[Secure-testing-commits] r12490 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Aug 5 21:14:16 UTC 2009 

Author: joeyh
Date: 2009-08-05 21:14:16 +0000 (Wed, 05 Aug 2009)
New Revision: 12490

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-08-05 19:34:03 UTC (rev 12489)
+++ data/CVE/list	2009-08-05 21:14:16 UTC (rev 12490)
@@ -1,3 +1,21 @@
+CVE-2009-2665 (The nsDocument::SetScriptGlobalObject function in ...)
+	TODO: check
+CVE-2009-2664 (The js_watch_set function in js/src/jsdbgapi.cpp in the JavaScript ...)
+	TODO: check
+CVE-2009-2663 (libvorbis before r16182, as used in Mozilla Firefox before 3.0.13 and ...)
+	TODO: check
+CVE-2009-2662 (The browser engine in Mozilla Firefox before 3.0.13, and 3.5.x before ...)
+	TODO: check
+CVE-2009-2661 (The asn1_length function in strongSwan 2.8 before 2.8.11, 4.2 before ...)
+	TODO: check
+CVE-2009-2660 (Multiple integer overflows in CamlImages 2.2 might allow ...)
+	TODO: check
+CVE-2009-2659 (The Admin media handler in core/servers/basehttp.py in Django 1.0 and ...)
+	TODO: check
+CVE-2009-2658 (Directory traversal vulnerability in ZNC before 0.072 allows remote ...)
+	TODO: check
+CVE-2009-2657 (nilfs-utils before 2.0.14 installs multiple programs with unnecessary ...)
+	TODO: check
 CVE-2009-2656 (Unspecified vulnerability in the com.android.phone process in Android ...)
 	NOT-FOR-US: Android
 CVE-2008-6896 (login.php in 3CX Phone System 6.0.806.0, when 100% disk capacity is ...)
@@ -22,7 +40,7 @@
 	NOTE: Posting on full-disclosure contains details
 CVE-2009-2655 (mshtml.dll in Microsoft Internet Explorer 7 and 8 on Windows XP SP3 ...)
 	NOT-FOR-US: Microsoft Internet Explorer
-CVE-2009-2654 (Mozilla Firefox 3.5.1 and earlier allows remote attackers to spoof the ...)
+CVE-2009-2654 (Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote ...)
 	- xulrunner <unfixed> (low; bug #539891)
 CVE-2009-2653 (** DISPUTED ** ...)
 	NOT-FOR-US: Microsoft Windows
@@ -482,8 +500,8 @@
 	- xulrunner 1.9.0.12-1
 	[etch] - xulrunner <no-dsa> (Mozilla packages from oldstable no longer covered by security support)
 	NOTE: http://www.mozilla.org/security/announce/2009/mfsa2009-39.html
-CVE-2009-2470
-	RESERVED
+CVE-2009-2470 (Mozilla Firefox before 3.0.12, and 3.5.x before 3.5.2, allows remote ...)
+	TODO: check
 CVE-2009-2469 (Mozilla Firefox before 3.0.12 does not properly handle an SVG element ...)
 	{DSA-1840-1}
 	- xulrunner 1.9.0.12-1
@@ -1274,8 +1292,8 @@
 	RESERVED
 CVE-2009-2199
 	RESERVED
-CVE-2009-2198
-	RESERVED
+CVE-2009-2198 (Apple GarageBand before 5.1 reconfigures Safari to accept all cookies ...)
+	TODO: check
 CVE-2009-2197
 	RESERVED
 CVE-2009-2196

More information about the Secure-testing-commits mailing list