[Secure-testing-commits] r14402 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Mon Apr 5 02:12:07 UTC 2010
Author: gilbert-guest
Date: 2010-04-05 02:11:55 +0000 (Mon, 05 Apr 2010)
New Revision: 14402
Modified:
data/CVE/list
Log:
new webkit and dovecot issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-04-05 02:00:51 UTC (rev 14401)
+++ data/CVE/list 2010-04-05 02:11:55 UTC (rev 14402)
@@ -257,7 +257,11 @@
CVE-2010-1133 (Multiple SQL injection vulnerabilities in TikiWiki CMS/Groupware 4.x ...)
TODO: check
CVE-2010-1131 (JavaScriptCore.dll, as used in Apple Safari 4.0.5 on Windows XP SP3, ...)
- TODO: check
+ - webkit <undetermined> (unimportant)
+ - kdelibs <undetermined> (unimportant)
+ - kde4libs <undetermined> (unimportant)
+ - qt4-x11 <undetermined> (unimportant)
+ NOTE: browser crashes are not considered security-relevant
CVE-2010-1130 (session.c in the session extension in PHP before 5.2.13, and 5.3.1, ...)
TODO: check
CVE-2010-1129 (The safe_mode implementation in PHP before 5.2.13 does not properly ...)
@@ -2037,6 +2041,8 @@
CVE-2010-0536 (Apple QuickTime before 7.6.6 on Windows allows remote attackers to ...)
NOT-FOR-US: Apple QuickTime
CVE-2010-0535 (Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is ...)
+ - dovecot <undetermined>
+ NOTE: is this CVE-2009-3897?
TODO: check
CVE-2010-0534 (Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the ...)
NOT-FOR-US: Apple Wiki Server
More information about the Secure-testing-commits
mailing list