[Secure-testing-commits] r12435 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Jul 28 21:14:16 UTC 2009 

Author: joeyh
Date: 2009-07-28 21:14:16 +0000 (Tue, 28 Jul 2009)
New Revision: 12435

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-07-28 20:08:02 UTC (rev 12434)
+++ data/CVE/list	2009-07-28 21:14:16 UTC (rev 12435)
@@ -1,6 +1,60 @@
+CVE-2009-2619 (SQL injection vulnerability in login.asp in DataCheck Solutions ...)
+	TODO: check
+CVE-2009-2618 (SQL injection vulnerability in the Surveys (aka NS-Polls) module in ...)
+	TODO: check
+CVE-2009-2617 (Stack-based buffer overflow in medialib.dll in BaoFeng Storm 3.9.62 ...)
+	TODO: check
+CVE-2009-2616 (SQL injection vulnerability in z_admin_login.asp in DataCheck ...)
+	TODO: check
+CVE-2009-2615 (Multiple cross-site scripting (XSS) vulnerabilities in DataCheck ...)
+	TODO: check
+CVE-2009-2614 (SQL injection vulnerability in z_admin_login.asp in DataCheck ...)
+	TODO: check
+CVE-2009-2613 (Multiple cross-site scripting (XSS) vulnerabilities in DataCheck ...)
+	TODO: check
+CVE-2009-2612 (SQL injection vulnerability in login.aspx in ProSMDR allows remote ...)
+	TODO: check
+CVE-2009-2611 (Directory traversal vulnerability in ...)
+	TODO: check
+CVE-2009-2610 (Cross-site scripting (XSS) vulnerability in the Links Related module ...)
+	TODO: check
+CVE-2009-2609 (SQL injection vulnerability in the amoCourse (com_amocourse) component ...)
+	TODO: check
+CVE-2009-2608 (Multiple SQL injection vulnerabilities in PHP Address Book 4.0.x allow ...)
+	TODO: check
+CVE-2009-2607 (SQL injection vulnerability in the com_pinboard component for Joomla! ...)
+	TODO: check
+CVE-2009-2606 (ASP Football Pool 2.3 stores sensitive information under the web root ...)
+	TODO: check
+CVE-2009-2605 (Multiple SQL injection vulnerabilities in adminquery.php in Traidnt Up ...)
+	TODO: check
+CVE-2009-2604 (Multiple SQL injection vulnerabilities in adminlogin.asp in Zen Help ...)
+	TODO: check
+CVE-2009-2603 (Multiple SQL injection vulnerabilities in index.php in Escon ...)
+	TODO: check
+CVE-2009-2602 (R2 Newsletter Lite, Pro, and Stats stores sensitive information under ...)
+	TODO: check
+CVE-2009-2601 (SQL injection vulnerability in the Joomlaequipment (aka JUser or ...)
+	TODO: check
+CVE-2009-2600 (Multiple directory traversal vulnerabilities in view.php in Webboard ...)
+	TODO: check
+CVE-2009-2599 (SQL injection vulnerability in index.php in RadCLASSIFIEDS Gold 2.0 ...)
+	TODO: check
+CVE-2009-2598 (Multiple SQL injection vulnerabilities in Online Grades & Attendance ...)
+	TODO: check
+CVE-2009-2597 (The Sun Java System (SJS) Access Manager Policy Agent module 2.2 for ...)
+	TODO: check
+CVE-2009-2596 (Unspecified vulnerability in the Solaris Auditing subsystem in Sun ...)
+	TODO: check
+CVE-2008-6878 (** DISPUTED ** Directory traversal vulnerability in ...)
+	TODO: check
+CVE-2008-6877 (** DISPUTED ** ...)
+	TODO: check
 CVE-2009-2622 [squid3 DoS because of missing bounds checks]
+	{DSA-1843-1}
 	- squid3 <unfixed> (medium; bug #538989)
 CVE-2009-2621 [squid3 DoS because of insufficient input validation from req/resp]
+	{DSA-1843-1}
 	- squid3 <unfixed> (medium; bug #538989)
 CVE-2009-2595 (Cross-site scripting (XSS) vulnerability in productSearch.html in ...)
 	NOT-FOR-US: Censura
@@ -2248,12 +2302,15 @@
 	RESERVED
 CVE-2009-1722 [openexr]
 	RESERVED
+	{DSA-1842-1}
 	- openexr <unfixed>
 CVE-2009-1721 [openexr]
 	RESERVED
+	{DSA-1842-1}
 	- openexr <unfixed>
 CVE-2009-1720 [openexr]
 	RESERVED
+	{DSA-1842-1}
 	- openexr <unfixed>
 CVE-2009-1719 (The Aqua Look and Feel for Java implementation in Java 1.5 on Mac OS X ...)
 	NOT-FOR-US: Aqua Look and Feel for Java implementation in Java 1.5 on Mac OS X
@@ -4265,7 +4322,7 @@
 	NOT-FOR-US: Jack (tR) Jax LinkLists 
 CVE-2008-6561 (Citrix Presentation Server Client for Windows before 10.200 does not ...)
 	NOT-FOR-US: Citrix
-CVE-2007-6724 (Vidalia bundle before 0.1.2.18, when running on Windows and Mac OS X, ...)
+CVE-2007-6724 (Vidalia bundle before 0.1.2.18, when running on Windows, installs ...)
 	NOT-FOR-US: Vidalia
 CVE-2007-6723 (TorK before 0.22, when running on Windows and Mac OS X, installs ...)
 	- tork <not-affected> (Affects only Windows and MacOS)

More information about the Secure-testing-commits mailing list