[Secure-testing-commits] r13494 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Dec 8 21:14:25 UTC 2009


Author: joeyh
Date: 2009-12-08 21:14:25 +0000 (Tue, 08 Dec 2009)
New Revision: 13494

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-12-08 20:18:06 UTC (rev 13493)
+++ data/CVE/list	2009-12-08 21:14:25 UTC (rev 13494)
@@ -1,3 +1,25 @@
+CVE-2009-4224 (Multiple PHP remote file inclusion vulnerabilities in SweetRice 0.5.4, ...)
+	TODO: check
+CVE-2009-4223 (PHP remote file inclusion vulnerability in adm/krgourl.php in KR-Web ...)
+	TODO: check
+CVE-2009-4222 (phpBazar 2.1.1fix and earlier does not require administrative ...)
+	TODO: check
+CVE-2009-4221 (SQL injection vulnerability in classified.php in phpBazar 2.1.1fix and ...)
+	TODO: check
+CVE-2009-4220 (PHP remote file inclusion vulnerability in ...)
+	TODO: check
+CVE-2009-4219 (Stack-based buffer overflow in the MYACTIVEX.MyActiveXCtrl.1 ActiveX ...)
+	TODO: check
+CVE-2009-4218 (Multiple SQL injection vulnerabilities in files/login.asp in JiRo's ...)
+	TODO: check
+CVE-2009-4217 (SQL injection vulnerability in the Itamar Elharar MusicGallery ...)
+	TODO: check
+CVE-2009-4216 (Directory traversal vulnerability in funzioni/lib/menulast.php in ...)
+	TODO: check
+CVE-2009-4215 (Panda Global Protection 2010, Internet Security 2010, and Antivirus ...)
+	TODO: check
+CVE-2009-4214 (Cross-site scripting (XSS) vulnerability in the strip_tags function in ...)
+	TODO: check
 CVE-2009-4213
 	RESERVED
 CVE-2009-4212
@@ -1690,6 +1712,7 @@
 	[lenny] - puppet <no-dsa> (minor issue)
 CVE-2009-3563 [ntpd DoS]
 	RESERVED
+	{DSA-1948-1}
 	- ntp <unfixed> (medium; bug #560074)
 CVE-2009-3562 (Cross-site scripting (XSS) vulnerability in Xerver HTTP Server 4.32 ...)
 	NOT-FOR-US: Xerver HTTP Server




More information about the Secure-testing-commits mailing list