[Secure-testing-commits] r15720 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Dec 20 21:14:36 UTC 2010 

Author: joeyh
Date: 2010-12-20 21:14:34 +0000 (Mon, 20 Dec 2010)
New Revision: 15720

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-12-20 19:39:02 UTC (rev 15719)
+++ data/CVE/list	2010-12-20 21:14:34 UTC (rev 15720)
@@ -1,3 +1,9 @@
+CVE-2010-4558 (phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and ...)
+	TODO: check
+CVE-2010-4557 (Buffer overflow in the lm_tcp service in Invensys Wonderware InBatch ...)
+	TODO: check
+CVE-2010-4556 (Stack-based buffer overflow in the SapThemeRepository ActiveX control ...)
+	TODO: check
 CVE-2010-XXXX
 	- opensc <unfixed> (bug #607427)
 CVE-2010-4555
@@ -253,8 +259,8 @@
 	RESERVED
 CVE-2010-4496
 	RESERVED
-CVE-2010-4495
-	RESERVED
+CVE-2010-4495 (Unspecified vulnerability in the ActiveMatrix Runtime component in ...)
+	TODO: check
 CVE-2010-4494 (Double free vulnerability in Google Chrome before 8.0.552.215 allows ...)
 	- chromium-browser <undetermined>
 	- webkit <undetermined>
@@ -294,8 +300,7 @@
 CVE-2010-4482 (Unspecified vulnerability in Google Chrome before 8.0.552.215 allows ...)
 	- chromium-browser <undetermined>
 	- webkit <undetermined>
-CVE-2010-4481 [information disclosure flaw (PMASA-2010-10)]
-	RESERVED
+CVE-2010-4481 (phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass ...)
 	- phpmyadmin <unfixed>
 	TODO: check
 CVE-2010-4480 (error.php in PhpMyAdmin 3.3.8.1, and other versions before ...)
@@ -459,8 +464,7 @@
 	- cakephp 1.3.2-1.1 (bug #606386)
 	[lenny] - cakephp <not-affected>
 	NOTE: https://github.com/cakephp/cakephp/commit/e431e86aa4301ced4273dc7919b59362cbb353cb
-CVE-2010-4336 [collectd: DoS in RRDtool and RRDCacheD plugins]
-	RESERVED
+CVE-2010-4336 (The cu_rrd_create_file function (src/utils_rrdcreate.c) in collectd ...)
 	{DSA-2133-1}
 	- collectd 4.10.1-2.1 (bug #605092; low)
 	[squeeze] - collectd 4.10.1-1+squeeze2
@@ -822,8 +826,7 @@
 CVE-2010-4263 [linux: igb panics when receiving tag vlan packet]
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2010-4262 [xfig color definition parsing stack buffer overflow]
-	RESERVED
+CVE-2010-4262 (Stack-based buffer overflow in Xfig 3.2.4 and 3.2.5 allows remote ...)
 	- xfig <unfixed> (bug #606257)
 	NOTE: details and patch at https://bugzilla.redhat.com/659676
 CVE-2010-4261 (Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ...)
@@ -1201,8 +1204,8 @@
 	RESERVED
 CVE-2010-4116
 	RESERVED
-CVE-2010-4115
-	RESERVED
+CVE-2010-4115 (HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011, ...)
+	TODO: check
 CVE-2010-4114
 	RESERVED
 CVE-2010-4113
@@ -1688,8 +1691,8 @@
 	RESERVED
 CVE-2010-3907
 	RESERVED
-CVE-2010-3906
-	RESERVED
+CVE-2010-3906 (Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier ...)
+	TODO: check
 CVE-2010-3905
 	RESERVED
 	- eucalyptus <unfixed>
@@ -2482,8 +2485,7 @@
 	NOT-FOR-US: PGP Desktop
 CVE-2010-3617
 	RESERVED
-CVE-2010-3616 [DHCP Server Hangs with TCP to Failover Peer Port]
-	RESERVED
+CVE-2010-3616 (ISC DHCP server 4.2 before 4.2.0-P2, when configured to use failover ...)
 	- iscp-dhcp <unfixed>
 	- dhcp3 <removed>
 	- dhcp <removed>
@@ -5311,10 +5313,10 @@
 	RESERVED
 CVE-2010-2604
 	RESERVED
-CVE-2010-2603
-	RESERVED
-CVE-2010-2602
-	RESERVED
+CVE-2010-2603 (RIM BlackBerry Desktop Software 4.7 through 6.0 for PC, and 1.0 for ...)
+	TODO: check
+CVE-2010-2602 (Multiple buffer overflows in the PDF distiller component in the ...)
+	TODO: check
 CVE-2010-2601 (Multiple buffer overflows in the PDF distiller in the Attachment ...)
 	NOT-FOR-US: BlackBerry Enterprise Server
 CVE-2010-2600 (Untrusted search path vulnerability in BlackBerry Desktop Software ...)

More information about the Secure-testing-commits mailing list