[Secure-testing-commits] r14631 - data/CVE

Joey Hess joeyh at alioth.debian.org
Fri May 7 21:14:23 UTC 2010 

Author: joeyh
Date: 2010-05-07 21:14:22 +0000 (Fri, 07 May 2010)
New Revision: 14631

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-05-07 21:08:39 UTC (rev 14630)
+++ data/CVE/list	2010-05-07 21:14:22 UTC (rev 14631)
@@ -1,3 +1,271 @@
+CVE-2010-1850
+	RESERVED
+CVE-2010-1849
+	RESERVED
+CVE-2010-1848
+	RESERVED
+CVE-2010-1847
+	RESERVED
+CVE-2010-1846
+	RESERVED
+CVE-2010-1845
+	RESERVED
+CVE-2010-1844
+	RESERVED
+CVE-2010-1843
+	RESERVED
+CVE-2010-1842
+	RESERVED
+CVE-2010-1841
+	RESERVED
+CVE-2010-1840
+	RESERVED
+CVE-2010-1839
+	RESERVED
+CVE-2010-1838
+	RESERVED
+CVE-2010-1837
+	RESERVED
+CVE-2010-1836
+	RESERVED
+CVE-2010-1835
+	RESERVED
+CVE-2010-1834
+	RESERVED
+CVE-2010-1833
+	RESERVED
+CVE-2010-1832
+	RESERVED
+CVE-2010-1831
+	RESERVED
+CVE-2010-1830
+	RESERVED
+CVE-2010-1829
+	RESERVED
+CVE-2010-1828
+	RESERVED
+CVE-2010-1827
+	RESERVED
+CVE-2010-1826
+	RESERVED
+CVE-2010-1825
+	RESERVED
+CVE-2010-1824
+	RESERVED
+CVE-2010-1823
+	RESERVED
+CVE-2010-1822
+	RESERVED
+CVE-2010-1821
+	RESERVED
+CVE-2010-1820
+	RESERVED
+CVE-2010-1819
+	RESERVED
+CVE-2010-1818
+	RESERVED
+CVE-2010-1817
+	RESERVED
+CVE-2010-1816
+	RESERVED
+CVE-2010-1815
+	RESERVED
+CVE-2010-1814
+	RESERVED
+CVE-2010-1813
+	RESERVED
+CVE-2010-1812
+	RESERVED
+CVE-2010-1811
+	RESERVED
+CVE-2010-1810
+	RESERVED
+CVE-2010-1809
+	RESERVED
+CVE-2010-1808
+	RESERVED
+CVE-2010-1807
+	RESERVED
+CVE-2010-1806
+	RESERVED
+CVE-2010-1805
+	RESERVED
+CVE-2010-1804
+	RESERVED
+CVE-2010-1803
+	RESERVED
+CVE-2010-1802
+	RESERVED
+CVE-2010-1801
+	RESERVED
+CVE-2010-1800
+	RESERVED
+CVE-2010-1799
+	RESERVED
+CVE-2010-1798
+	RESERVED
+CVE-2010-1797
+	RESERVED
+CVE-2010-1796
+	RESERVED
+CVE-2010-1795
+	RESERVED
+CVE-2010-1794
+	RESERVED
+CVE-2010-1793
+	RESERVED
+CVE-2010-1792
+	RESERVED
+CVE-2010-1791
+	RESERVED
+CVE-2010-1790
+	RESERVED
+CVE-2010-1789
+	RESERVED
+CVE-2010-1788
+	RESERVED
+CVE-2010-1787
+	RESERVED
+CVE-2010-1786
+	RESERVED
+CVE-2010-1785
+	RESERVED
+CVE-2010-1784
+	RESERVED
+CVE-2010-1783
+	RESERVED
+CVE-2010-1782
+	RESERVED
+CVE-2010-1781
+	RESERVED
+CVE-2010-1780
+	RESERVED
+CVE-2010-1779
+	RESERVED
+CVE-2010-1778
+	RESERVED
+CVE-2010-1777
+	RESERVED
+CVE-2010-1776
+	RESERVED
+CVE-2010-1775
+	RESERVED
+CVE-2010-1774
+	RESERVED
+CVE-2010-1773
+	RESERVED
+CVE-2010-1772
+	RESERVED
+CVE-2010-1771
+	RESERVED
+CVE-2010-1770
+	RESERVED
+CVE-2010-1769
+	RESERVED
+CVE-2010-1768
+	RESERVED
+CVE-2010-1767
+	RESERVED
+CVE-2010-1766
+	RESERVED
+CVE-2010-1765
+	RESERVED
+CVE-2010-1764
+	RESERVED
+CVE-2010-1763
+	RESERVED
+CVE-2010-1762
+	RESERVED
+CVE-2010-1761
+	RESERVED
+CVE-2010-1760
+	RESERVED
+CVE-2010-1759
+	RESERVED
+CVE-2010-1758
+	RESERVED
+CVE-2010-1757
+	RESERVED
+CVE-2010-1756
+	RESERVED
+CVE-2010-1755
+	RESERVED
+CVE-2010-1754
+	RESERVED
+CVE-2010-1753
+	RESERVED
+CVE-2010-1752
+	RESERVED
+CVE-2010-1751
+	RESERVED
+CVE-2010-1750
+	RESERVED
+CVE-2010-1749
+	RESERVED
+CVE-2010-1748
+	RESERVED
+CVE-2010-1747
+	RESERVED
+CVE-2010-1746 (Multiple cross-site scripting (XSS) vulnerabilities in the Table JX ...)
+	TODO: check
+CVE-2010-1745 (SQL injection vulnerability in ...)
+	TODO: check
+CVE-2010-1744 (SQL injection vulnerability in product.html in B2B Gold Script allows ...)
+	TODO: check
+CVE-2010-1743 (SQL injection vulnerability in projects.php in Scratcher allows remote ...)
+	TODO: check
+CVE-2010-1742 (Cross-site scripting (XSS) vulnerability in projects.php in Scratcher ...)
+	TODO: check
+CVE-2010-1741 (SQL injection vulnerability in request_account.php in Billwerx RC ...)
+	TODO: check
+CVE-2010-1740 (SQL injection vulnerability in newsletter.php in GuppY 4.5.18 allows ...)
+	TODO: check
+CVE-2010-1739 (SQL injection vulnerability in the Newsfeeds (com_newsfeeds) component ...)
+	TODO: check
+CVE-2010-1738 (Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR ...)
+	TODO: check
+CVE-2010-1737 (PHP remote file inclusion vulnerability in ...)
+	TODO: check
+CVE-2010-1736 (KrM Haber 1.0 stores sensitive information under the web root with ...)
+	TODO: check
+CVE-2010-1735 (The SfnLOGONNOTIFY function in win32k.sys in the kernel in Microsoft ...)
+	TODO: check
+CVE-2010-1734 (The SfnINSTRING function in win32k.sys in the kernel in Microsoft ...)
+	TODO: check
+CVE-2010-1733 (Multiple SQL injection vulnerabilities in OCS Inventory NG before ...)
+	TODO: check
+CVE-2010-1732 (Cross-site request forgery (CSRF) vulnerability in the users module in ...)
+	TODO: check
+CVE-2010-1731 (Google Chrome on the HTC Hero allows remote attackers to cause a ...)
+	TODO: check
+CVE-2010-1730 (Dolphin Browser 2.5.0 on the HTC Hero allows remote attackers to cause ...)
+	TODO: check
+CVE-2010-1729 (WebKit.dll in WebKit, as used in Safari.exe 4.531.9.1 in Apple Safari, ...)
+	TODO: check
+CVE-2010-1728 (Opera before 10.53 on Windows and Mac OS X does not properly handle a ...)
+	TODO: check
+CVE-2010-1727 (SQL injection vulnerability in type.asp in JobPost 1.0 allows remote ...)
+	TODO: check
+CVE-2010-1726 (SQL injection vulnerability in offers_buy.php in EC21 Clone 3.0 allows ...)
+	TODO: check
+CVE-2010-1725 (SQL injection vulnerability in offers_buy.php in Alibaba Clone ...)
+	TODO: check
+CVE-2010-1724 (Multiple cross-site scripting (XSS) vulnerabilities in Zikula ...)
+	TODO: check
+CVE-2009-4841 (Heap-based buffer overflow in the SonicMediaPlayer ActiveX control in ...)
+	TODO: check
+CVE-2009-4840 (Heap-based buffer overflow in the IAManager ActiveX control in ...)
+	TODO: check
+CVE-2009-4839 (Multiple cross-site scripting (XSS) vulnerabilities in Basic Analysis ...)
+	TODO: check
+CVE-2009-4838 (SQL injection vulnerability in base_ag_common.php in Basic Analysis ...)
+	TODO: check
+CVE-2009-4837 (Multiple cross-site scripting (XSS) vulnerabilities in Basic Analysis ...)
+	TODO: check
+CVE-2009-4836 (Eval injection vulnerability in system/services/init.php in Movie PHP ...)
+	TODO: check
+CVE-2009-4835 (The (1) htk_read_header, (2) alaw_init, (3) ulaw_init, (4) pcm_init, ...)
+	TODO: check
 CVE-2010-1723 (Directory traversal vulnerability in the iNetLanka Contact Us Draw ...)
 	TODO: check
 CVE-2010-1722 (Directory traversal vulnerability in the Online Market (com_market) ...)
@@ -82,8 +350,8 @@
 	RESERVED
 CVE-2010-1682
 	RESERVED
-CVE-2010-1681
-	RESERVED
+CVE-2010-1681 (Buffer overflow in VISIODWG.DLL before 10.0.6880.4 in Microsoft Office ...)
+	TODO: check
 CVE-2010-1680
 	RESERVED
 CVE-2010-1679
@@ -295,8 +563,8 @@
 	TODO: check
 CVE-2010-1584
 	RESERVED
-CVE-2010-1583
-	RESERVED
+CVE-2010-1583 (SQL injection vulnerability in the loadByKey function in the ...)
+	TODO: check
 CVE-2010-1582
 	RESERVED
 CVE-2010-1581
@@ -770,8 +1038,8 @@
 	- texlive-bin <unfixed> (low)
 CVE-2010-1439
 	RESERVED
-CVE-2010-1438
-	RESERVED
+CVE-2010-1438 (Web Application Finger Printer (WAFP) 0.01-26c3 uses fixed pathnames ...)
+	TODO: check
 CVE-2010-1437 [keyring issue]
 	RESERVED
 	- linux-2.6 <unfixed>
@@ -1883,8 +2151,8 @@
 	NOT-FOR-US: e107
 CVE-2010-0996 (Unrestricted file upload vulnerability in e107 before 0.7.20 allows ...)
 	NOT-FOR-US: e107
-CVE-2010-0995
-	RESERVED
+CVE-2010-0995 (Stack-based buffer overflow in Internet Download Manager (IDM) before ...)
+	TODO: check
 CVE-2010-0994 (Multiple buffer overflows in src/vl/vlDAT.cpp in Visualization Library ...)
 	NOT-FOR-US: Visualization Library
 CVE-2010-0993 (Unrestricted file upload vulnerability in Pulse CMS Basic 1.2.2 and ...)
@@ -2444,7 +2712,7 @@
 	RESERVED
 CVE-2010-0830
 	RESERVED
-CVE-2010-0829 
+CVE-2010-0829
 	RESERVED
 	- dvipng <unfixed> (low; bug filed)
 CVE-2010-0828 (Cross-site scripting (XSS) vulnerability in action/Despam.py in the ...)
@@ -47953,7 +48221,7 @@
 CVE-2007-1560 (The clientProcessRequest() function in src/client_side.c in Squid 2.6 ...)
 	- squid 2.6.5-6 (low)
 	[sarge] - squid <not-affected> (Vulnerable code not present)
-CVE-2007-1559 (Stack-based buffer overflow in SonicDVDDashVRNav.dll in Roxio ...)
+CVE-2007-1559 (Multiple stack-based buffer overflows in SonicDVDDashVRNav.dll in ...)
 	NOT-FOR-US: Roxio
 CVE-2007-1558 (The APOP protocol allows remote attackers to guess the first 3 ...)
 	{DSA-1305-1 DSA-1300-1 DTSA-46-1 DTSA-47-1}

More information about the Secure-testing-commits mailing list