[Secure-testing-commits] r12482 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Aug 4 21:14:18 UTC 2009 

Author: joeyh
Date: 2009-08-04 21:14:18 +0000 (Tue, 04 Aug 2009)
New Revision: 12482

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-04 20:53:16 UTC (rev 12481)
+++ data/CVE/list	2009-08-04 21:14:18 UTC (rev 12482)
@@ -1,3 +1,15 @@
+CVE-2009-2656 (Unspecified vulnerability in the com.android.phone process in Android ...)
+	TODO: check
+CVE-2008-6896 (login.php in 3CX Phone System 6.0.806.0, when 100% disk capacity is ...)
+	TODO: check
+CVE-2008-6895 (3CX Phone System 6.0.806.0 allows remote attackers to cause a denial ...)
+	TODO: check
+CVE-2008-6894 (Multiple cross-site scripting (XSS) vulnerabilities in login.php in ...)
+	TODO: check
+CVE-2008-6893 (Cross-site scripting (XSS) vulnerability in Alt-N MDaemon WorldClient ...)
+	TODO: check
+CVE-2008-6892 (SQL injection vulnerability in lire/index.php in Peel 3.1 allows ...)
+	TODO: check
 CVE-2009-XXXX [linux-2.6: information disclosure to user space on 64-bit hosts]
 	- linux-2.6 <unfixed> (low)
 	- linux-2.6.24 <removed>
@@ -11,7 +23,7 @@
 CVE-2009-2655 (mshtml.dll in Microsoft Internet Explorer 7 and 8 on Windows XP SP3 ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2009-2654 (Mozilla Firefox 3.5.1 and earlier allows remote attackers to spoof the ...)
-	 - xulrunner <unfixed> (low; bug #539891)
+	- xulrunner <unfixed> (low; bug #539891)
 CVE-2009-2653 (** DISPUTED ** ...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2009-2652 (Unspecified vulnerability in Solaris Trusted Extensions in Sun Solaris ...)
@@ -698,7 +710,7 @@
 CVE-2009-2405
 	RESERVED
 CVE-2009-2404 (Heap-based buffer overflow in a regular-expression parser in Mozilla ...)
-	 - nss 3.12.3-1 (low; bug #539934) 
+	- nss 3.12.3-1 (low; bug #539934) 
 CVE-2009-2403 (Heap-based buffer overflow in SCMPX 1.5.1 allows remote attackers to ...)
 	NOT-FOR-US: SCMPX
 CVE-2009-2402 (SQL injection vulnerability in index.php in the forum module in ...)
@@ -899,7 +911,8 @@
 	NOT-FOR-US: Axesstel MV 410R
 CVE-2009-2316 (Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli ...)
 	NOT-FOR-US: IBM Tivoli
-CVE-2009-2315 (Unspecified vulnerability in Apple iPhone OS allows remote attackers ...)
+CVE-2009-2315
+	REJECTED
 	NOT-FOR-US: Apple iPhone OS
 CVE-2009-2314 (Race condition in the Sun Lightweight Availability Collection Tool 3.0 ...)
 	NOT-FOR-US: Lightweight Availability Collection Tool
@@ -1242,8 +1255,8 @@
 	RESERVED
 CVE-2009-2205
 	RESERVED
-CVE-2009-2204
-	RESERVED
+CVE-2009-2204 (Unspecified vulnerability in the CoreTelephony component in Apple ...)
+	TODO: check
 CVE-2009-2203
 	RESERVED
 CVE-2009-2202

More information about the Secure-testing-commits mailing list