[Secure-testing-commits] r14573 - data/CVE

[Michael Gilbert]

Author: gilbert-guest
Date: 2010-04-30 00:11:33 +0000 (Fri, 30 Apr 2010)
New Revision: 14573

Modified:
   data/CVE/list
Log:
new issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-04-29 21:14:29 UTC (rev 14572)
+++ data/CVE/list	2010-04-30 00:11:33 UTC (rev 14573)
@@ -1,3 +1,24 @@
+CVE-2010-1619 [MSA-10-0001: Vulnerability in KSES text cleaning]
+	- moodle <undetermined>
+	TODO: check
+CVE-2010-1618 [MSA-10-0002: XSS vulnerabilty in the phpcas module]
+	- moodle <undetermined>
+	TODO: check
+CVE-2010-1617 [MSA-10-0003: Disclosure of full user names]
+	- moodle <undetermined>
+	TODO: check
+CVE-2010-1616 [MSA-10-0004: Improved access control in course restore]
+	- moodle <undetermined>
+	TODO: check
+CVE-2010-1615 [MSA-10-0006: SQL injection in Wiki module, MSA-10-0005: Incorrect validation of forms data]
+	- moodle <undetermined>
+	TODO: check
+CVE-2010-1614 [MSA-10-0008: Persistent XSS when using Login-as feature, MSA-10-0007: Reflective Cross Site Scripting (XSS) in the Moodle Global Search Engine]
+	- moodle <undetermined>
+	TODO: check
+CVE-2010-1613 [MSA-10-0009: Session fixation prevention now turned on by default]
+	- moodle <undetermined>
+	TODO: check
 CVE-2010-1596 (Support Incident Tracker before 3.51, when using LDAP authentication ...)
 	TODO: check
 CVE-2010-1595 (Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS ...)
@@ -450,8 +471,9 @@
 	RESERVED
 CVE-2010-1447
 	RESERVED
-CVE-2010-1446
+CVE-2010-1446 [kgbd issue]
 	RESERVED
+	- linux-2.6 <unfixed>
 CVE-2010-1445
 	RESERVED
 	- vlc 1.0.6-1
@@ -1130,8 +1152,9 @@
 	NOT-FOR-US: Microsoft Internet Explorer 7.0 
 CVE-2010-1174 (Cisco TFTP Server 1.1 allows remote attackers to cause a denial of ...)
 	NOT-FOR-US: Cisco TFTP Server
-CVE-2010-1173
+CVE-2010-1173 [skb issue]
 	RESERVED
+	- linux-2.6 <unfixed>
 CVE-2010-1172
 	RESERVED
 CVE-2010-1171