check
+CVE-2007-0717 (Integer overflow in Apple QuickTime before 7.1.5 allows remote ...)
+	TODO: check
+CVE-2007-0716 (Stack-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+	TODO: check
+CVE-2007-0715 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+	TODO: check
+CVE-2007-0714 (Integer overflow in Apple QuickTime before 7.1.5 allows remote ...)
+	TODO: check
+CVE-2007-0713 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+	TODO: check
+CVE-2007-0712 (Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows ...)
+	TODO: check
+CVE-2007-0711 (Integer overflow in Apple QuickTime before 7.1.5, when installed on ...)
+	TODO: check
 CVE-2007-0710 (The Bonjour functionality in iChat in Apple Mac OS X 10.3.9 allows remote ...)
 	NOT-FOR-US: Apple iChat
 CVE-2007-0709 (cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) ...)




More information about the Secure-testing-commits mailing list