[Secure-testing-commits] r12742 - data/CVE

Thu Sep 3 21:14:32 UTC 2009

Author: joeyh
Date: 2009-09-03 21:14:31 +0000 (Thu, 03 Sep 2009)
New Revision: 12742

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-09-03 17:10:12 UTC (rev 12741)
+++ data/CVE/list	2009-09-03 21:14:31 UTC (rev 12742)
@@ -1,3 +1,31 @@
+CVE-2009-3050 (Buffer overflow in the set_page_size function in util.cxx in HTMLDOC ...)
+	TODO: check
+CVE-2009-3049 (Opera before 10.00 does not properly display all characters in ...)
+	TODO: check
+CVE-2009-3048 (Opera before 10.00 on Linux, Solaris, and FreeBSD does not properly ...)
+	TODO: check
+CVE-2009-3047 (Opera before 10.00, when a collapsed address bar is used, does not ...)
+	TODO: check
+CVE-2009-3046 (Opera before 10.00 does not check all intermediate X.509 certificates ...)
+	TODO: check
+CVE-2009-3045 (Opera before 10.00 trusts root X.509 certificates signed with the MD2 ...)
+	TODO: check
+CVE-2009-3044 (Opera before 10.00 does not properly handle a (1) '\0' character or ...)
+	TODO: check
+CVE-2009-3043 (The tty_ldisc_hangup function in drivers/char/tty_ldisc.c in the Linux ...)
+	TODO: check
+CVE-2008-7158 (Numara FootPrints 7.5a through 7.5a1 and 8.0 through 8.0a allows ...)
+	TODO: check
+CVE-2008-7157 (Unrestricted file upload vulnerability in EkinBoard 1.1.0 and earlier ...)
+	TODO: check
+CVE-2008-7156 (EkinBoard 1.1.0 and earlier, when register_globals is enabled, allows ...)
+	TODO: check
+CVE-2008-7155 (NetRisk 1.9.7 does not properly restrict access to ...)
+	TODO: check
+CVE-2008-7154 (Docebo 3.5.0.3 and earlier allows remote attackers to obtain sensitive ...)
+	TODO: check
+CVE-2008-7153 (SQL injection vulnerability in the autoDetectRegion function in ...)
+	TODO: check
 CVE-2009-3039
 	RESERVED
 CVE-2009-3038 (A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research ...)
@@ -276,8 +304,8 @@
 	RESERVED
 CVE-2009-2969
 	RESERVED
-CVE-2009-2968
-	RESERVED
+CVE-2009-2968 (Directory traversal vulnerability in a support component in the web ...)
+	TODO: check
 CVE-2009-2967 (Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 ...)
 	- buildbot 0.7.11p3-1
 	[etch] - buildbot <not-affected> (According to the vendor 0.7.5 and earlier are not affected)
@@ -318,13 +346,11 @@
 CVE-2009-2959 (Cross-site scripting (XSS) vulnerability in the waterfall web status ...)
 	- buildbot 0.7.11p3-1 (low; bug #543822)
 	[etch] - buildbot <not-affected> (According to the vendor 0.7.5 and earlier are not affected)
-CVE-2009-2958 [dnsmasq remote code execution]
-	RESERVED
+CVE-2009-2958 (The tftp_request function in tftp.c in dnsmasq before 2.50, when ...)
 	{DSA-1876-1}
 	- dnsmasq 2.50-1
 	[etch] - dnsmasq <not-affected>
-CVE-2009-2957 [dnsmasq denial-of-service]
-	RESERVED
+CVE-2009-2957 (Heap-based buffer overflow in the tftp_request function in tftp.c in ...)
 	{DSA-1876-1}
 	- dnsmasq 2.50-1
 	[etch] - dnsmasq <not-affected>
@@ -1350,8 +1376,8 @@
 	RESERVED
 CVE-2009-2701
 	RESERVED
-CVE-2009-2700
-	RESERVED
+CVE-2009-2700 (src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x does not ...)
+	TODO: check
 CVE-2009-2699
 	RESERVED
 CVE-2009-2698 (The udp_sendmsg function in the UDP implementation in (1) ...)
@@ -9827,10 +9853,10 @@
 	RESERVED
 CVE-2009-0202 (Array index error in FL21WIN.DLL in the PowerPoint Freelance Windows ...)
 	NOT-FOR-US: Microsoft
-CVE-2009-0201
-	RESERVED
-CVE-2009-0200
-	RESERVED
+CVE-2009-0201 (Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 might ...)
+	TODO: check
+CVE-2009-0200 (Integer underflow in OpenOffice.org (OOo) before 3.1.1 might allow ...)
+	TODO: check
 CVE-2009-0199
 	RESERVED
 CVE-2009-0198 (Heap-based buffer overflow in the JBIG2 filter in Adobe Reader 7 and ...)


