[Secure-testing-commits] r12903 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Sep 29 21:14:15 UTC 2009 

Author: joeyh
Date: 2009-09-29 21:14:14 +0000 (Tue, 29 Sep 2009)
New Revision: 12903

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-09-29 16:36:06 UTC (rev 12902)
+++ data/CVE/list	2009-09-29 21:14:14 UTC (rev 12903)
@@ -1,3 +1,33 @@
+CVE-2009-3446 (SQL injection vulnerability in the MyRemote Video Gallery (com_mytube) ...)
+	TODO: check
+CVE-2009-3445 (Unspecified vulnerability in Code-Crafters Ability Mail Server before ...)
+	TODO: check
+CVE-2009-3444 (Cross-site scripting (XSS) vulnerability in email.php in e107 0.7.16 ...)
+	TODO: check
+CVE-2009-3443 (SQL injection vulnerability in the Fastball (com_fastball) component ...)
+	TODO: check
+CVE-2009-3442 (The Meta tags (aka Nodewords) module before 6.x-1.1 for Drupal does ...)
+	TODO: check
+CVE-2009-3441 (Open Source Security Information Management (OSSIM) before 2.1.2 ...)
+	TODO: check
+CVE-2009-3440 (Cross-site scripting (XSS) vulnerability in Open Source Security ...)
+	TODO: check
+CVE-2009-3439 (Multiple SQL injection vulnerabilities in Open Source Security ...)
+	TODO: check
+CVE-2009-3438 (SQL injection vulnerability in the JoomlaFacebook (com_facebook) ...)
+	TODO: check
+CVE-2009-3437 (Cross-site scripting (XSS) vulnerability in the live preview feature ...)
+	TODO: check
+CVE-2009-3436 (Multiple SQL injection vulnerabilities in forum.asp in MaxWebPortal ...)
+	TODO: check
+CVE-2009-3435 (Cross-site scripting (XSS) vulnerability in the variable editor in the ...)
+	TODO: check
+CVE-2009-3434 (SQL injection vulnerability in the Tupinambis (com_tupinambis) ...)
+	TODO: check
+CVE-2009-3433 (Unspecified vulnerability in clsetup in the configuration utility in ...)
+	TODO: check
+CVE-2009-3432 (Unspecified vulnerability in xscreensaver in Sun Solaris 10, and ...)
+	TODO: check
 CVE-2009-3431 (Stack consumption vulnerability in Adobe Acrobat 9.1.1 allows remote ...)
 	NOT-FOR-US: Adobe Acrobat
 CVE-2009-3430 (SQL injection vulnerability in login.php in Allomani Mobile 2.5 allows ...)
@@ -1766,30 +1796,30 @@
 	RESERVED
 CVE-2009-2874
 	RESERVED
-CVE-2009-2873
-	RESERVED
-CVE-2009-2872
-	RESERVED
-CVE-2009-2871
-	RESERVED
-CVE-2009-2870
-	RESERVED
-CVE-2009-2869
-	RESERVED
-CVE-2009-2868
-	RESERVED
-CVE-2009-2867
-	RESERVED
-CVE-2009-2866
-	RESERVED
-CVE-2009-2865
-	RESERVED
-CVE-2009-2864
-	RESERVED
-CVE-2009-2863
-	RESERVED
-CVE-2009-2862
-	RESERVED
+CVE-2009-2873 (Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco ...)
+	TODO: check
+CVE-2009-2872 (Cisco IOS 12.0 through 12.4, when IP-based tunnels and the Cisco ...)
+	TODO: check
+CVE-2009-2871 (Unspecified vulnerability in Cisco IOS 12.2 and 12.4, when SSLVPN ...)
+	TODO: check
+CVE-2009-2870 (Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when the ...)
+	TODO: check
+CVE-2009-2869 (Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, ...)
+	TODO: check
+CVE-2009-2868 (Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when ...)
+	TODO: check
+CVE-2009-2867 (Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, ...)
+	TODO: check
+CVE-2009-2866 (Unspecified vulnerability in Cisco IOS 12.2 through 12.4 allows remote ...)
+	TODO: check
+CVE-2009-2865 (Buffer overflow in the login implementation in the Extension Mobility ...)
+	TODO: check
+CVE-2009-2864 (Cisco Unified Communications Manager (aka CUCM, formerly CallManager) ...)
+	TODO: check
+CVE-2009-2863 (Race condition in the Firewall Authentication Proxy feature in Cisco ...)
+	TODO: check
+CVE-2009-2862 (The Object Groups for Access Control Lists (ACLs) feature in Cisco IOS ...)
+	TODO: check
 CVE-2009-2861 (The Over-the-Air Provisioning (OTAP) functionality on Cisco Aironet ...)
 	NOT-FOR-US: Cisco
 CVE-2009-2860 (Unspecified vulnerability in db2jds in IBM DB2 8.1 before FP18 allows ...)
@@ -3962,7 +3992,7 @@
 	NOTE: http://security.freebsd.org/advisories/FreeBSD-SA-09:10.ipv6.asc
 CVE-2009-2207 (The MobileMail component in Apple iPhone OS 3.0 and 3.0.1, and iPhone ...)
 	NOT-FOR-US: Apple iPhone OS
-CVE-2009-2206 (Multiple heap-based buffer overflows in the CoreAudio component in ...)
+CVE-2009-2206 (Multiple heap-based buffer overflows in the AudioCodecs library in the ...)
 	NOT-FOR-US: Apple iPhone OS
 CVE-2009-2205 (Stack-based buffer overflow in the Java Web Start command launcher in ...)
 	NOT-FOR-US: Mac OS X

More information about the Secure-testing-commits mailing list