[Secure-testing-commits] r14444 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2010-04-09 21:14:43 +0000 (Fri, 09 Apr 2010)
New Revision: 14444

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-04-09 18:43:56 UTC (rev 14443)
+++ data/CVE/list	2010-04-09 21:14:43 UTC (rev 14444)
@@ -1,3 +1,63 @@
+CVE-2010-1332
+	RESERVED
+CVE-2010-1331
+	RESERVED
+CVE-2010-1330
+	RESERVED
+CVE-2010-1329
+	RESERVED
+CVE-2010-1328
+	RESERVED
+CVE-2010-1327
+	RESERVED
+CVE-2010-1326
+	RESERVED
+CVE-2010-1325
+	RESERVED
+CVE-2010-1324
+	RESERVED
+CVE-2010-1323
+	RESERVED
+CVE-2010-1322
+	RESERVED
+CVE-2010-1321
+	RESERVED
+CVE-2010-1320
+	RESERVED
+CVE-2010-1319
+	RESERVED
+CVE-2010-1318
+	RESERVED
+CVE-2010-1317
+	RESERVED
+CVE-2010-1316
+	RESERVED
+CVE-2010-1315 (Directory traversal vulnerability in weberpcustomer.php in the ...)
+	TODO: check
+CVE-2010-1314 (Directory traversal vulnerability in the Highslide JS (com_hsconfig) ...)
+	TODO: check
+CVE-2010-1313 (Directory traversal vulnerability in the Seber Cart (com_sebercart) ...)
+	TODO: check
+CVE-2010-1312 (Directory traversal vulnerability in the iJoomla News Portal ...)
+	TODO: check
+CVE-2010-1311 (The qtm_decompress function in libclamav/mspack.c in ClamAV before ...)
+	TODO: check
+CVE-2010-1310 (Opera 10.50 allows remote attackers to obtain sensitive information ...)
+	TODO: check
+CVE-2010-1309 (Directory traversal vulnerability in Irmin CMS (formerly Pepsi CMS) ...)
+	TODO: check
+CVE-2010-1308 (Directory traversal vulnerability in the SVMap (com_svmap) component ...)
+	TODO: check
+CVE-2010-1307 (Directory traversal vulnerability in the Magic Updater ...)
+	TODO: check
+CVE-2010-1306 (Directory traversal vulnerability in the Picasa (com_joomlapicasa2) ...)
+	TODO: check
+CVE-2010-1305 (Directory traversal vulnerability in jinventory.php in the JInventory ...)
+	TODO: check
+CVE-2010-1304 (Directory traversal vulnerability in userstatus.php in the User Status ...)
+	TODO: check
+CVE-2010-1303 (Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy ...)
+	TODO: check
 CVE-2010-XXXX [abcm2ps]
 	- abcm2ps <unfixed> (bug filed)
 CVE-2010-1302 (Directory traversal vulnerability in dwgraphs.php in the DecryptWeb DW ...)
@@ -1610,8 +1670,7 @@
 	- amsn <unfixed> (bug #572818)
 	[lenny] - amsn <no-dsa> (Minor issue)
 	NOTE: http://www.juniper.net/security/auto/vulnerabilities/vuln35507.html
-CVE-2010-0743 [iscsitarget, tgt: Format string vulnerability]
-	RESERVED
+CVE-2010-0743 (Multiple format string vulnerabilities in isns.c in (1) Linux SCSI ...)
 	- iscsitarget <unfixed> (medium; bug #574935)
 	- tgt <unfixed> (medium; bug #576086) 
 CVE-2010-0742
@@ -3591,8 +3650,8 @@
 	RESERVED
 CVE-2010-0099
 	RESERVED
-CVE-2010-0098
-	RESERVED
+CVE-2010-0098 (ClamAV before 0.96 does not properly handle the (1) CAB and (2) 7z ...)
+	TODO: check
 CVE-2010-0097 (ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before ...)
 	- bind9 1:9.7.0.dfsg-1
 CVE-2010-0096
@@ -3772,7 +3831,7 @@
 	NOT-FOR-US: DeluxeBB
 CVE-2009-4464 (Cross-site scripting (XSS) vulnerability in searchadvance.asp in ...)
 	NOT-FOR-US: Active Business Directory
-CVE-2009-4463 (** DISPUTED ** ...)
+CVE-2009-4463 (Intellicom NetBiter WebSCADA devices use default passwords for the ...)
 	NOT-FOR-US: Intellicom NetBiter WebSCADA
 CVE-2009-4462 (Stack-based buffer overflow in the NetBiterConfig utility ...)
 	NOT-FOR-US: Intellicom NetBiter WebSCADA