[Secure-testing-commits] r15768 - data/CVE

Joey Hess joeyh at alioth.debian.org
Thu Dec 30 21:14:24 UTC 2010 

Author: joeyh
Date: 2010-12-30 21:14:24 +0000 (Thu, 30 Dec 2010)
New Revision: 15768

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-12-30 17:28:40 UTC (rev 15767)
+++ data/CVE/list	2010-12-30 21:14:24 UTC (rev 15768)
@@ -1,3 +1,43 @@
+CVE-2010-4619 (SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka ...)
+	TODO: check
+CVE-2010-4618 (Cross-site scripting (XSS) vulnerability in the Algis Info ...)
+	TODO: check
+CVE-2010-4617 (Directory traversal vulnerability in the JotLoader (com_jotloader) ...)
+	TODO: check
+CVE-2010-4616 (Cross-site scripting (XSS) vulnerability in ...)
+	TODO: check
+CVE-2010-4615 (Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow ...)
+	TODO: check
+CVE-2010-4614 (SQL injection vulnerability in item.php in Ero Auktion 2010 allows ...)
+	TODO: check
+CVE-2010-4613 (Multiple directory traversal vulnerabilities in Hycus CMS 1.0.3 allow ...)
+	TODO: check
+CVE-2010-4612 (Multiple SQL injection vulnerabilities in index.php in Hycus CMS ...)
+	TODO: check
+CVE-2010-4611 (Html-edit CMS 3.1.8 allows remote attackers to obtain sensitive ...)
+	TODO: check
+CVE-2010-4610 (Cross-site scripting (XSS) vulnerability in index.php in Html-edit CMS ...)
+	TODO: check
+CVE-2010-4609 (SQL injection vulnerability in index.php in Html-edit CMS 3.1.8 allows ...)
+	TODO: check
+CVE-2010-4608 (Habari 0.6.5 allows remote attackers to obtain sensitive information ...)
+	TODO: check
+CVE-2010-4607 (Multiple cross-site scripting (XSS) vulnerabilities in Habari 0.6.5, ...)
+	TODO: check
+CVE-2010-4606 (Unspecified vulnerability in the Space Management client in the ...)
+	TODO: check
+CVE-2010-4605 (Unspecified vulnerability in the backup-archive client in IBM Tivoli ...)
+	TODO: check
+CVE-2010-4604 (Stack-based buffer overflow in the GeneratePassword function in dsmtca ...)
+	TODO: check
+CVE-2010-4603 (IBM Rational ClearQuest 7.0.x before 7.0.1.11, 7.1.1.x before 7.1.1.4, ...)
+	TODO: check
+CVE-2010-4602 (The Web client in IBM Rational ClearQuest 7.1.1.x before 7.1.1.4 and ...)
+	TODO: check
+CVE-2010-4601 (Multiple unspecified vulnerabilities in IBM Rational ClearQuest 7.0.x ...)
+	TODO: check
+CVE-2010-4600 (Dojo Toolkit, as used in the Web client in IBM Rational ClearQuest ...)
+	TODO: check
 CVE-2011-0280
 	RESERVED
 CVE-2011-0279
@@ -527,8 +567,7 @@
 	RESERVED
 CVE-2010-4566
 	RESERVED
-CVE-2010-4565 [linux CAN socket info leak]
-	RESERVED
+CVE-2010-4565 (The bcm_connect function in net/can/bcm.c (aka the Broadcast Manager) ...)
 	- linux-2.6 <unfixed>
 	TODO: check
 CVE-2010-4564
@@ -1230,8 +1269,7 @@
 CVE-2010-4344 (Heap-based buffer overflow in the string_vformat function in string.c ...)
 	{DSA-2131-1}
 	- exim4 4.70-1 (bug #606612)
-CVE-2010-4343 [linux: bfa driver sysfs crash]
-	RESERVED
+CVE-2010-4343 (drivers/scsi/bfa/bfa_core.c in the Linux kernel before 2.6.35 does not ...)
 	- linux-2.6 <unfixed>
 	[lenny] - linux-2.6 <not-affected> (Driver introduced in 2.6.32)
 CVE-2010-4342 [linux: NULL pointer dereference in AF_ECONET]
@@ -2368,8 +2406,7 @@
 	RESERVED
 	{DSA-2126-1}
 	- linux-2.6 <unfixed> (low)
-CVE-2010-3874
-	RESERVED
+CVE-2010-3874 (Heap-based buffer overflow in the bcm_connect function in ...)
 	{DSA-2126-1}
 	- linux-2.6 <unfixed> (unimportant)
 CVE-2010-3873
@@ -2408,8 +2445,7 @@
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.27)
 CVE-2010-3860 (IcedTea before 1.9.2, as based on OpenJDK 6, declares multiple ...)
 	- openjdk-6 6b18-1.8.3-1
-CVE-2010-3859
-	RESERVED
+CVE-2010-3859 (Multiple integer signedness errors in the TIPC implementation in the ...)
 	{DSA-2126-1}
 	- linux-2.6 2.6.32-27
 CVE-2010-3858 (The setup_arg_pages function in fs/exec.c in the Linux kernel before ...)

More information about the Secure-testing-commits mailing list