[Secure-testing-commits] r16923 - data/CVE

Mon Jul 11 21:15:31 UTC 2011

Author: joeyh
Date: 2011-07-11 21:15:30 +0000 (Mon, 11 Jul 2011)
New Revision: 16923

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2011-07-11 21:07:09 UTC (rev 16922)
+++ data/CVE/list	2011-07-11 21:15:30 UTC (rev 16923)
@@ -1,16 +1,16 @@
-CVE-2010-4814
+CVE-2010-4814 (SQL injection vulnerability in index1.php in Best Soft Inc. (BSI) ...)
 	NOT-FOR-US: Best Soft Inc.
-CVE-2010-4813
+CVE-2010-4813 (Cross-site scripting (XSS) vulnerability in the Category Tokens module ...)
 	NOT-FOR-US: Drupal 6.x Category Tokens module
-CVE-2010-4812
+CVE-2010-4812 (Multiple SQL injection vulnerabilities in 6kbbs 8.0 build 20100901 ...)
 	NOT-FOR-US: 6kbbs
-CVE-2010-4811
+CVE-2010-4811 (Multiple cross-site scripting (XSS) vulnerabilities in ajaxmember.php ...)
 	NOT-FOR-US: 6kbbs
-CVE-2010-4810
+CVE-2010-4810 (Multiple PHP remote file inclusion vulnerabilities in AR Web Content ...)
 	NOT-FOR-US: AR Web Content Manager
-CVE-2010-4809
+CVE-2010-4809 (SQL injection vulnerability in index.php in DBSite 1.0 allows remote ...)
 	NOT-FOR-US: DBSite
-CVE-2010-4808
+CVE-2010-4808 (SQL injection vulnerability in index.php in Webmatic allows remote ...)
 	NOT-FOR-US: Webmatic
 CVE-2011-2682 (The Login component in IBM Rational DOORS Web Access 1.4.x before ...)
 	NOT-FOR-US: IBM Rational DOORS Web Access
@@ -55,8 +55,7 @@
 	- asterisk <undetermined>
 CVE-2011-2665 (reqresp_parser.c in the SIP channel driver in Asterisk Open Source ...)
 	- asterisk <undetermined>
-CVE-2011-2664
-	RESERVED
+CVE-2011-2664 (Unspecified vulnerability in Check Point Multi-Domain Management / ...)
 	NOT-FOR-US: Check Point Multi-Domain Management
 CVE-2011-2663
 	RESERVED
@@ -346,7 +345,7 @@
 CVE-2011-XXXX [unspecified security vulnerabilities from 4.3.7]
 	- movabletype-opensource 4.3.7+dfsg-1 (bug #631437)
 CVE-2011-2536 (chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x ...)
-	{DSA-2276-1}
+	{DSA-2276-2 DSA-2276-1}
 	- asterisk 1:1.8.4.4~dfsg-1 (bug #632029)
 CVE-2011-2534 (Buffer overflow in the clusterip_proc_write function in ...)
 	- linux-2.6 2.6.39-1 (low)
@@ -366,12 +365,12 @@
 	[squeeze] - asterisk <not-affected>
 	[lenny] - asterisk <not-affected>
 CVE-2011-2535 (chan_iax2.c in the IAX2 channel driver in Asterisk Open Source 1.4.x ...)
-	{DSA-2276-1}
+	{DSA-2276-2 DSA-2276-1}
 	- asterisk 1:1.8.4.3-1 (bug #631448)
 	[squeeze] - asterisk <not-affected>
 	[lenny] - asterisk <not-affected>
 CVE-2011-2529 (chan_sip.c in the SIP channel driver in Asterisk Open Source 1.6.x ...)
-	{DSA-2276-1}
+	{DSA-2276-2 DSA-2276-1}
 	- asterisk 1:1.8.4.3-1 (bug #631446)
 CVE-2011-2528
 	RESERVED
@@ -533,11 +532,9 @@
 	RESERVED
 CVE-2011-2466
 	RESERVED
-CVE-2011-2465
-	RESERVED
+CVE-2011-2465 (Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and ...)
 	- bind9 <not-affected> (Only affects 9.8, which hasn't been uploaded yet)
-CVE-2011-2464 [UPDATE-related crash in BIND]
-	RESERVED
+CVE-2011-2464 (Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, ...)
 	{DSA-2272-1}
 	- bind9 <unfixed> (high)
 CVE-2011-2463
@@ -855,8 +852,7 @@
 CVE-2011-2345 (The NPAPI implementation in Google Chrome before 12.0.742.112 does not ...)
 	- chromium-browser <not-affected> (linux version is not affected)
 	- webkit <not-affected>
-CVE-2011-2344
-	RESERVED
+CVE-2011-2344 (Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext ...)
 	NOT-FOR-US: Android SDK
 CVE-2011-2343
 	RESERVED
@@ -4708,8 +4704,7 @@
 	{DSA-2174-1}
 	- avahi 0.6.28-4 (bug #614785)
 	NOTE: https://bugzilla.redhat.com/CVE-2011-0634 (duped with CVE-2011-1002)
-CVE-2011-1001
-	RESERVED
+CVE-2011-1001 (dexdump in Android SDK before 2.3 does not properly perform structural ...)
 	NOT-FOR-US: Android SDK
 CVE-2011-1000 (jingle-factory.c in Telepathy Gabble 0.11 before 0.11.7, 0.10 before ...)
 	{DSA-2169-1}


