[Secure-testing-commits] r9736 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Wed Sep 3 21:14:11 UTC 2008 

Author: joeyh
Date: 2008-09-03 21:14:09 +0000 (Wed, 03 Sep 2008)
New Revision: 9736

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-09-03 21:02:25 UTC (rev 9735)
+++ data/CVE/list	2008-09-03 21:14:09 UTC (rev 9736)
@@ -1,3 +1,27 @@
+CVE-2008-3901 (Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, ...)
+	TODO: check
+CVE-2008-3900 (Intel firmware PE94510M.86A.0050.2007.0710.1559 stores pre-boot ...)
+	TODO: check
+CVE-2008-3899 (TrueCrypt 5.0 stores pre-boot authentication passwords in the BIOS ...)
+	TODO: check
+CVE-2008-3898 (Secu Star DriveCrypt Plus Pack 3.9 stores pre-boot authentication ...)
+	TODO: check
+CVE-2008-3897 (DiskCryptor 0.2.6 on Windows stores pre-boot authentication passwords ...)
+	TODO: check
+CVE-2008-3896 (Grub Legacy 0.97 and earlier stores pre-boot authentication passwords ...)
+	TODO: check
+CVE-2008-3895 (LILO 22.6.1 and earlier stores pre-boot authentication passwords in ...)
+	TODO: check
+CVE-2008-3894 (IBM Lenovo firmware 7CETB5WW 2.05 stores pre-boot authentication ...)
+	TODO: check
+CVE-2008-3893 (Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot ...)
+	TODO: check
+CVE-2008-3892 (Buffer overflow in a certain ActiveX control in the COM API in VMware ...)
+	TODO: check
+CVE-2008-3891 (The SAML Single Sign-On (SSO) Service for Google Apps allows remote ...)
+	TODO: check
+CVE-2008-3890
+	RESERVED
 CVE-2008-3888 (SQL injection vulnerability in members.asp in Mini-NUKE Freehost 2.3 ...)
 	NOT-FOR-US: Mini-NUKE Freehost
 CVE-2008-3887 (Multiple SQL injection vulnerabilities in index.php in dotProject ...)
@@ -220,10 +244,10 @@
 	NOT-FOR-US: WS_FTP Home
 CVE-2008-3793
 	RESERVED
-CVE-2008-3792
-	RESERVED
-CVE-2008-3791
-	RESERVED
+CVE-2008-3792 (net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) ...)
+	TODO: check
+CVE-2008-3791 (src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop ...)
+	TODO: check
 CVE-2008-3788 (Multiple SQL injection vulnerabilities in PICTURESPRO Photo Cart 3.9, ...)
 	NOT-FOR-US: PICTURESPRO Photo Cart 3.9
 CVE-2008-3787 (SQL injection vulnerability in listing_view.php in Web Directory ...)
@@ -513,22 +537,22 @@
 	NOT-FOR-US: Kayako SupportSuite
 CVE-2008-3700 (Multiple cross-site scripting (XSS) vulnerabilities in Kayako ...)
 	NOT-FOR-US: Kayako SupportSuite
-CVE-2008-3698
-	RESERVED
-CVE-2008-3697
-	RESERVED
-CVE-2008-3696
-	RESERVED
-CVE-2008-3695
-	RESERVED
-CVE-2008-3694
-	RESERVED
-CVE-2008-3693
-	RESERVED
-CVE-2008-3692
-	RESERVED
-CVE-2008-3691
-	RESERVED
+CVE-2008-3698 (Unspecified vulnerability in the OpenProcess function in VMware ...)
+	TODO: check
+CVE-2008-3697 (An unspecified ISAPI extension in VMware Server before 1.0.7 build ...)
+	TODO: check
+CVE-2008-3696 (Unspecified vulnerability in a certain ActiveX control in VMware ...)
+	TODO: check
+CVE-2008-3695 (Unspecified vulnerability in a certain ActiveX control in VMware ...)
+	TODO: check
+CVE-2008-3694 (Unspecified vulnerability in a certain ActiveX control in VMware ...)
+	TODO: check
+CVE-2008-3693 (Unspecified vulnerability in a certain ActiveX control in VMware ...)
+	TODO: check
+CVE-2008-3692 (Unspecified vulnerability in a certain ActiveX control in VMware ...)
+	TODO: check
+CVE-2008-3691 (Unspecified vulnerability in a certain ActiveX control in VMware ...)
+	TODO: check
 CVE-2008-3690
 	RESERVED
 CVE-2008-3689
@@ -889,12 +913,12 @@
 	RESERVED
 CVE-2008-3539
 	RESERVED
-CVE-2008-3538 (libxml2, possibly before 2.5.0, does not properly detect recursion ...)
+CVE-2008-3538 (Unspecified vulnerability in HP Enterprise Discovery 2.0 through 2.52 ...)
 	TODO: check
-CVE-2008-3537
-	RESERVED
-CVE-2008-3536
-	RESERVED
+CVE-2008-3537 (Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node ...)
+	TODO: check
+CVE-2008-3536 (Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node ...)
+	TODO: check
 CVE-2008-3535 (Off-by-one error in the iov_iter_advance function in mm/filemap.c in ...)
 	- linux-2.6 2.6.26-2
 	- linux-2.6.24 <unfixed>
@@ -921,8 +945,8 @@
 	RESERVED
 CVE-2008-3526 (Integer overflow in the sctp_setsockopt_auth_key function in ...)
 	TODO: check
-CVE-2008-3525
-	RESERVED
+CVE-2008-3525 (The sbni_ioctl function in drivers/net/wan/sbni.c in the wan subsystem ...)
+	TODO: check
 CVE-2008-3524
 	RESERVED
 CVE-2008-3523
@@ -1891,8 +1915,8 @@
 	- sun-java6 6-07-1 (bug #490260)
 CVE-2008-3102
 	RESERVED
-CVE-2008-3101
-	RESERVED
+CVE-2008-3101 (Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM ...)
+	TODO: check
 CVE-2008-3100 (Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve ...)
 	- owl-dms 0.95-1.1 (low; bug #493579)
 CVE-2008-3099
@@ -4154,8 +4178,8 @@
 	[etch] - bugzilla <no-dsa> (Minor issue)
 CVE-2008-2102
 	RESERVED
-CVE-2008-2101
-	RESERVED
+CVE-2008-2101 (The VMware Consolidated Backup (VCB) command-line utilities in VMware ...)
+	TODO: check
 CVE-2008-2100 (Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on ...)
 	- vmware-package <unfixed> (low; bug #485919)
 	[etch] - vmware-package <no-dsa> (Contrib not supported)

More information about the Secure-testing-commits mailing list