[Secure-testing-commits] r17631 - data/CVE

Joey Hess joeyh at alioth.debian.org
Thu Nov 17 21:14:40 UTC 2011 

Author: joeyh
Date: 2011-11-17 21:14:40 +0000 (Thu, 17 Nov 2011)
New Revision: 17631

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-11-17 20:59:31 UTC (rev 17630)
+++ data/CVE/list	2011-11-17 21:14:40 UTC (rev 17631)
@@ -1,3 +1,18 @@
+CVE-2011-4462
+	RESERVED
+CVE-2011-4461
+	RESERVED
+CVE-2011-4460
+	RESERVED
+CVE-2011-4459
+	RESERVED
+CVE-2011-4458
+	RESERVED
+CVE-2011-4457
+	RESERVED
+CVE-2011-4456
+	REJECTED
+	TODO: check
 CVE-2011-4455
 	RESERVED
 CVE-2011-4454
@@ -860,14 +875,14 @@
 	RESERVED
 CVE-2011-4159
 	RESERVED
-CVE-2011-4158
-	RESERVED
-CVE-2011-4157
-	RESERVED
-CVE-2011-4156
-	RESERVED
-CVE-2011-4155
-	RESERVED
+CVE-2011-4158 (Unspecified vulnerability in HP Directories Support for ProLiant ...)
+	TODO: check
+CVE-2011-4157 (Stack-based buffer overflow in hydra.exe in HP SAN/iQ before 9.5 on ...)
+	TODO: check
+CVE-2011-4156 (Cross-site scripting (XSS) vulnerability in HP Network Node Manager i ...)
+	TODO: check
+CVE-2011-4155 (Cross-site scripting (XSS) vulnerability in HP Network Node Manager i ...)
+	TODO: check
 CVE-2011-4154
 	RESERVED
 CVE-2011-4153
@@ -934,6 +949,7 @@
 	- linux-2.6 <unfixed>
 CVE-2011-4130 [Response pool use-after-free memory corruption error]
 	RESERVED
+	{DSA-2346-2 DSA-2346-1}
 	- proftpd-dfsg 1.3.4~rc3-2 (high; bug #648373)
 	[lenny] - proftpd-dfsg <not-affected> (vulnerable functionality not present)
 	[squeeze] - proftpd-dfsg 1.3.3a-6squeeze4
@@ -5622,6 +5638,7 @@
 	RESERVED
 CVE-2011-2503
 	RESERVED
+	{DSA-2348-1}
 	- systemtap 1.6-1 (bug #635542)
 CVE-2011-2502
 	RESERVED
@@ -14322,8 +14339,10 @@
 	- tomcat6 6.0.28-9 (bug #606388)
 	[lenny] - tomcat6 <not-affected> (Only ships the servlet package)
 CVE-2010-4171 (The staprun runtime tool in SystemTap 1.3 does not verify that a ...)
+	{DSA-2348-1}
 	- systemtap 1.2-3 (bug #603946)
 CVE-2010-4170 (The staprun runtime tool in SystemTap 1.3 does not properly clear the ...)
+	{DSA-2348-1}
 	- systemtap 1.2-3 (bug #603946)
 CVE-2010-4169 (Use-after-free vulnerability in mm/mprotect.c in the Linux kernel ...)
 	- linux-2.6 2.6.32-29

More information about the Secure-testing-commits mailing list