[Secure-testing-commits] r13151 - data/CVE

Joey Hess joeyh at alioth.debian.org
Thu Oct 29 21:14:24 UTC 2009 

Author: joeyh
Date: 2009-10-29 21:14:24 +0000 (Thu, 29 Oct 2009)
New Revision: 13151

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-10-29 20:44:13 UTC (rev 13150)
+++ data/CVE/list	2009-10-29 21:14:24 UTC (rev 13151)
@@ -1,3 +1,7 @@
+CVE-2009-3827
+	RESERVED
+CVE-2009-3826 (Multiple buffer overflows in squidGuard 1.4 allow remote attackers to ...)
+	TODO: check
 CVE-2009-3825 (Multiple directory traversal vulnerabilities in GenCMS 2006 allow ...)
 	NOT-FOR-US: GenCMS
 CVE-2009-3824 (Directory traversal vulnerability in include/processor.php in ...)
@@ -302,8 +306,8 @@
 	RESERVED
 CVE-2009-3701
 	RESERVED
-CVE-2009-3700
-	RESERVED
+CVE-2009-3700 (Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote ...)
+	TODO: check
 CVE-2009-3699 (Stack-based buffer overflow in libcsa.a (aka the calendar daemon ...)
 	NOT-FOR-US: IBM AIX
 CVE-2009-3698 (An unspecified function in the Dalvik API in Android 1.5 and earlier ...)
@@ -426,12 +430,11 @@
 	NOT-FOR-US: Dxmsoft XM Easy Personal FTP Server
 CVE-2009-3642 (Multiple SQL injection vulnerabilities in the Call Logging feature in ...)
 	NOT-FOR-US: FrontRange HEAT
-CVE-2009-3641
-	RESERVED
+CVE-2009-3641 (Snort before 2.8.5.1, when the -v option is enabled, allows remote ...)
+	TODO: check
 CVE-2009-3640
 	RESERVED
-CVE-2009-3639 [proftpd: Improper SSL/TLS certificate subjectAltName verification]
-	RESERVED
+CVE-2009-3639 (The mod_tls module in ProFTPD before 1.3.2b, and 1.3.3 before ...)
 	- proftpd-dfsg 1.3.2a-2 (low)
 	NOTE: http://bugs.proftpd.org/show_bug.cgi?id=3275
 CVE-2009-3638
@@ -45753,7 +45756,7 @@
 	- clamav 0.88.7-1 (medium; bug #401873)
 CVE-2006-6405 (BitDefender Mail Protection for SMB 2.0 allows remote attackers to ...)
 	NOT-FOR-US: BitDefender
-CVE-2006-6404 (Innovation Data Processing FDR allows remote attackers to cause a ...)
+CVE-2006-6404 (INNOVATION Data Processing FDR/UPSTREAM 3.3.0 (GA Oct 2003) allows ...)
 	NOT-FOR-US: Innovation Data Processing's FDR Backup
 CVE-2006-6403 (mystats.php in MyStats 1.0.8 and earlier allows remote attackers to ...)
 	NOT-FOR-US: MyStats

More information about the Secure-testing-commits mailing list