[Secure-testing-commits] r14680 - data/CVE

[Michael Gilbert]

Author: gilbert-guest
Date: 2010-05-11 23:32:34 +0000 (Tue, 11 May 2010)
New Revision: 14680

Modified:
   data/CVE/list
Log:
new ghostscript issue; fix php source name

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-05-11 23:21:12 UTC (rev 14679)
+++ data/CVE/list	2010-05-11 23:32:34 UTC (rev 14680)
@@ -2,31 +2,34 @@
 	RESERVED
 CVE-2010-1870
 	RESERVED
-CVE-2010-1869
+CVE-2010-1869 [ghostscript buffer overflow]
 	RESERVED
+	- ghostscript <undetermined>
+	NOTE: http://www.openwall.com/lists/oss-security/2010/05/11/3
+	TODO: check
 CVE-2010-1868 (The (1) sqlite_single_query and (2) sqlite_array_query functions in ...)
-	- php <undetermined>
+	- php5 <undetermined>
 	TODO: check
 CVE-2010-1867 (SQL injection vulnerability in the ...)
 	NOT-FOR-US: Campsite
 CVE-2010-1866 (The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP ...)
-	- php <undetermined>
+	- php5 <undetermined>
 	TODO: check
 CVE-2010-1865 (Multiple SQL injection vulnerabilities in ClanSphere 2009.0.3 and ...)
 	NOT-FOR-US: ClanSphere
 CVE-2010-1864 (The addcslashes function in PHP 5.2 through 5.2.13 and 5.3 through ...)
-	- php <undetermined>
+	- php5 <undetermined>
 	TODO: check
 CVE-2010-1863 (SQL injection vulnerability in the shoutbox module ...)
 	NOT-FOR-US: ClanTiger
 CVE-2010-1862 (The chunk_split function in PHP 5.2 through 5.2.13 and 5.3 through ...)
-	- php <undetermined>
+	- php5 <undetermined>
 	TODO: check
 CVE-2010-1861 (The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 ...)
-	- php <undetermined>
+	- php5 <undetermined>
 	TODO: check
 CVE-2010-1860 (The html_entity_decode function in PHP 5.2 through 5.2.13 and 5.3 ...)
-	- php <undetermined>
+	- php5 <undetermined>
 	TODO: check
 CVE-2010-1859 (SQL injection vulnerability in newpost.php in DeluxeBB 1.3 and ...)
 	NOT-FOR-US: DeluxeBB