[Secure-testing-commits] r16717 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Thu May 26 19:29:11 UTC 2011 

Author: jmm
Date: 2011-05-26 19:29:11 +0000 (Thu, 26 May 2011)
New Revision: 16717

Modified:
   data/CVE/list
Log:
liferay ITP
new chrome issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-05-26 06:12:14 UTC (rev 16716)
+++ data/CVE/list	2011-05-26 19:29:11 UTC (rev 16717)
@@ -856,18 +856,26 @@
 	RESERVED
 CVE-2011-1807
 	RESERVED
+	- chromium-browser 11.0.696.71~r86024-1
+	- webkit <undetermined>
 CVE-2011-1806
 	RESERVED
+	- chromium-browser 11.0.696.71~r86024-1
+	- webkit <undetermined>
 CVE-2011-1805
 	RESERVED
 CVE-2011-1804
 	RESERVED
+	- chromium-browser 11.0.696.71~r86024-1
+	- webkit <undetermined>
 CVE-2011-1803
 	RESERVED
 CVE-2011-1802
 	RESERVED
 CVE-2011-1801
 	RESERVED
+	- webkit <undetermined>
+	- chromium-browser 11.0.696.71~r86024-1
 CVE-2011-1800 (Multiple integer overflows in the SVG Filters implementation in ...)
 	- chromium-browser 11.0.696.68~r84545-1
 	- webkit <undetermined>
@@ -1431,9 +1439,9 @@
 	NOTE: https://github.com/sitaramc/gitolite/commit/4ce00aef84d1ff7c35f7adbbb99a6241cfda00cc
 	[squeeze] - gitolite 1.5.4-2+squeeze1
 CVE-2011-1571 (Unspecified vulnerability in the XSL Content portlet in Liferay Portal ...)
-	TODO: check
+	- liferay-portal <itp> (bug #569819)
 CVE-2011-1570 (Cross-site scripting (XSS) vulnerability in Liferay Portal Community ...)
-	TODO: check
+	- liferay-portal <itp> (bug #569819)
 CVE-2011-1569 (download.aspx in Douran Portal 3.9.7.8 allows remote attackers to ...)
 	NOT-FOR-US: Douran Portal
 CVE-2011-1568 (Format string vulnerability in the logText function in shmemmgr9.dll ...)
@@ -1633,11 +1641,11 @@
 CVE-2011-1505 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.27 ...)
 	NOT-FOR-US: IBM Lotus Quickr
 CVE-2011-1504 (Cross-site scripting (XSS) vulnerability in Liferay Portal Community ...)
-	TODO: check
+	- liferay-portal <itp> (bug #569819)
 CVE-2011-1503 (The XSL Content portlet in Liferay Portal Community Edition (CE) 5.x ...)
-	TODO: check
+	- liferay-portal <itp> (bug #569819)
 CVE-2011-1502 (Liferay Portal Community Edition (CE) 6.x before 6.0.6 GA, when Apache ...)
-	TODO: check
+	- liferay-portal <itp> (bug #569819)
 CVE-2011-1501
 	REJECTED
 CVE-2011-1500 (PreferencesPithosDialog.py in Pithos 0.3.7 does not properly restrict ...)
@@ -21643,7 +21651,7 @@
 CVE-2009-3743 (Off-by-one error in the Ins_MINDEX function in the TrueType bytecode ...)
 	- ghostscript 8.71~dfsg-1
 CVE-2009-3742 (Cross-site scripting (XSS) vulnerability in Liferay Portal before ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2009-3741
 	RESERVED
 CVE-2009-3740
@@ -47755,7 +47763,7 @@
 CVE-2008-0565 (SQL injection vulnerability in vote.php in DeltaScripts PHP Links 1.3 ...)
 	NOT-FOR-US: DeltaScripts PHP Links
 CVE-2008-0563 (Cross-site request forgery (CSRF) vulnerability in ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2008-0562 (SQL injection vulnerability in index.php in the Restaurant ...)
 	NOT-FOR-US: Restaurant component for Mambo and Joomla!
 CVE-2008-0561 (SQL injection vulnerability in index.php in the Arthur Konze ...)
@@ -48719,15 +48727,15 @@
 CVE-2008-0183
 	RESERVED
 CVE-2008-0182 (Cross-site request forgery (CSRF) vulnerability in the Admin portlet ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2008-0181 (Cross-site scripting (XSS) vulnerability in the Admin portlet in ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2008-0180 (Cross-site scripting (XSS) vulnerability in ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2008-0179 (Cross-site scripting (XSS) vulnerability in ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2008-0178 (Cross-site scripting (XSS) vulnerability in the Enterprise Admin ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2008-0177 (The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME ...)
 	- kfreebsd-7 <not-affected> (see bug #483152)
 	- kfreebsd-6 <not-affected> (see bug #483152)
@@ -50370,7 +50378,7 @@
 CVE-2007-6174 (PHPDevShell before 0.7.0 allows remote authenticated users to gain ...)
 	NOT-FOR-US: PHPDevShell
 CVE-2007-6173 (Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay ...)
-	NOT-FOR-US: Liferay
+	- liferay-portal <itp> (bug #569819)
 CVE-2007-6172 (Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote ...)
 	NOT-FOR-US: wpQuiz
 CVE-2007-6169 (SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty ...)
@@ -50618,7 +50626,7 @@
 CVE-2007-6056 (frame.html in Aida-Web (Aida Web) allows remote attackers to bypass a ...)
 	NOT-FOR-US: Aida-Web
 CVE-2007-6055 (Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay ...)
-	NOT-FOR-US: Liferay Portal
+	- liferay-portal <itp> (bug #569819)
 CVE-2007-6054 (Cross-site scripting (XSS) vulnerability in the login page in the ...)
 	NOT-FOR-US: Aruba 800 Mobility Controller
 CVE-2007-6053 (IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large ...)

More information about the Secure-testing-commits mailing list