[Secure-testing-commits] r13356 - data/CVE

Mon Nov 23 21:14:17 UTC 2009

Author: joeyh
Date: 2009-11-23 21:14:17 +0000 (Mon, 23 Nov 2009)
New Revision: 13356

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-11-23 18:34:06 UTC (rev 13355)
+++ data/CVE/list	2009-11-23 21:14:17 UTC (rev 13356)
@@ -1,3 +1,67 @@
+CVE-2009-4046 (Multiple SQL injection vulnerabilities in FrontAccounting (FA) 2.2.x ...)
+	TODO: check
+CVE-2009-4045 (Multiple SQL injection vulnerabilities in FrontAccounting (FA) before ...)
+	TODO: check
+CVE-2009-4044 (The Web Services module 6.x for Drupal does not perform the expected ...)
+	TODO: check
+CVE-2009-4043 (Cross-site scripting (XSS) vulnerability in the AddToAny module 5.x ...)
+	TODO: check
+CVE-2009-4042 (Cross-site scripting (XSS) vulnerability in the RootCandy theme 6.x ...)
+	TODO: check
+CVE-2009-4041 (UseBB 1.0.9 before 1.0.10 allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2009-4040 (Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.0.17 and ...)
+	TODO: check
+CVE-2009-4039 (Cross-site scripting (XSS) vulnerability in Piwigo before 2.0.6 allows ...)
+	TODO: check
+CVE-2009-4038 (Multiple cross-site scripting (XSS) vulnerabilities in NCH Software ...)
+	TODO: check
+CVE-2009-4037 (Multiple SQL injection vulnerabilities in FrontAccounting (FA) before ...)
+	TODO: check
+CVE-2009-4036
+	RESERVED
+CVE-2009-4035
+	RESERVED
+CVE-2009-4034
+	RESERVED
+CVE-2009-4033
+	RESERVED
+CVE-2009-4032
+	RESERVED
+CVE-2009-4031
+	RESERVED
+CVE-2009-4030
+	RESERVED
+CVE-2009-4029
+	RESERVED
+CVE-2009-4028
+	RESERVED
+CVE-2009-4027
+	RESERVED
+CVE-2009-4026
+	RESERVED
+CVE-2009-4025
+	RESERVED
+CVE-2009-4024
+	RESERVED
+CVE-2009-4023
+	RESERVED
+CVE-2009-4022
+	RESERVED
+CVE-2009-4021
+	RESERVED
+CVE-2009-4020
+	RESERVED
+CVE-2009-4019
+	RESERVED
+CVE-2009-4018
+	RESERVED
+CVE-2009-4017
+	RESERVED
+CVE-2005-4883 (Race condition in Philippe Jounin Tftpd32 before 2.80 allows remote ...)
+	TODO: check
+CVE-2005-4882 (tftpd in Philippe Jounin Tftpd32 2.74 and earlier, as used in Wyse ...)
+	TODO: check
 CVE-2009-4016
 	RESERVED
 CVE-2009-4015
@@ -288,8 +352,7 @@
 CVE-2009-3896
 	RESERVED
 	{DSA-1920-1}
-CVE-2009-3895 [libexif heap buffer overflow when processing certain images]
-	RESERVED
+CVE-2009-3895 (Heap-based buffer overflow in the exif_entry_fix function (aka the tag ...)
 	- libexif 0.6.19-1 (medium; bug #557137)
 	NOTE: it is said that only 0.6.18 is affected
 	NOTE: http://article.gmane.org/gmane.comp.graphics.libexif.devel/806
@@ -399,8 +462,8 @@
 	RESERVED
 CVE-2009-3843
 	RESERVED
-CVE-2009-3842
-	RESERVED
+CVE-2009-3842 (Unspecified vulnerability on the HP Color LaserJet M3530 Multifunction ...)
+	TODO: check
 CVE-2009-3841 (Unspecified vulnerability in HP Discovery &amp; Dependency Mapping ...)
 	NOT-FOR-US: HP Discovery & Dependency Mapping
 CVE-2009-3840 (The embedded database engine service (aka ovdbrun.exe) in HP OpenView ...)
@@ -1584,8 +1647,8 @@
 	RESERVED
 CVE-2009-3387
 	RESERVED
-CVE-2009-3386
-	RESERVED
+CVE-2009-3386 (Template.pm in Bugzilla 3.3.2 through 3.4.3 and 3.5 through 3.5.1 ...)
+	TODO: check
 CVE-2009-3385
 	RESERVED
 CVE-2009-3384 (Multiple unspecified vulnerabilities in WebKit in Apple Safari before ...)
@@ -2559,8 +2622,8 @@
 	NOT-FOR-US: Snow Hall Silurus System
 CVE-2009-3081 (SQL injection vulnerability in index.php in Uiga Church Portal allows ...)
 	NOT-FOR-US: Uiga Church Portal
-CVE-2009-3080
-	RESERVED
+CVE-2009-3080 (Array index error in the gdth_read_event function in ...)
+	TODO: check
 CVE-2009-3079 (Unspecified vulnerability in Mozilla Firefox before 3.0.14, and 3.5.x ...)
 	{DSA-1886-1}
 	- iceweasel 3.0.14-1


