[Secure-testing-commits] r14697 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon May 17 21:15:17 UTC 2010 

Author: joeyh
Date: 2010-05-17 21:15:08 +0000 (Mon, 17 May 2010)
New Revision: 14697

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-05-17 18:29:09 UTC (rev 14696)
+++ data/CVE/list	2010-05-17 21:15:08 UTC (rev 14697)
@@ -1,3 +1,5 @@
+CVE-2010-1940 (Apple Safari 4.0.5 on Windows sends the "Authorization: Basic" header ...)
+	TODO: check
 CVE-2010-1939 (Use-after-free vulnerability in Apple Safari 4.0.5 on Windows allows ...)
 	TODO: check
 CVE-2010-1938
@@ -724,14 +726,13 @@
 	RESERVED
 CVE-2010-1625
 	RESERVED
-CVE-2010-1624
-	RESERVED
+CVE-2010-1624 (The msn_emoticon_msg function in slp.c in the MSN protocol plugin in ...)
+	TODO: check
 CVE-2010-1623
 	RESERVED
 CVE-2010-1622
 	RESERVED
-CVE-2010-1621 [mysql plugin issue]
-	RESERVED
+CVE-2010-1621 (The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL ...)
 	- mysql <undetermined>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=590190
 	TODO: check
@@ -861,20 +862,20 @@
 	RESERVED
 CVE-2010-1569
 	RESERVED
-CVE-2010-1568
-	RESERVED
-CVE-2010-1567
-	RESERVED
+CVE-2010-1568 (The Send Secure functionality in the Cisco IronPort Desktop Flag ...)
+	TODO: check
+CVE-2010-1567 (The SIP implementation on the Cisco PGW 2200 Softswitch with software ...)
+	TODO: check
 CVE-2010-1566
 	RESERVED
-CVE-2010-1565
-	RESERVED
-CVE-2010-1563
-	RESERVED
-CVE-2010-1562
-	RESERVED
-CVE-2010-1561
-	RESERVED
+CVE-2010-1565 (Unspecified vulnerability in the SIP implementation on the Cisco PGW ...)
+	TODO: check
+CVE-2010-1563 (The SIP implementation on the Cisco PGW 2200 Softswitch with software ...)
+	TODO: check
+CVE-2010-1562 (The SIP implementation on the Cisco PGW 2200 Softswitch with software ...)
+	TODO: check
+CVE-2010-1561 (The SIP implementation on the Cisco PGW 2200 Softswitch with software ...)
+	TODO: check
 CVE-2010-1560 (Buffer overflow in the REPEAT function in IBM DB2 9.1 before FP9 ...)
 	NOT-FOR-US: IBM DB2
 CVE-2010-1559 (SQL injection vulnerability in the SermonSpeaker (com_sermonspeaker) ...)
@@ -925,12 +926,12 @@
 CVE-2010-XXXX [gitolite two weaknesses]
 	- gitolite 1.4.2-1 (medium)
 	NOTE: http://secunia.com/advisories/39587/
-CVE-2010-1558
-	RESERVED
-CVE-2010-1557
-	RESERVED
-CVE-2010-1556
-	RESERVED
+CVE-2010-1558 (Unspecified vulnerability in HP Multifunction Peripheral (MFP) Digital ...)
+	TODO: check
+CVE-2010-1557 (Multiple cross-site scripting (XSS) vulnerabilities in HP Insight ...)
+	TODO: check
+CVE-2010-1556 (Unspecified vulnerability in HP Systems Insight Manager (SIM) 5.3, 5.3 ...)
+	TODO: check
 CVE-2010-1555 (Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network ...)
 	TODO: check
 CVE-2010-1554 (Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network ...)
@@ -1019,6 +1020,7 @@
 	RESERVED
 CVE-2010-1512 [aria2 directory traversal]
 	RESERVED
+	{DSA-2047-1}
 	- aria2 1.9.3-1
 	NOTE: http://seclists.org/fulldisclosure/2010/May/168
 CVE-2010-1511 [kget insecure file get]
@@ -1026,10 +1028,10 @@
 	- kdenetwork <undetermined>
 	NOTE: http://seclists.org/fulldisclosure/2010/May/164
 	TODO: check
-CVE-2010-1510
-	RESERVED
-CVE-2010-1509
-	RESERVED
+CVE-2010-1510 (Heap-based buffer overflow in IrfanView before 4.27 allows remote ...)
+	TODO: check
+CVE-2010-1509 (IrfanView before 4.27 does not properly handle an unspecified integer ...)
+	TODO: check
 CVE-2010-1508
 	RESERVED
 CVE-2010-1507
@@ -3660,14 +3662,14 @@
 	NOT-FOR-US: osTicket
 CVE-2010-0605 (SQL injection vulnerability in scp/ajax.php in osTicket before 1.6.0 ...)
 	NOT-FOR-US: osTicket
-CVE-2010-0604
-	RESERVED
-CVE-2010-0603
-	RESERVED
-CVE-2010-0602
-	RESERVED
-CVE-2010-0601
-	RESERVED
+CVE-2010-0604 (Unspecified vulnerability in the SIP implementation on the Cisco PGW ...)
+	TODO: check
+CVE-2010-0603 (The SIP implementation on the Cisco PGW 2200 Softswitch with software ...)
+	TODO: check
+CVE-2010-0602 (The SIP implementation on the Cisco PGW 2200 Softswitch with software ...)
+	TODO: check
+CVE-2010-0601 (The MGCP implementation on the Cisco PGW 2200 Softswitch with software ...)
+	TODO: check
 CVE-2010-0600
 	RESERVED
 CVE-2010-0599
@@ -4018,8 +4020,8 @@
 	NOT-FOR-US: Microsoft Windows
 CVE-2010-0476 (The SMB client in Microsoft Windows Server 2003 SP2, Vista Gold, SP1, ...)
 	NOT-FOR-US: Microsoft Windows
-CVE-2010-0475
-	RESERVED
+CVE-2010-0475 (Cross-site scripting (XSS) vulnerability in esp/editUser.esp in the ...)
+	TODO: check
 CVE-2010-0474
 	RESERVED
 CVE-2010-0473
@@ -7952,8 +7954,8 @@
 	RESERVED
 CVE-2009-3679
 	RESERVED
-CVE-2009-3678
-	RESERVED
+CVE-2009-3678 (Microsoft Windows 7, when running on 64-bit platforms, allows local ...)
+	TODO: check
 CVE-2009-3677 (The Internet Authentication Service (IAS) in Microsoft Windows 2000 ...)
 	NOT-FOR-US: Microsoft Internet Authentication Service
 CVE-2009-3676 (The SMB client in the kernel in Microsoft Windows Server 2008 R2 and ...)

More information about the Secure-testing-commits mailing list