[Secure-testing-commits] r15410 - data/CVE

Fri Oct 1 21:17:06 UTC 2010

Author: joeyh
Date: 2010-10-01 21:16:58 +0000 (Fri, 01 Oct 2010)
New Revision: 15410

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2010-10-01 16:45:49 UTC (rev 15409)
+++ data/CVE/list	2010-10-01 21:16:58 UTC (rev 15410)
@@ -1,3 +1,83 @@
+CVE-2010-3728
+	RESERVED
+CVE-2010-3727
+	RESERVED
+CVE-2010-3726
+	RESERVED
+CVE-2010-3725
+	RESERVED
+CVE-2010-3724
+	RESERVED
+CVE-2010-3723
+	RESERVED
+CVE-2010-3722
+	RESERVED
+CVE-2010-3721
+	RESERVED
+CVE-2010-3720
+	RESERVED
+CVE-2010-3719
+	RESERVED
+CVE-2010-3718
+	RESERVED
+CVE-2010-3717
+	RESERVED
+CVE-2010-3716
+	RESERVED
+CVE-2010-3715
+	RESERVED
+CVE-2010-3714
+	RESERVED
+CVE-2010-3713
+	RESERVED
+CVE-2010-3712
+	RESERVED
+CVE-2010-3711
+	RESERVED
+CVE-2010-3710
+	RESERVED
+CVE-2010-3709
+	RESERVED
+CVE-2010-3708
+	RESERVED
+CVE-2010-3707
+	RESERVED
+CVE-2010-3706
+	RESERVED
+CVE-2010-3705
+	RESERVED
+CVE-2010-3704
+	RESERVED
+CVE-2010-3703
+	RESERVED
+CVE-2010-3702
+	RESERVED
+CVE-2010-3701
+	RESERVED
+CVE-2010-3700
+	RESERVED
+CVE-2010-3699
+	RESERVED
+CVE-2010-3698
+	RESERVED
+CVE-2010-3697
+	RESERVED
+CVE-2010-3696
+	RESERVED
+CVE-2010-3695
+	RESERVED
+CVE-2010-3694
+	RESERVED
+CVE-2010-3693
+	RESERVED
+CVE-2010-3692
+	RESERVED
+CVE-2010-3691
+	RESERVED
+CVE-2010-3690
+	RESERVED
+CVE-2010-3689
+	RESERVED
 CVE-2010-3687 (Unspecified vulnerability in the powermail extension 1.5.3 and earlier ...)
 	TODO: check
 CVE-2010-3686 (The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x ...)
@@ -621,8 +701,7 @@
 	- pam <unfixed>
 	TODO: check
 	NOTE: 20100924164823.GA21584 at openwall.com
-CVE-2010-3434 [clamav pdf]
-	RESERVED
+CVE-2010-3434 (Buffer overflow in the find_stream_bounds function in pdf.c in ...)
 	- clamav 0.96.3+dfsg-1
 	[lenny] - clamav <end-of-life>
 	NOTE: libclamav/pdf.c: Add missing boundscheck to pdf code (bb #2226) 
@@ -641,8 +720,7 @@
 	- pam <unfixed>
 	TODO: check
 	NOTE: 20100924164823.GA21584 at openwall.com
-CVE-2010-3429
-	RESERVED
+CVE-2010-3429 (flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in ...)
 	- ffmpeg <unfixed> (bug #598590)
 	- ffmpeg-debian <removed>
 	NOTE: http://www.ocert.org/advisories/ocert-2010-004.html
@@ -927,7 +1005,7 @@
 	RESERVED
 CVE-2010-3333
 	RESERVED
-CVE-2010-3332 (Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5 SP1, ...)
+CVE-2010-3332 (Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, ...)
 	NOT-FOR-US: Microsoft .NET Framework
 CVE-2010-3331
 	RESERVED
@@ -1018,15 +1096,12 @@
 	- rails <unfixed>
 	TODO: check
 	NOTE: http://usenix.org/events/woot10/tech/full_papers/Rizzo.pdf
-CVE-2010-3298 [net/usb/hso.c: reading uninitialized memory]
-	RESERVED
+CVE-2010-3298 (The hso_get_count function in drivers/net/usb/hso.c in the Linux ...)
 	- linux-2.6 2.6.32-24
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.27)
-CVE-2010-3297 [net/eql.c: reading uninitialized stack memory]
-	RESERVED
+CVE-2010-3297 (The eql_g_master_cfg function in drivers/net/eql.c in the Linux kernel ...)
 	- linux-2.6 2.6.32-24
-CVE-2010-3296 [cxgb3/cxgb3_main.c reading uninitialized stack memory]
-	RESERVED
+CVE-2010-3296 (The cxgb_extension_ioctl function in drivers/net/cxgb3/cxgb3_main.c in ...)
 	- linux-2.6 2.6.32-24
 CVE-2010-3295 [drivers/net/tulip/de4x5.c: reading uninitialized stack memory]
 	RESERVED
@@ -1623,8 +1698,8 @@
 CVE-2010-3080 (Double free vulnerability in the snd_seq_oss_open function in ...)
 	{DSA-2110-1}
 	- linux-2.6 <unfixed>
-CVE-2010-3079
-	RESERVED
+CVE-2010-3079 (kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when ...)
+	TODO: check
 CVE-2010-3078 (The xfs_ioc_fsgetxattr function in fs/xfs/linux-2.6/xfs_ioctl.c in the ...)
 	{DSA-2110-1}
 	- linux-2.6 2.6.32-24
@@ -1939,8 +2014,7 @@
 CVE-2010-2944 (The authenticate function in LDAPUserFolder/LDAPUserFolder.py in ...)
 	{DSA-2096-1}
 	- zope-ldapuserfolder <removed> (high; bug #593466)
-CVE-2010-2943 [xfs infoleak]
-	RESERVED
+CVE-2010-2943 (The xfs implementation in the Linux kernel before 2.6.35 does not look ...)
 	- linux-2.6 <unfixed>
 CVE-2010-2942 (The actions implementation in the network queueing functionality in ...)
 	- linux-2.6 <unfixed>
@@ -3055,12 +3129,10 @@
 CVE-2010-2539 (Buffer overflow in the msTmpFile function in maputil.c in mapserv in ...)
 	{DSA-2079-1}
 	- mapserver 5.6.4-1
-CVE-2010-2538 [btrfs issue]
-	RESERVED
+CVE-2010-2538 (Integer overflow in the btrfs_ioctl_clone function in fs/btrfs/ioctl.c ...)
 	- linux-2.6 <unfixed>
 	[lenny] - linux-2.6 <not-affected> (brtfs introduced in 2.6.29)
-CVE-2010-2537 [btrfs issue]
-	RESERVED
+CVE-2010-2537 (The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel ...)
 	- linux-2.6 2.6.32-19
 	[lenny] - linux-2.6 <not-affected> (brtfs introduced in 2.6.29)
 CVE-2010-2536 (Multiple cross-site scripting (XSS) vulnerabilities in rekonq 0.5 and ...)


