[Secure-testing-commits] r9960 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Thu Oct 2 21:14:37 UTC 2008


Author: joeyh
Date: 2008-10-02 21:14:34 +0000 (Thu, 02 Oct 2008)
New Revision: 9960

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-10-02 16:08:52 UTC (rev 9959)
+++ data/CVE/list	2008-10-02 21:14:34 UTC (rev 9960)
@@ -1,3 +1,61 @@
+CVE-2008-4395
+	RESERVED
+CVE-2008-4394
+	RESERVED
+CVE-2008-4393
+	RESERVED
+CVE-2008-4392
+	RESERVED
+CVE-2008-4391
+	RESERVED
+CVE-2008-4390
+	RESERVED
+CVE-2008-4389
+	RESERVED
+CVE-2008-4388
+	RESERVED
+CVE-2008-4387
+	RESERVED
+CVE-2008-4386
+	RESERVED
+CVE-2008-4385
+	RESERVED
+CVE-2008-4384
+	RESERVED
+CVE-2008-4383
+	RESERVED
+CVE-2008-4382 (Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2008-4381 (Microsoft Internet Explorer 7 allows remote attackers to cause a ...)
+	TODO: check
+CVE-2008-4380 (The web interface in Samsung DVR SHR2040 allows remote attackers to ...)
+	TODO: check
+CVE-2008-4379 (Cross-site scripting (XSS) vulnerability in report.php in Mr. CGI Guy ...)
+	TODO: check
+CVE-2008-4378 (SQL injection vulnerability in report.php in Mr. CGI Guy Hot Links ...)
+	TODO: check
+CVE-2008-4377 (SQL injection vulnerability in index.asp in Creative Mind Creator CMS ...)
+	TODO: check
+CVE-2008-4376 (SQL injection vulnerability in index.php in Live TV Script allows ...)
+	TODO: check
+CVE-2008-4375 (SQL injection vulnerability in viewprofile.php in Availscript ...)
+	TODO: check
+CVE-2008-4374 (SQL injection vulnerability in index.php in CMS Buzz allows remote ...)
+	TODO: check
+CVE-2008-4373 (SQL injection vulnerability in job_seeker/applynow.php in AvailScript ...)
+	TODO: check
+CVE-2008-4372 (Cross-site scripting (XSS) vulnerability in articles.php in ...)
+	TODO: check
+CVE-2008-4371 (SQL injection vulnerability in articles.php in AvailScript Article ...)
+	TODO: check
+CVE-2008-4370 (Multiple cross-site scripting (XSS) vulnerabilities in Availscript ...)
+	TODO: check
+CVE-2008-4369 (SQL injection vulnerability in pics.php in Availscript Photo Album ...)
+	TODO: check
+CVE-2008-4368 (The default configuration of Java 1.5 on Apple Mac OS X 10.5.4 and ...)
+	TODO: check
+CVE-2008-4367
+	RESERVED
 CVE-2008-XXXX [liquidsoap: insecure temp file]
 	- liquidsoap <unfixed> (low; bug #496360)
 CVE-2008-XXXX [openswan kernel patch: insecure temp file]
@@ -1989,8 +2047,8 @@
 	RESERVED
 CVE-2008-3543
 	RESERVED
-CVE-2008-3542
-	RESERVED
+CVE-2008-3542 (Unspecified vulnerability in HP Insight Diagnostics before 7.9.1.2402 ...)
+	TODO: check
 CVE-2008-3541
 	RESERVED
 CVE-2008-3540
@@ -2042,14 +2100,11 @@
 	TODO: check
 CVE-2008-3523
 	RESERVED
-CVE-2008-3522 [jasper - buffer overflow]
-	RESERVED
+CVE-2008-3522 (Buffer overflow in the jas_stream_printf function in ...)
 	- jasper <unfixed>
-CVE-2008-3521 [jasper - tmp race]
-	RESERVED
+CVE-2008-3521 (The jas_stream_tmpfile function in libjasper/base/jas_stream.c in ...)
 	- jasper <unfixed>
-CVE-2008-3520 [jasper - various potential integer overflows]
-	RESERVED
+CVE-2008-3520 (Multiple integer overflows in JasPer 1.900.1 might allow ...)
 	- jasper <unfixed>
 CVE-2008-3519 (The default configuration of the JBossAs component in Red Hat JBoss ...)
 	- jbossas4 <not-affected> (configuration not yet included in Debian package)
@@ -3623,8 +3678,8 @@
 	NOT-FOR-US: le.cms
 CVE-2008-2832 (Unrestricted file upload vulnerability in calendar_admin.asp in Full ...)
 	NOT-FOR-US: aspWebCalendar 2008
-CVE-2008-2831
-	RESERVED
+CVE-2008-2831 (Multiple cross-site scripting (XSS) vulnerabilities in the delegated ...)
+	TODO: check
 CVE-2008-2830 (Open Scripting Architecture in Apple Mac OS X 10.4.11 and 10.5.4, and ...)
 	NOT-FOR-US: Apple Mac OS
 CVE-2008-2829 (php_imap.c in PHP 5.2.5, 5.2.6, 4.x, and other versions, uses obsolete ...)




More information about the Secure-testing-commits mailing list