[Secure-testing-commits] r15788 - data/CVE

Raphael Geissert geissert at alioth.debian.org
Tue Jan 4 22:30:56 UTC 2011 

Author: geissert
Date: 2011-01-04 22:30:56 +0000 (Tue, 04 Jan 2011)
New Revision: 15788

Modified:
   data/CVE/list
Log:
new gimp, subversion, linux, and wireshark issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-01-04 22:22:43 UTC (rev 15787)
+++ data/CVE/list	2011-01-04 22:30:56 UTC (rev 15788)
@@ -109,8 +109,14 @@
 	RESERVED
 CVE-2010-4620
 	RESERVED
-CVE-2010-XXXX
+CVE-2010-4543 [heap overflow read_channel_data() in file-psp.c]
 	- gimp <unfixed> (bug #608497)
+CVE-2010-4542 [GFIG plugin stack buffer overflow]
+	- gimp <unfixed> (bug #608497)
+CVE-2010-4541 [SPHERE DESIGNER plugin stack buffer overflow]
+	- gimp <unfixed> (bug #608497)
+CVE-2010-4540 [LIGHTING EFFECTS > LIGHT plugin stack buffer overflow]
+	- gimp <unfixed> (bug #608497)
 CVE-2010-4619 (SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka ...)
 	NOT-FOR-US: Mafya Oyun Scrpti
 CVE-2010-4618 (Cross-site scripting (XSS) vulnerability in the Algis Info ...)
@@ -815,18 +821,14 @@
 	- wordpress 3.0.3-1 (bug #606657)
 	[lenny] - wordpress <not-affected> (vulnerable code not present)
 	NOTE: http://core.trac.wordpress.org/changeset/16803
-CVE-2010-4543
+CVE-2010-4539 [crash in mod_dav_svn when using SVNParentPath]
 	RESERVED
-CVE-2010-4542
+	- subversion <unfixed>
+	NOTE: AANLkTi=3tF6zHvTRy-fVSKHE6sbEXJYeq1MrJD7ntdPH at mail.gmail.com
+CVE-2010-4538 [ENTTEC dissector overflow]
 	RESERVED
-CVE-2010-4541
-	RESERVED
-CVE-2010-4540
-	RESERVED
-CVE-2010-4539
-	RESERVED
-CVE-2010-4538
-	RESERVED
+	- wireshark <unfixed>
+	TODO: check
 CVE-2010-4537
 	RESERVED
 CVE-2010-4536 (Multiple cross-site scripting (XSS) vulnerabilities in KSES, as used ...)
@@ -865,8 +867,9 @@
 CVE-2010-4527
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2010-4526
+CVE-2010-4526 [sctp: a race between ICMP protocol unreachable and connect()]
 	RESERVED
+	- linux-2.6 <unfixed>
 CVE-2010-4525
 	RESERVED
 CVE-2010-4524 (Cross-site scripting (XSS) vulnerability in lib/mhtxthtml.pl in ...)

More information about the Secure-testing-commits mailing list