[Secure-testing-commits] r15201 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Aug 24 21:14:42 UTC 2010 

Author: joeyh
Date: 2010-08-24 21:14:40 +0000 (Tue, 24 Aug 2010)
New Revision: 15201

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-08-24 20:55:33 UTC (rev 15200)
+++ data/CVE/list	2010-08-24 21:14:40 UTC (rev 15201)
@@ -1,3 +1,13 @@
+CVE-2010-3109 (Stack-based buffer overflow in the browser plugin in Novell iPrint ...)
+	TODO: check
+CVE-2010-3108 (Buffer overflow in the browser plugin in Novell iPrint Client before ...)
+	TODO: check
+CVE-2010-3107 (A certain ActiveX control in ienipp.ocx in the browser plugin in ...)
+	TODO: check
+CVE-2010-3106 (The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint ...)
+	TODO: check
+CVE-2010-3105 (The PluginGetDriverFile function in Novell iPrint Client before 5.44 ...)
+	TODO: check
 CVE-2010-3104 (Directory traversal vulnerability in DeskShare AutoFTP Manager 4.31, ...)
 	NOT-FOR-US: DeskShare AutoFTP Manager
 CVE-2010-3103 (Directory traversal vulnerability in FTPGetter Team FTPGetter ...)
@@ -344,6 +354,7 @@
 CVE-2010-2945
 	RESERVED
 CVE-2010-2944 (The authenticate function in LDAPUserFolder/LDAPUserFolder.py in ...)
+	{DSA-2096-1}
 	- zope-ldapuserfolder <unfixed> (high; bug #593466)
 CVE-2010-2943 [xfs infoleak]
 	RESERVED
@@ -1365,12 +1376,12 @@
 CVE-2010-2546 (Multiple heap-based buffer overflows in loaders/load_it.c in ...)
 	{DSA-2081-1}
 	- libmikmod 3.1.11-6.3
-CVE-2010-2545
-	RESERVED
-CVE-2010-2544
-	RESERVED
-CVE-2010-2543
-	RESERVED
+CVE-2010-2545 (Multiple cross-site scripting (XSS) vulnerabilities in Cacti before ...)
+	TODO: check
+CVE-2010-2544 (Cross-site scripting (XSS) vulnerability in utilities.php in Cacti ...)
+	TODO: check
+CVE-2010-2543 (Cross-site scripting (XSS) vulnerability in ...)
+	TODO: check
 CVE-2010-2542 (Stack-based buffer overflow in the is_git_directory function in ...)
 	- git-core 1:1.7.1-1.1 (low; bug #590026)
 	[lenny] - git-core <no-dsa> (Minor issue)
@@ -3696,10 +3707,10 @@
 CVE-2010-1646 (The secure path feature in env.c in sudo 1.3.1 through 1.6.9p22 and ...)
 	{DSA-2062-1}
 	- sudo 1.7.2p7-1 (bug #585394)
-CVE-2010-1645
-	RESERVED
-CVE-2010-1644
-	RESERVED
+CVE-2010-1645 (Cacti before 0.8.7f, as used in Red Hat High Performance Computing ...)
+	TODO: check
+CVE-2010-1644 (Multiple cross-site scripting (XSS) vulnerabilities in Cacti before ...)
+	TODO: check
 CVE-2010-1643 (mm/shmem.c in the Linux kernel before 2.6.28-rc3, when strict ...)
 	- linux-2.6 2.6.28-1
 CVE-2010-1642 (The reply_sesssetup_and_X_spnego function in sesssetup.c in smbd in ...)
@@ -4021,8 +4032,8 @@
 	NOT-FOR-US: com_fsf component for joomla!
 CVE-2010-1528 (PHP remote file inclusion vulnerability in include/template.php in ...)
 	NOT-FOR-US: Uiga Proxy
-CVE-2010-1527
-	RESERVED
+CVE-2010-1527 (Stack-based buffer overflow in Novell iPrint Client before 5.44 allows ...)
+	TODO: check
 CVE-2010-1526
 	RESERVED
 	- libgdiplus <unfixed> (low; bug #594155)

More information about the Secure-testing-commits mailing list