[Secure-testing-commits] r15442 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2010-10-08 21:14:27 +0000 (Fri, 08 Oct 2010)
New Revision: 15442

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-10-08 08:02:08 UTC (rev 15441)
+++ data/CVE/list	2010-10-08 21:14:27 UTC (rev 15442)
@@ -1,3 +1,121 @@
+CVE-2010-3840
+	RESERVED
+CVE-2010-3839
+	RESERVED
+CVE-2010-3838
+	RESERVED
+CVE-2010-3837
+	RESERVED
+CVE-2010-3836
+	RESERVED
+CVE-2010-3835
+	RESERVED
+CVE-2010-3834
+	RESERVED
+CVE-2010-3833
+	RESERVED
+CVE-2010-3832
+	RESERVED
+CVE-2010-3831
+	RESERVED
+CVE-2010-3830
+	RESERVED
+CVE-2010-3829
+	RESERVED
+CVE-2010-3828
+	RESERVED
+CVE-2010-3827
+	RESERVED
+CVE-2010-3826
+	RESERVED
+CVE-2010-3825
+	RESERVED
+CVE-2010-3824
+	RESERVED
+CVE-2010-3823
+	RESERVED
+CVE-2010-3822
+	RESERVED
+CVE-2010-3821
+	RESERVED
+CVE-2010-3820
+	RESERVED
+CVE-2010-3819
+	RESERVED
+CVE-2010-3818
+	RESERVED
+CVE-2010-3817
+	RESERVED
+CVE-2010-3816
+	RESERVED
+CVE-2010-3815
+	RESERVED
+CVE-2010-3814
+	RESERVED
+CVE-2010-3813
+	RESERVED
+CVE-2010-3812
+	RESERVED
+CVE-2010-3811
+	RESERVED
+CVE-2010-3810
+	RESERVED
+CVE-2010-3809
+	RESERVED
+CVE-2010-3808
+	RESERVED
+CVE-2010-3807
+	RESERVED
+CVE-2010-3806
+	RESERVED
+CVE-2010-3805
+	RESERVED
+CVE-2010-3804
+	RESERVED
+CVE-2010-3803
+	RESERVED
+CVE-2010-3802
+	RESERVED
+CVE-2010-3801
+	RESERVED
+CVE-2010-3800
+	RESERVED
+CVE-2010-3799
+	RESERVED
+CVE-2010-3798
+	RESERVED
+CVE-2010-3797
+	RESERVED
+CVE-2010-3796
+	RESERVED
+CVE-2010-3795
+	RESERVED
+CVE-2010-3794
+	RESERVED
+CVE-2010-3793
+	RESERVED
+CVE-2010-3792
+	RESERVED
+CVE-2010-3791
+	RESERVED
+CVE-2010-3790
+	RESERVED
+CVE-2010-3789
+	RESERVED
+CVE-2010-3788
+	RESERVED
+CVE-2010-3787
+	RESERVED
+CVE-2010-3786
+	RESERVED
+CVE-2010-3785
+	RESERVED
+CVE-2010-3784
+	RESERVED
+CVE-2010-3783
+	RESERVED
+CVE-2010-3782
+	RESERVED
 CVE-2010-3781 (The PL/php add-on 1.4 and earlier for PostgreSQL does not properly ...)
 	TODO: check
 CVE-2010-3780 (Dovecot 1.2.x before 1.2.15 allows remote authenticated users to cause ...)
@@ -192,10 +310,10 @@
 	RESERVED
 CVE-2010-3698
 	RESERVED
-CVE-2010-3697
-	RESERVED
-CVE-2010-3696
-	RESERVED
+CVE-2010-3697 (The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x ...)
+	TODO: check
+CVE-2010-3696 (The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in ...)
+	TODO: check
 CVE-2010-3695 [XSS vulnerability in the Fetchmail configuration]
 	RESERVED
 	- imp4 <unfixed> (bug #598584)
@@ -208,12 +326,12 @@
 	RESERVED
 	- dimp1 <unfixed> (bug #598583)
 	NOTE: http://lists.horde.org/archives/announce/2010/000561.html
-CVE-2010-3692
-	RESERVED
-CVE-2010-3691
-	RESERVED
-CVE-2010-3690
-	RESERVED
+CVE-2010-3692 (Directory traversal vulnerability in the callback function in ...)
+	TODO: check
+CVE-2010-3691 (PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is ...)
+	TODO: check
+CVE-2010-3690 (Multiple cross-site scripting (XSS) vulnerabilities in phpCAS before ...)
+	TODO: check
 CVE-2010-3689
 	RESERVED
 CVE-2010-3687 (Unspecified vulnerability in the powermail extension 1.5.3 and earlier ...)
@@ -1155,8 +1273,8 @@
 	NOT-FOR-US: Splunk
 CVE-2010-3322 (The XML parser in Splunk 4.0.0 through 4.1.4 allows remote ...)
 	NOT-FOR-US: Splunk
-CVE-2010-3321
-	RESERVED
+CVE-2010-3321 (RSA Authentication Client 2.0.x, 3.0, and 3.5.x before 3.5.3 does not ...)
+	TODO: check
 CVE-2010-3320 (Open redirect vulnerability in IBM Records Manager (RM) 4.5.x before ...)
 	NOT-FOR-US: IBM Records Manager
 CVE-2010-3319 (IBM Records Manager (RM) 4.5.x before 4.5.1.1-IER-FP001 places a ...)
@@ -6685,8 +6803,7 @@
 	RESERVED
 CVE-2010-1323
 	RESERVED
-CVE-2010-1322 KDC uninitialized pointer crash in authorization data handling
-	RESERVED
+CVE-2010-1322 (The merge_authdata function in kdc_authdata.c in the Key Distribution ...)
 	- krb5 <unfixed> (bug #599237)
 	[lenny] - krb5 <not-affected> (Only affects 1.8)
 	[etch] - krb5 <not-affected> (Only affects 1.8)