[Secure-testing-commits] r14300 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Fri Mar 19 21:14:23 UTC 2010
Author: joeyh
Date: 2010-03-19 21:14:22 +0000 (Fri, 19 Mar 2010)
New Revision: 14300
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-03-18 21:14:27 UTC (rev 14299)
+++ data/CVE/list 2010-03-19 21:14:22 UTC (rev 14300)
@@ -1,3 +1,73 @@
+CVE-2010-1003
+ RESERVED
+CVE-2010-1002
+ RESERVED
+CVE-2010-1001
+ RESERVED
+CVE-2010-1000
+ RESERVED
+CVE-2010-0999
+ RESERVED
+CVE-2010-0998
+ RESERVED
+CVE-2010-0997
+ RESERVED
+CVE-2010-0996
+ RESERVED
+CVE-2010-0995
+ RESERVED
+CVE-2010-0994
+ RESERVED
+CVE-2010-0993
+ RESERVED
+CVE-2010-0992
+ RESERVED
+CVE-2010-0991
+ RESERVED
+CVE-2010-0990
+ RESERVED
+CVE-2010-0989
+ RESERVED
+CVE-2010-0988
+ RESERVED
+CVE-2010-0987
+ RESERVED
+CVE-2010-0986
+ RESERVED
+CVE-2009-4735 (SQL injection vulnerability in login.php in Allomani Audio & Video ...)
+ TODO: check
+CVE-2009-4734 (SQL injection vulnerability in login.php in Allomani Movies Library ...)
+ TODO: check
+CVE-2009-4733 (SQL injection vulnerability in checkuser.php in SimpleLoginSys 0.5, ...)
+ TODO: check
+CVE-2009-4732 (SQL injection vulnerability in tt/index.php in TT Web Site Manager ...)
+ TODO: check
+CVE-2009-4731 (SQL injection vulnerability in photos.php in Model Agency Manager PRO ...)
+ TODO: check
+CVE-2009-4730 (SQL injection vulnerability in report.php in x10 Adult Media Script ...)
+ TODO: check
+CVE-2009-4729 (Multiple cross-site scripting (XSS) vulnerabilities in x10 Adult Media ...)
+ TODO: check
+CVE-2009-4728 (SQL injection vulnerability in the administrative interface in ...)
+ TODO: check
+CVE-2009-4727 (SQL injection vulnerability in x/login in JungleScripts Ajax Short Url ...)
+ TODO: check
+CVE-2009-4726 (Directory traversal vulnerability in download.php in Quickdev 4 PHP ...)
+ TODO: check
+CVE-2009-4725 (Directory traversal vulnerability in modules/aljazeera/admin/setup.php ...)
+ TODO: check
+CVE-2009-4724 (SQL injection vulnerability in shop.htm in PaymentProcessorScript.net ...)
+ TODO: check
+CVE-2009-4723 (Directory traversal vulnerability in confirm.php in Netpet CMS 1.9 ...)
+ TODO: check
+CVE-2009-4722 (SQL injection vulnerability in the CheckLogin function in ...)
+ TODO: check
+CVE-2009-4721 (Multiple SQL injection vulnerabilities in Admin/index.asp in ...)
+ TODO: check
+CVE-2009-4720 (SQL injection vulnerability in cgi-bin/gnudip.cgi in GnuDIP 2.1.1 ...)
+ TODO: check
+CVE-2009-4719 (SQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows ...)
+ TODO: check
CVE-2010-XXXX [dojo can be used as a redirector]
- dojo <unfixed> (low)
TODO: check
@@ -726,7 +796,7 @@
CVE-2010-0736
RESERVED
CVE-2010-0735
- RESERVED
+ REJECTED
CVE-2010-0734 [curl issue]
RESERVED
- curl <undetermined>
@@ -1598,8 +1668,7 @@
CVE-2010-0422 (gnome-screensaver 2.28.x before 2.28.3 does not properly synchronize ...)
- gnome-screensaver 2.28.3-1
[lenny] - gnome-screensaver <not-affected> (Vulnerable code not present)
-CVE-2010-0421 [pango ft issue]
- RESERVED
+CVE-2010-0421 (Array index error in the hb_ot_layout_build_glyph_classes function in ...)
- pango1.0 <unfixed> (bug #574021)
CVE-2010-0420 (libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user ...)
- pidgin 2.6.6-1 (low)
@@ -2639,8 +2708,8 @@
NOT-FOR-US: Symantec AntiVirus
CVE-2010-0105
RESERVED
-CVE-2010-0104
- RESERVED
+CVE-2010-0104 (Unspecified vulnerability in the Broadcom Integrated NIC Management ...)
+ TODO: check
CVE-2010-0103 (UsbCharger.dll in the Energizer DUO USB battery charger software ...)
NOT-FOR-US: Energizer DUO USB Battery Charger Software
CVE-2010-0102
@@ -2834,7 +2903,7 @@
NOT-FOR-US: DeluxeBB
CVE-2009-4464 (Cross-site scripting (XSS) vulnerability in searchadvance.asp in ...)
NOT-FOR-US: Active Business Directory
-CVE-2009-4463 (The firmware for Intellicom NetBiter WebSCADA uses hard-coded ...)
+CVE-2009-4463 (** DISPUTED ** ...)
NOT-FOR-US: Intellicom NetBiter WebSCADA
CVE-2009-4462 (Stack-based buffer overflow in NetBiterConfig.exe 1.3.0 in Intellicom ...)
NOT-FOR-US: Intellicom NetBiter WebSCADA
@@ -12790,8 +12859,7 @@
NOT-FOR-US: CMScout
CVE-2008-6724 (Cross-site scripting (XSS) vulnerability in index.pl in Perl Nopaste ...)
NOT-FOR-US: Perl Nopaste
-CVE-2009-1299 [pulseaudio insecure temporary file creation]
- RESERVED
+CVE-2009-1299 (The pa_make_secure_dir function in core-util.c in PulseAudio 0.9.10 ...)
{DSA-2017-1}
- pulseaudio <unfixed> (bug #573615)
CVE-2009-1298 (The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux ...)
More information about the Secure-testing-commits
mailing list