[Secure-testing-commits] r16289 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Mar 2 21:16:04 UTC 2011 

Author: joeyh
Date: 2011-03-02 21:15:43 +0000 (Wed, 02 Mar 2011)
New Revision: 16289

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-02 20:58:03 UTC (rev 16288)
+++ data/CVE/list	2011-03-02 21:15:43 UTC (rev 16289)
@@ -1,3 +1,57 @@
+CVE-2011-1125 (Google Chrome before 9.0.597.107 does not properly perform layout, ...)
+	TODO: check
+CVE-2011-1124 (Use-after-free vulnerability in Google Chrome before 9.0.597.107 ...)
+	TODO: check
+CVE-2011-1123 (Google Chrome before 9.0.597.107 does not properly restrict access to ...)
+	TODO: check
+CVE-2011-1122 (The WebGL implementation in Google Chrome before 9.0.597.107 allows ...)
+	TODO: check
+CVE-2011-1121 (Integer overflow in Google Chrome before 9.0.597.107 allows remote ...)
+	TODO: check
+CVE-2011-1120 (The WebGL implementation in Google Chrome before 9.0.597.107 allows ...)
+	TODO: check
+CVE-2011-1119 (Google Chrome before 9.0.597.107 does not properly determine device ...)
+	TODO: check
+CVE-2011-1118 (Google Chrome before 9.0.597.107 does not properly handle TEXTAREA ...)
+	TODO: check
+CVE-2011-1117 (Google Chrome before 9.0.597.107 does not properly handle XHTML ...)
+	TODO: check
+CVE-2011-1116 (Google Chrome before 9.0.597.107 does not properly handle SVG ...)
+	TODO: check
+CVE-2011-1115 (Google Chrome before 9.0.597.107 does not properly render tables, ...)
+	TODO: check
+CVE-2011-1114 (Google Chrome before 9.0.597.107 does not properly handle tables, ...)
+	TODO: check
+CVE-2011-1113 (Google Chrome before 9.0.597.107 on 64-bit Linux platforms does not ...)
+	TODO: check
+CVE-2011-1112 (Google Chrome before 9.0.597.107 does not properly perform SVG ...)
+	TODO: check
+CVE-2011-1111 (Google Chrome before 9.0.597.107 does not properly implement forms ...)
+	TODO: check
+CVE-2011-1110 (Google Chrome before 9.0.597.107 does not properly implement key frame ...)
+	TODO: check
+CVE-2011-1109 (Google Chrome before 9.0.597.107 does not properly process nodes in ...)
+	TODO: check
+CVE-2011-1108 (Google Chrome before 9.0.597.107 does not properly implement ...)
+	TODO: check
+CVE-2011-1107 (Unspecified vulnerability in Google Chrome before 9.0.597.107 allows ...)
+	TODO: check
+CVE-2011-1106 (Cross-site scripting (XSS) vulnerability in stcenter.nsf in the server ...)
+	TODO: check
+CVE-2010-4753 (Cross-site scripting (XSS) vulnerability in LightNEasy.php in ...)
+	TODO: check
+CVE-2010-4752 (SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, ...)
+	TODO: check
+CVE-2010-4751 (SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, ...)
+	TODO: check
+CVE-2010-4750 (Cross-site request forgery (CSRF) vulnerability in ...)
+	TODO: check
+CVE-2010-4749 (Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS ...)
+	TODO: check
+CVE-2010-4748 (Cross-site scripting (XSS) vulnerability in pmwiki.php in PmWiki ...)
+	TODO: check
+CVE-2010-4747 (Cross-site scripting (XSS) vulnerability in ...)
+	TODO: check
 CVE-2011-XXXX [polarssl d-h man in the middle]
 	- polarssl <unfixed> (bug #616114)
 	NOTE: https://lists.ubuntu.com/archives/ubuntu-motu/2011-February/007026.html
@@ -247,8 +301,7 @@
 	- linux-2.6 <unfixed>
 CVE-2011-1018 (logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute ...)
 	- logwatch <unfixed> (bug #615995)
-CVE-2011-1017
-	RESERVED
+CVE-2011-1017 (Heap-based buffer overflow in the ldm_frag_add function in ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1016 (The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do not ...)
 	- linux-2.6 <unfixed>
@@ -268,13 +321,11 @@
 CVE-2011-1013 [drm_modeset_ctl signedness issue]
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2011-1012
-	RESERVED
+CVE-2011-1012 (The ldm_parse_vmdb function in fs/partitions/ldm.c in the Linux kernel ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1011 (The seunshare_mount function in sandbox/seunshare.c in seunshare in ...)
 	NOT-FOR-US: seunshare
-CVE-2011-1010
-	RESERVED
+CVE-2011-1010 (Buffer overflow in the mac_partition function in fs/partitions/mac.c ...)
 	- linux-2.6 2.6.37-2
 CVE-2011-1009
 	RESERVED
@@ -1039,9 +1090,9 @@
 CVE-2011-0720 (Unspecified vulnerability in Plone 2.5 through 4.0 allows remote ...)
 	- plone3 <removed>
 	TODO: check
-CVE-2011-0719
-	RESERVED
+CVE-2011-0719 (Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 3.5.7 ...)
 	{DSA-2175-1}
+	TODO: check
 CVE-2011-0718 (Red Hat Network (RHN) Satellite Server 5.4 does not use a time delay ...)
 	NOT-FOR-US: Red Hat Network Satellite/Spacewalk
 CVE-2011-0717 (Session fixation vulnerability in Red Hat Network (RHN) Satellite ...)
@@ -1062,8 +1113,7 @@
 	NOTE: http://anonsvn.wireshark.org/viewvc?view=rev&revision=35953
 CVE-2011-0712 (Multiple buffer overflows in the caiaq Native Instruments USB audio ...)
 	- linux-2.6 2.6.37-2
-CVE-2011-0711
-	RESERVED
+CVE-2011-0711 (The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux kernel ...)
 	- linux-2.6 <unfixed> (low)
 CVE-2011-0710 (The task_show_regs function in arch/s390/kernel/traps.c in the Linux ...)
 	- linux-2.6 2.6.37-2 (low)
@@ -1730,8 +1780,8 @@
 	RESERVED
 CVE-2011-0455
 	RESERVED
-CVE-2011-0454
-	RESERVED
+CVE-2011-0454 (Buffer overflow in the PPP Access Concentrator (PPPAC) on the SEIL/x86 ...)
+	TODO: check
 CVE-2011-0453 (F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not ...)
 	NOT-FOR-US: F-Secure Internet Gatekeeper
 CVE-2011-0452 (Untrusted search path vulnerability in the script function in ...)
@@ -1779,15 +1829,19 @@
 	RESERVED
 CVE-2011-0437
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1
 CVE-2011-0436 [new users' unencrypted passwords emailed to admin]
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1 (bug #614302)
 CVE-2011-0435
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1
 CVE-2011-0434
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1
 CVE-2011-0433 [linetoken() buffer overflow]
 	RESERVED
@@ -1798,6 +1852,7 @@
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=640923
 CVE-2011-0432
 	RESERVED
+	{DSA-2177-1}
 	- pywebdav 0.9.4-3
 CVE-2011-0431 (The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel ...)
 	{DSA-2168-1}
@@ -2386,8 +2441,8 @@
 	RESERVED
 CVE-2011-0279
 	RESERVED
-CVE-2011-0278
-	RESERVED
+CVE-2011-0278 (Unspecified vulnerability in HP Web Jetadmin 10.2 Service Release 3 ...)
+	TODO: check
 CVE-2011-0277 (Cross-site request forgery (CSRF) vulnerability in HP Power Manager ...)
 	NOT-FOR-US: HP Power Manager
 CVE-2011-0276 (HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 ...)
@@ -2840,6 +2895,7 @@
 	RESERVED
 CVE-2011-0064 [NULL pointer dereference in hb_buffer_add_glyph]
 	RESERVED
+	{DSA-2178-1}
 	- pango1.0 <unfixed>
 CVE-2011-0063
 	RESERVED

More information about the Secure-testing-commits mailing list