[Secure-testing-commits] r14564 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2010-04-27 21:14:20 +0000 (Tue, 27 Apr 2010)
New Revision: 14564

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-04-27 09:15:07 UTC (rev 14563)
+++ data/CVE/list	2010-04-27 21:14:20 UTC (rev 14564)
@@ -1,3 +1,107 @@
+CVE-2010-1558
+	RESERVED
+CVE-2010-1557
+	RESERVED
+CVE-2010-1556
+	RESERVED
+CVE-2010-1555
+	RESERVED
+CVE-2010-1554
+	RESERVED
+CVE-2010-1553
+	RESERVED
+CVE-2010-1552
+	RESERVED
+CVE-2010-1551
+	RESERVED
+CVE-2010-1550
+	RESERVED
+CVE-2010-1549
+	RESERVED
+CVE-2010-1548
+	RESERVED
+CVE-2010-1547
+	RESERVED
+CVE-2010-1546
+	RESERVED
+CVE-2010-1545
+	RESERVED
+CVE-2010-1544 (micro_httpd on the RCA DCM425 cable modem allows remote attackers to ...)
+	TODO: check
+CVE-2010-1543 (Cross-site scripting (XSS) vulnerability in the eTracker module before ...)
+	TODO: check
+CVE-2010-1542 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
+	TODO: check
+CVE-2010-1541 (Multiple cross-site scripting (XSS) vulnerabilities in DFD Cart 1.198, ...)
+	TODO: check
+CVE-2010-1540 (Directory traversal vulnerability in index.php in the MyBlog ...)
+	TODO: check
+CVE-2010-1539 (Cross-site scripting (XSS) vulnerability in the Workflow module ...)
+	TODO: check
+CVE-2010-1538 (SQL injection vulnerability in print_raincheck.php in phpRAINCHECK ...)
+	TODO: check
+CVE-2010-1537 (Multiple directory traversal vulnerabilities in phpCDB 1.0 and earlier ...)
+	TODO: check
+CVE-2010-1536 (Cross-site scripting (XSS) vulnerability in the AddThis Button module ...)
+	TODO: check
+CVE-2010-1535 (Directory traversal vulnerability in the TRAVELbook (com_travelbook) ...)
+	TODO: check
+CVE-2010-1534 (Directory traversal vulnerability in the Shoutbox Pro (com_shoutbox) ...)
+	TODO: check
+CVE-2010-1533 (Directory traversal vulnerability in the TweetLA (com_tweetla) ...)
+	TODO: check
+CVE-2010-1532 (Directory traversal vulnerability in the givesight PowerMail Pro ...)
+	TODO: check
+CVE-2010-1531 (Directory traversal vulnerability in the redSHOP (com_redshop) ...)
+	TODO: check
+CVE-2010-1530 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
+	TODO: check
+CVE-2010-1529 (SQL injection vulnerability in the Freestyle FAQs Lite (com_fsf) ...)
+	TODO: check
+CVE-2010-1528 (PHP remote file inclusion vulnerability in include/template.php in ...)
+	TODO: check
+CVE-2010-1527
+	RESERVED
+CVE-2010-1526
+	RESERVED
+CVE-2010-1525
+	RESERVED
+CVE-2010-1524
+	RESERVED
+CVE-2010-1523
+	RESERVED
+CVE-2010-1522
+	RESERVED
+CVE-2010-1521
+	RESERVED
+CVE-2010-1520
+	RESERVED
+CVE-2010-1519
+	RESERVED
+CVE-2010-1518
+	RESERVED
+CVE-2010-1517
+	RESERVED
+CVE-2010-1516
+	RESERVED
+CVE-2010-1515
+	RESERVED
+CVE-2010-1514
+	RESERVED
+CVE-2010-1513
+	RESERVED
+CVE-2010-1512
+	RESERVED
+CVE-2010-1511
+	RESERVED
+CVE-2010-1510
+	RESERVED
+CVE-2010-1509
+	RESERVED
+CVE-2010-1508
+	RESERVED
+CVE-2010-1507
+	RESERVED
 CVE-2010-1506 (The Google V8 bindings in Google Chrome before 4.1.249.1059 allow ...)
 	TODO: check
 CVE-2010-1505 (Google Chrome before 4.1.249.1059 does not prevent pages from loading ...)
@@ -1084,7 +1188,7 @@
 	NOTE: no details available, and bug report linked from CVE page is for CVE-2010-1028
 	NOTE: text says that the problem is similar to that, but affecting firefox 3.5
 	TODO: check 
-CVE-2010-1121 (Unspecified vulnerability in Mozilla Firefox 3 on Windows 7 allows ...)
+CVE-2010-1121 (Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes ...)
 	- xulrunner <not-affected> (vulnerable code introduced in firefox 3.6)
 	- iceape <not-affected> (vulnerable code introduced in firefox 3.6)
 	TODO: recheck once versions based on firefox 3.6 enter unstable
@@ -18165,7 +18269,7 @@
 	NOT-FOR-US: Simple Customer
 CVE-2008-6080 (Directory traversal vulnerability in download.php in the ionFiles ...)
 	NOT-FOR-US: Joomla
-CVE-2008-6079 (Multiple unspecified vulnerabilities in imlib2 before 1.4.2 have ...)
+CVE-2008-6079 (imlib2 before 1.4.2 allows context-dependent attackers to have an ...)
 	{DSA-2029-1}
 	- imlib2 1.4.2-1 (bug #576469)
 	NOTE: poked upstream for more details