[Secure-testing-commits] r12866 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Sep 21 21:14:17 UTC 2009 

Author: joeyh
Date: 2009-09-21 21:14:17 +0000 (Mon, 21 Sep 2009)
New Revision: 12866

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-09-21 19:29:26 UTC (rev 12865)
+++ data/CVE/list	2009-09-21 21:14:17 UTC (rev 12866)
@@ -1,3 +1,59 @@
+CVE-2009-3270 (Microsoft Internet Explorer 7 through 7.0.6000.16711 allows remote ...)
+	TODO: check
+CVE-2009-3269 (Opera 9.52 and earlier allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2009-3268 (Google Chrome 1.0.154.48 and earlier allows remote attackers to cause ...)
+	TODO: check
+CVE-2009-3267 (Microsoft Internet Explorer 6 through 6.0.2900.2180, and ...)
+	TODO: check
+CVE-2009-3266 (Unspecified vulnerability in Opera 9 and 10 allows remote attackers to ...)
+	TODO: check
+CVE-2009-3265 (Cross-site scripting (XSS) vulnerability in Opera 9 and 10 allows ...)
+	TODO: check
+CVE-2009-3264 (The getSVGDocument method in Google Chrome before 3.0.195.21 omits an ...)
+	TODO: check
+CVE-2009-3263 (Cross-site scripting (XSS) vulnerability in Google Chrome 2.x and 3.x ...)
+	TODO: check
+CVE-2009-3262 (Cross-site scripting (XSS) vulnerability in the Self Service UI (SSUI) ...)
+	TODO: check
+CVE-2009-3261 (update/update_0.1.2_to_0.2.php in LiveStreet 0.2 does not require ...)
+	TODO: check
+CVE-2009-3260 (Cross-site scripting (XSS) vulnerability in LiveStreet 0.2 allows ...)
+	TODO: check
+CVE-2009-3259 (Multiple SQL injection vulnerabilities in RASH Quote Management System ...)
+	TODO: check
+CVE-2009-3258 (vtiger CRM before 5.1.0 allows remote authenticated users, with ...)
+	TODO: check
+CVE-2009-3257 (vtiger CRM before 5.1.0 allows remote authenticated users to bypass ...)
+	TODO: check
+CVE-2009-3256 (Cross-site scripting (XSS) vulnerability in include/ajax/blogInfo.php ...)
+	TODO: check
+CVE-2009-3255 (SQL injection vulnerability in RASH Quote Management System (RQMS) ...)
+	TODO: check
+CVE-2009-3254 (Multiple stack-based buffer overflows in Ultimate Player 1.56 beta ...)
+	TODO: check
+CVE-2009-3253 (Stack-based buffer overflow in TriceraSoft Swift Ultralite 1.032 ...)
+	TODO: check
+CVE-2009-3252 (Multiple SQL injection vulnerabilities in news.php in Rock Band CMS ...)
+	TODO: check
+CVE-2009-3251 (include/utils/ListViewUtils.php in vtiger CRM before 5.1.0 allows ...)
+	TODO: check
+CVE-2009-3250 (The saveForwardAttachments procedure in the Compose Mail functionality ...)
+	TODO: check
+CVE-2009-3249 (Multiple directory traversal vulnerabilities in vtiger CRM 5.0.4 allow ...)
+	TODO: check
+CVE-2009-3248 (Cross-site request forgery (CSRF) vulnerability in the RSS module in ...)
+	TODO: check
+CVE-2009-3247 (Cross-site scripting (XSS) vulnerability in the Activities module in ...)
+	TODO: check
+CVE-2009-3246 (SQL injection vulnerability in spnews.php in MyBuxScript PTC-BUX ...)
+	TODO: check
+CVE-2008-7246 (Google Chrome 0.2.149.29 and earlier allows remote attackers to cause ...)
+	TODO: check
+CVE-2008-7245 (Opera 9.52 and earlier allows remote attackers to cause a denial of ...)
+	TODO: check
+CVE-2008-7244 (Mozilla Firefox 3.0.1 and earlier allows remote attackers to cause a ...)
+	TODO: check
 CVE-2009-3245
 	RESERVED
 CVE-2009-3244 (Heap-based buffer overflow in the SwDir.dll ActiveX control in Adobe ...)
@@ -1551,8 +1607,8 @@
 	NOT-FOR-US: Apple iPhone OS 
 CVE-2009-2794 (The Exchange Support component in Apple iPhone OS before 3.1, and ...)
 	NOT-FOR-US: Apple iPhone OS 
-CVE-2009-2793
-	RESERVED
+CVE-2009-2793 (The kernel in NetBSD, probably 5.0.1 and earlier, on x86 platforms ...)
+	TODO: check
 CVE-2009-2792 (Directory traversal vulnerability in plugings/pagecontent.php in ...)
 	NOT-FOR-US: Really Simple CMS
 CVE-2009-2791 (PHP remote file inclusion vulnerability in pda_projects.php in ...)
@@ -1761,8 +1817,8 @@
 	RESERVED
 CVE-2009-2742
 	RESERVED
-CVE-2009-2741
-	RESERVED
+CVE-2009-2741 (Unspecified vulnerability in the wberuntimeear application in the test ...)
+	TODO: check
 CVE-2009-2740 (kmxIds.sys before 7.3.1.18 in CA Host-Based Intrusion Prevention ...)
 	NOT-FOR-US: CA Host-Based Intrusion Prevention System (HIPS)
 CVE-2009-2739 (Cross-site scripting (XSS) vulnerability in FreeNAS before 0.69.2 ...)

More information about the Secure-testing-commits mailing list