[Secure-testing-commits] r13494 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Tue Dec 8 21:14:25 UTC 2009
Author: joeyh
Date: 2009-12-08 21:14:25 +0000 (Tue, 08 Dec 2009)
New Revision: 13494
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-12-08 20:18:06 UTC (rev 13493)
+++ data/CVE/list 2009-12-08 21:14:25 UTC (rev 13494)
@@ -1,3 +1,25 @@
+CVE-2009-4224 (Multiple PHP remote file inclusion vulnerabilities in SweetRice 0.5.4, ...)
+ TODO: check
+CVE-2009-4223 (PHP remote file inclusion vulnerability in adm/krgourl.php in KR-Web ...)
+ TODO: check
+CVE-2009-4222 (phpBazar 2.1.1fix and earlier does not require administrative ...)
+ TODO: check
+CVE-2009-4221 (SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and ...)
+ TODO: check
+CVE-2009-4220 (PHP remote file inclusion vulnerability in ...)
+ TODO: check
+CVE-2009-4219 (Stack-based buffer overflow in the MYACTIVEX.MyActiveXCtrl.1 ActiveX ...)
+ TODO: check
+CVE-2009-4218 (Multiple SQL injection vulnerabilities in files/login.asp in JiRo's ...)
+ TODO: check
+CVE-2009-4217 (SQL injection vulnerability in the Itamar Elharar MusicGallery ...)
+ TODO: check
+CVE-2009-4216 (Directory traversal vulnerability in funzioni/lib/menulast.php in ...)
+ TODO: check
+CVE-2009-4215 (Panda Global Protection 2010, Internet Security 2010, and Antivirus ...)
+ TODO: check
+CVE-2009-4214 (Cross-site scripting (XSS) vulnerability in the strip_tags function in ...)
+ TODO: check
CVE-2009-4213
RESERVED
CVE-2009-4212
@@ -1690,6 +1712,7 @@
[lenny] - puppet <no-dsa> (minor issue)
CVE-2009-3563 [ntpd DoS]
RESERVED
+ {DSA-1948-1}
- ntp <unfixed> (medium; bug #560074)
CVE-2009-3562 (Cross-site scripting (XSS) vulnerability in Xerver HTTP Server 4.32 ...)
NOT-FOR-US: Xerver HTTP Server
More information about the Secure-testing-commits
mailing list