[Secure-testing-commits] r15263 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Sat Sep 4 04:37:31 UTC 2010
Author: geissert
Date: 2010-09-04 04:37:24 +0000 (Sat, 04 Sep 2010)
New Revision: 15263
Modified:
data/CVE/list
Log:
new squid3, phpmyadmin (Thijs, please check) and zope2.x issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-09-03 23:28:35 UTC (rev 15262)
+++ data/CVE/list 2010-09-04 04:37:24 UTC (rev 15263)
@@ -6,8 +6,10 @@
RESERVED
CVE-2010-3199
RESERVED
-CVE-2010-3198
+CVE-2010-3198 [zope DoS via PluggableAuthService]
RESERVED
+ - zope2.10 <removed>
+ - zope2.11 <removed>
CVE-2010-3197 (IBM DB2 9.7 before FP2 does not perform the expected access control on ...)
NOT-FOR-US: IBM DB2
CVE-2010-3196 (IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows remote ...)
@@ -584,8 +586,11 @@
RESERVED
{DSA-2094-1}
- linux-2.6 2.6.32-20
-CVE-2010-2958
+CVE-2010-2958 [phpmyadmin backtrace XSS]
RESERVED
+ - phpmyadmin 4:3.3.6-1
+ [lenny] - phpmyadmin <not-affected> (only affects 3.x)
+ NOTE: http://www.phpmyadmin.net/home_page/security/PMASA-2010-6.php
CVE-2010-2957 [serendipity xss]
RESERVED
- serendipity 1.5.3-2
@@ -602,8 +607,11 @@
- couchdb <unfixed> (low; bug #594412)
CVE-2010-2952
RESERVED
-CVE-2010-2951
+CVE-2010-2951 [squid3 DoS via TCP DNS request]
RESERVED
+ - squid3 <unfixed>
+ [lenny] - squid3 <not-affected> (vulnerable code introduced in 3.1.6)
+ NOTE: http://marc.info/?l=squid-users&m=128263555724981&w=2
CVE-2010-2950 [phar string format]
RESERVED
- php5 <unfixed> (low)
More information about the Secure-testing-commits
mailing list