[Secure-testing-commits] r16275 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Mar 1 21:15:27 UTC 2011 

Author: joeyh
Date: 2011-03-01 21:15:18 +0000 (Tue, 01 Mar 2011)
New Revision: 16275

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-01 15:40:35 UTC (rev 16274)
+++ data/CVE/list	2011-03-01 21:15:18 UTC (rev 16275)
@@ -1,3 +1,7 @@
+CVE-2011-1105 (Multiple cross-site scripting (XSS) vulnerabilities in Mutare EVM ...)
+	TODO: check
+CVE-2011-1104 (Multiple cross-site request forgery (CSRF) vulnerabilities in Mutare ...)
+	TODO: check
 CVE-2011-1103 (The WebReporting module in F-Secure Policy Manager 7.x, 8.00 before ...)
 	NOT-FOR-US: F-Secure Policy Manager
 CVE-2011-1102 (Cross-site scripting (XSS) vulnerability in the WebReporting module in ...)
@@ -227,8 +231,7 @@
 	- linux-2.6 2.6.37-1
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.33)
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.33)
-CVE-2011-1020
-	RESERVED
+CVE-2011-1020 (The proc filesystem implementation in the Linux kernel 2.6.37 and ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1019
 	RESERVED
@@ -240,8 +243,7 @@
 CVE-2011-1017
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2011-1016
-	RESERVED
+CVE-2011-1016 (The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do not ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1015 [path traversal in CGIHTTPServer]
 	RESERVED
@@ -269,12 +271,10 @@
 	- linux-2.6 2.6.37-2
 CVE-2011-1009
 	RESERVED
-CVE-2011-1008 [Scrip's TicketObj info leak]
-	RESERVED
+CVE-2011-1008 (Scrips_Overlay.pm in Best Practical Solutions RT before 3.8.9 does not ...)
 	- request-tracker3.6 <removed>
 	- request-tracker3.8 <unfixed>
-CVE-2011-1007 [login page back button attack]
-	RESERVED
+CVE-2011-1007 (Best Practical Solutions RT before 3.8.9 does not perform certain ...)
 	- request-tracker3.6 <removed>
 	- request-tracker3.8 <unfixed>
 CVE-2011-1006
@@ -512,8 +512,8 @@
 	RESERVED
 CVE-2011-0926 (A certain ActiveX control in CSDWebInstaller.ocx in Cisco Secure ...)
 	NOT-FOR-US: Cisco Secure Desktop
-CVE-2011-0925
-	RESERVED
+CVE-2011-0925 (The CSDWebInstallerCtrl ActiveX control in CSDWebInstaller.ocx in ...)
+	TODO: check
 CVE-2011-0924 (The client in HP Data Protector does not verify the contents of files ...)
 	NOT-FOR-US: HP Data Protector
 CVE-2011-0923 (The client in HP Data Protector does not properly validate EXEC_CMD ...)

More information about the Secure-testing-commits mailing list