[Secure-testing-commits] r14926 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Jun 29 21:14:21 UTC 2010 

Author: joeyh
Date: 2010-06-29 21:14:20 +0000 (Tue, 29 Jun 2010)
New Revision: 14926

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-06-29 21:06:06 UTC (rev 14925)
+++ data/CVE/list	2010-06-29 21:14:20 UTC (rev 14926)
@@ -1,3 +1,95 @@
+CVE-2010-2515 (Multiple SQL injection vulnerabilities in index.php in the JFaq ...)
+	TODO: check
+CVE-2010-2514 (Cross-site scripting (XSS) vulnerability in the JFaq (com_jfaq) ...)
+	TODO: check
+CVE-2010-2513 (SQL injection vulnerability in the JE Ajax Event Calendar ...)
+	TODO: check
+CVE-2010-2512 (SQL injection vulnerability in customprofile.php in 2daybiz ...)
+	TODO: check
+CVE-2010-2511 (SQL injection vulnerability in viewnews.php in 2daybiz Multi Level ...)
+	TODO: check
+CVE-2010-2510 (SQL injection vulnerability in customize.php in 2daybiz Web Template ...)
+	TODO: check
+CVE-2010-2509 (Multiple cross-site scripting (XSS) vulnerabilities in 2daybiz Web ...)
+	TODO: check
+CVE-2010-2508 (SQL injection vulnerability in user-profile.php in 2daybiz Video ...)
+	TODO: check
+CVE-2010-2507 (Directory traversal vulnerability in the Picasa2Gallery ...)
+	TODO: check
+CVE-2010-2506 (Cross-site scripting (XSS) vulnerability in debug.cgi in Linksys ...)
+	TODO: check
+CVE-2010-2505 (Soft SaschArt SasCAM Webcam Server 2.6.5, 2.7, and earlier allows ...)
+	TODO: check
+CVE-2010-2504 (Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allows remote ...)
+	TODO: check
+CVE-2010-2503 (Multiple cross-site scripting (XSS) vulnerabilities in Splunk 4.0 ...)
+	TODO: check
+CVE-2010-2502 (Multiple directory traversal vulnerabilities in Splunk 4.0 through ...)
+	TODO: check
+CVE-2010-2501
+	RESERVED
+CVE-2010-2500
+	RESERVED
+CVE-2010-2499
+	RESERVED
+CVE-2010-2498
+	RESERVED
+CVE-2010-2497
+	RESERVED
+CVE-2010-2496
+	RESERVED
+CVE-2010-2495
+	RESERVED
+CVE-2010-2494
+	RESERVED
+CVE-2010-2493
+	RESERVED
+CVE-2010-2492
+	RESERVED
+CVE-2010-2491
+	RESERVED
+CVE-2010-2490
+	RESERVED
+CVE-2010-2489
+	RESERVED
+CVE-2010-2488
+	RESERVED
+CVE-2010-2487
+	RESERVED
+CVE-2010-2486
+	RESERVED
+CVE-2010-2485
+	RESERVED
+CVE-2010-2484
+	RESERVED
+CVE-2010-2483
+	RESERVED
+CVE-2010-2482
+	RESERVED
+CVE-2010-2481
+	RESERVED
+CVE-2010-2480
+	RESERVED
+CVE-2010-2479
+	RESERVED
+CVE-2010-2478
+	RESERVED
+CVE-2010-2477
+	RESERVED
+CVE-2010-2476
+	RESERVED
+CVE-2010-2475
+	RESERVED
+CVE-2010-2474
+	RESERVED
+CVE-2010-2473
+	RESERVED
+CVE-2010-2472
+	RESERVED
+CVE-2010-2471
+	RESERVED
+CVE-2010-2470 (Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6.1 and 3.7 through ...)
+	TODO: check
 CVE-2010-XXXX [syscp open_basedir bypassing]
 	- syscp <unfixed> (bug #587481)
 	NOTE: CVE id requested on oss-sec
@@ -572,17 +664,13 @@
 	RESERVED
 CVE-2010-2232
 	RESERVED
-CVE-2010-2231 [MSA-10-0013 Potential Cross Site Scripting vulnerability in Quiz reports]
-	RESERVED
+CVE-2010-2231 (Cross-site request forgery (CSRF) vulnerability in ...)
 	- moodle <unfixed> (bug #586280)
-CVE-2010-2230 [MSA-10-0012 KSES Security Filter Bypassing vulnerability]
-	RESERVED
+CVE-2010-2230 (The KSES text cleaning filter in lib/weblib.php in Moodle before ...)
 	- moodle <unfixed> (bug #586280)
-CVE-2010-2229 [MSA-10-0011 Cross Site Scripting vulnerability in blog/index.php]
-	RESERVED
+CVE-2010-2229 (Multiple cross-site scripting (XSS) vulnerabilities in blog/index.php ...)
 	- moodle <unfixed> (bug #586280)
-CVE-2010-2228 [MSA-10-0010 Persistent XSS vulnerability in the MNET access control interface]
-	RESERVED
+CVE-2010-2228 (Cross-site scripting (XSS) vulnerability in the MNET access-control ...)
 	- moodle <unfixed> (bug #586280)
 CVE-2010-2227
 	RESERVED
@@ -1325,10 +1413,10 @@
 	NOT-FOR-US: XnView
 CVE-2010-1931 (SQL injection vulnerability in includes/content/cart.inc.php in ...)
 	NOT-FOR-US: CubeCart PHP Shopping Cart
-CVE-2010-1930
-	RESERVED
-CVE-2010-1929
-	RESERVED
+CVE-2010-1930 (Off-by-one error in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allows ...)
+	TODO: check
+CVE-2010-1929 (Multiple stack-based buffer overflows in the ...)
+	TODO: check
 CVE-2010-1919 (Unspecified vulnerability in EMC Avamar 4.1.x and 5.0 before SP1 ...)
 	NOT-FOR-US: EMC
 CVE-2010-1913 (The default configuration of pluginlicense.ini for the ...)
@@ -3438,9 +3526,9 @@
 	TODO: check
 CVE-2010-1205
 	RESERVED
-CVE-2010-1204
-	RESERVED
-CVE-2010-1203 (Multiple unspecified vulnerabilities in the JavaScript engine in ...)
+CVE-2010-1204 (Search.pm in Bugzilla 2.17.1 through 3.2.6, 3.3.1 through 3.4.6, 3.5.1 ...)
+	TODO: check
+CVE-2010-1203 (The JavaScript engine in Mozilla Firefox 3.6.x before 3.6.4 allow ...)
 	- xulrunner <not-affected> (Only affects Firefox 3.6, i.e xulrunner 1.9.2)
 CVE-2010-1202 (Multiple unspecified vulnerabilities in the JavaScript engine in ...)
 	{DSA-2064-1}
@@ -6544,8 +6632,8 @@
 	- xulrunner 1.9.1.9-1 (unimportant)
 	- iceape 2.0.4-1
 	[lenny] - iceape <not-affected> (Only a stub package)
-CVE-2010-0180
-	RESERVED
+CVE-2010-0180 (Install/Filesystem.pm in Bugzilla 3.5.1 through 3.6 and 3.7, when ...)
+	TODO: check
 CVE-2010-0179 (Mozilla Firefox before 3.0.19 and 3.5.x before 3.5.8, and SeaMonkey ...)
 	{DSA-2027-1}
 	- xulrunner 1.9.1.9-1

More information about the Secure-testing-commits mailing list