[Secure-testing-commits] r17779 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Dec 12 21:14:20 UTC 2011 

Author: joeyh
Date: 2011-12-12 21:14:20 +0000 (Mon, 12 Dec 2011)
New Revision: 17779

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-12-12 19:41:53 UTC (rev 17778)
+++ data/CVE/list	2011-12-12 21:14:20 UTC (rev 17779)
@@ -1,3 +1,151 @@
+CVE-2011-4768
+	RESERVED
+CVE-2011-4767
+	RESERVED
+CVE-2011-4766
+	RESERVED
+CVE-2011-4765
+	RESERVED
+CVE-2011-4764
+	RESERVED
+CVE-2011-4763
+	RESERVED
+CVE-2011-4762
+	RESERVED
+CVE-2011-4761
+	RESERVED
+CVE-2011-4760
+	RESERVED
+CVE-2011-4759
+	RESERVED
+CVE-2011-4758
+	RESERVED
+CVE-2011-4757
+	RESERVED
+CVE-2011-4756
+	RESERVED
+CVE-2011-4755
+	RESERVED
+CVE-2011-4754
+	RESERVED
+CVE-2011-4753
+	RESERVED
+CVE-2011-4752
+	RESERVED
+CVE-2011-4751
+	RESERVED
+CVE-2011-4750
+	RESERVED
+CVE-2011-4749
+	RESERVED
+CVE-2011-4748
+	RESERVED
+CVE-2011-4747
+	RESERVED
+CVE-2011-4746
+	RESERVED
+CVE-2011-4745
+	RESERVED
+CVE-2011-4744
+	RESERVED
+CVE-2011-4743
+	RESERVED
+CVE-2011-4742
+	RESERVED
+CVE-2011-4741
+	RESERVED
+CVE-2011-4740
+	RESERVED
+CVE-2011-4739
+	RESERVED
+CVE-2011-4738
+	RESERVED
+CVE-2011-4737
+	RESERVED
+CVE-2011-4736
+	RESERVED
+CVE-2011-4735
+	RESERVED
+CVE-2011-4734
+	RESERVED
+CVE-2011-4733
+	RESERVED
+CVE-2011-4732
+	RESERVED
+CVE-2011-4731
+	RESERVED
+CVE-2011-4730
+	RESERVED
+CVE-2011-4729
+	RESERVED
+CVE-2011-4728
+	RESERVED
+CVE-2011-4727
+	RESERVED
+CVE-2011-4726
+	RESERVED
+CVE-2011-4725
+	RESERVED
+CVE-2011-4724
+	RESERVED
+CVE-2011-4723
+	RESERVED
+CVE-2011-4722
+	RESERVED
+CVE-2011-4721
+	RESERVED
+CVE-2011-4720
+	RESERVED
+CVE-2011-4719 (Multiple unspecified vulnerabilities in Google Chrome before ...)
+	TODO: check
+CVE-2011-4718
+	RESERVED
+CVE-2011-4717
+	RESERVED
+CVE-2011-4716 (Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, ...)
+	TODO: check
+CVE-2011-4715 (Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha ...)
+	TODO: check
+CVE-2011-4714 (Directory traversal vulnerability in Virtual Vertex Muster before 6.20 ...)
+	TODO: check
+CVE-2011-4713 (Directory traversal vulnerability in catalog/content.php in osCSS2 ...)
+	TODO: check
+CVE-2011-4712 (Directory traversal vulnerability in Oxide WebServer allows remote ...)
+	TODO: check
+CVE-2011-4711 (Multiple directory traversal vulnerabilities in namazu.cgi in Namazu ...)
+	TODO: check
+CVE-2011-4710 (Multiple SQL injection vulnerabilities in Pixie CMS 1.01 through 1.04 ...)
+	TODO: check
+CVE-2011-4709 (Multiple cross-site scripting (XSS) vulnerabilities in Hotaru.php in ...)
+	TODO: check
+CVE-2011-4708 (Cross-site scripting (XSS) vulnerability in IBM Rational Asset Manager ...)
+	TODO: check
+CVE-2011-4707 (Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan ...)
+	TODO: check
+CVE-2011-4706
+	RESERVED
+CVE-2011-4705
+	RESERVED
+CVE-2011-4704
+	RESERVED
+CVE-2011-4703
+	RESERVED
+CVE-2011-4702
+	RESERVED
+CVE-2011-4701
+	RESERVED
+CVE-2011-4700
+	RESERVED
+CVE-2011-4699
+	RESERVED
+CVE-2011-4698
+	RESERVED
+CVE-2011-4697
+	RESERVED
+CVE-2011-4696
+	RESERVED
+CVE-2010-5075
+	RESERVED
 CVE-2012-0070
 	RESERVED
 CVE-2012-0069
@@ -926,8 +1074,7 @@
 	RESERVED
 	{DSA-2359-1}
 	- mojarra 2.0.3-2 (bug #650430)
-CVE-2011-4357 [clearsilver format string issue]
-	RESERVED
+CVE-2011-4357 (Format string vulnerability in the p_cgi_error function in ...)
 	{DSA-2355-1}
 	- clearsilver <unfixed> (bug #649322)
 CVE-2011-4356 (Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before ...)
@@ -969,16 +1116,15 @@
 	- yaws 1.91-2 (bug #650009)
 	[lenny] - yaws <not-affected> (Vulnerable code not present)
 	[squeeze] - yaws <not-affected> (Vulnerable code not present)
-CVE-2011-4349
-	RESERVED
+CVE-2011-4349 (Multiple SQL injection vulnerabilities in (1) cd-mapping-db.c and (2) ...)
 	- colord <unfixed> (medium; bug #650021)
 CVE-2011-4348
 	RESERVED
 CVE-2011-4347
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2011-4346
-	RESERVED
+CVE-2011-4346 (Cross-site scripting (XSS) vulnerability in the web interface in Red ...)
+	TODO: check
 CVE-2011-4345 (Cross-site scripting (XSS) vulnerability in Namazu before 2.0.21, when ...)
 	- namazu2 2.0.21-1 (low)
 	[squeeze] - namazu2 <no-dsa> (Minor issue)
@@ -1064,8 +1210,7 @@
 	NOTE: Related to CVE-2011-3368 and CVE-2011-3639 but a different issue
 CVE-2011-4316
 	RESERVED
-CVE-2011-4315
-	RESERVED
+CVE-2011-4315 (Heap-based buffer overflow in compression-pointer processing in ...)
 	- nginx 1.1.8-1 (low)
 	[squeeze] - nginx <no-dsa> (Minor issue)
 	[lenny] - nginx <no-dsa> (Minor issue)
@@ -1680,8 +1825,7 @@
 CVE-2011-4129
 	RESERVED
 	- libsocialweb 0.25.20-1
-CVE-2011-4128
-	RESERVED
+CVE-2011-4128 (Buffer overflow in the gnutls_session_get_data function in ...)
 	- gnutls26 2.12.14-1 (bug #648441)
 CVE-2011-4127
 	RESERVED
@@ -1693,7 +1837,7 @@
 	RESERVED
 CVE-2011-4123
 	RESERVED
-CVE-2011-4122 (kcheckpass, as used in OpenPAM in FreeBSD 8.1 and possibly other ...)
+CVE-2011-4122 (Directory traversal vulnerability in openpam_configure.c in OpenPAM ...)
 	NOT-FOR-US: OpenPAM
 CVE-2011-4121
 	RESERVED
@@ -1875,7 +2019,7 @@
 	- asterisk 1:1.8.7.1~dfsg-1 (bug #647252)
 	[lenny] - asterisk <not-affected> (Only affects >= 1.8)
 	[squeeze] - asterisk <not-affected> (Only affects >= 1.8)
-CVE-2011-4062 (Buffer overflow in the "linux emulation" support in FreeBSD 7.3 and ...)
+CVE-2011-4062 (Buffer overflow in the kernel in FreeBSD 7.3 through 9.0-RC1 allows ...)
 	{DSA-2325-1}
 	- kfreebsd-10 10.0~svn226224-1
 	- kfreebsd-9 9.0~svn225873-1 
@@ -5189,8 +5333,8 @@
 	{DSA-2303-1}
 	- linux-2.6 3.0.0-2
 	[lenny] - linux-2.6 <not-affected> (perf not yet present)
-CVE-2011-2917
-	RESERVED
+CVE-2011-2917 (SQL injection vulnerability in administrator/index2.php in Mambo CMS ...)
+	TODO: check
 CVE-2011-2916
 	RESERVED
 	- qtnx <unfixed> (bug #637439)
@@ -9050,8 +9194,7 @@
 	NOT-FOR-US: HP Photosmart
 CVE-2011-1531 (The webscan component in the Embedded Web Server (EWS) on the HP ...)
 	NOT-FOR-US: HP Photosmart
-CVE-2011-1530
-	RESERVED
+CVE-2011-1530 (The process_tgs_req function in do_tgs_req.c in the Key Distribution ...)
 	- krb5 <unfixed>
 	[squeeze] - krb5 <not-affected> (Only affecs 1.9 and higher)
 	[lenny] - krb5 <not-affected> (Only affecs 1.9 and higher)
@@ -12700,8 +12843,8 @@
 	RESERVED
 CVE-2011-0292
 	RESERVED
-CVE-2011-0291
-	RESERVED
+CVE-2011-0291 (The BlackBerry PlayBook service on the Research In Motion (RIM) ...)
+	TODO: check
 CVE-2011-0290 (The BlackBerry Collaboration Service in Research In Motion (RIM) ...)
 	NOT-FOR-US: BlackBerry Enterprise Server
 CVE-2011-0289

More information about the Secure-testing-commits mailing list