[Secure-testing-commits] r16464 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2011-03-31 21:15:47 +0000 (Thu, 31 Mar 2011)
New Revision: 16464

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-31 19:33:02 UTC (rev 16463)
+++ data/CVE/list	2011-03-31 21:15:47 UTC (rev 16464)
@@ -1,3 +1,13 @@
+CVE-2011-1551 (SUSE openSUSE Factory assigns ownership of the /var/log/cobbler/ ...)
+	TODO: check
+CVE-2011-1550 (The default configuration of logrotate on SUSE openSUSE Factory uses ...)
+	TODO: check
+CVE-2011-1549 (The default configuration of logrotate on Gentoo Linux uses root ...)
+	TODO: check
+CVE-2011-1548 (The default configuration of logrotate on Debian GNU/Linux uses root ...)
+	TODO: check
+CVE-2009-5064 (** DISPUTED ** ldd in the GNU C Library (aka glibc or libc6) 2.13 and ...)
+	TODO: check
 CVE-2011-1547
 	RESERVED
 CVE-2011-1546
@@ -1030,10 +1040,10 @@
 	[lenny] - feedparser <no-dsa> (Minor issue)
 	NOTE: CVE requested
 	NOTE: http://code.google.com/p/feedparser/issues/detail?id=195
-CVE-2011-1155
-	RESERVED
-CVE-2011-1154
-	RESERVED
+CVE-2011-1155 (The writeState function in logrotate.c in logrotate 3.7.9 and earlier ...)
+	TODO: check
+CVE-2011-1154 (The shred_file function in logrotate.c in logrotate 3.7.9 and earlier ...)
+	TODO: check
 CVE-2011-1153 (Multiple format string vulnerabilities in phar_object.c in the phar ...)
 	- php5 5.3.6-1
 CVE-2011-1152
@@ -1257,10 +1267,10 @@
 	[lenny] - lilo <not-affected> (Introduced in 23.1)
 CVE-2011-1099 (Multiple directory traversal vulnerabilities in FocalMedia.Net Quick ...)
 	NOT-FOR-US: FocalMedia.Net Quick Polls
-CVE-2011-1098
-	RESERVED
-CVE-2011-1097
-	RESERVED
+CVE-2011-1098 (Race condition in the createOutputFile function in logrotate.c in ...)
+	TODO: check
+CVE-2011-1097 (rsync 3.x before 3.0.8, when certain recursion, deletion, and ...)
+	TODO: check
 CVE-2011-1096
 	RESERVED
 CVE-2011-1095 [glibc locale escaping issue]