[Secure-testing-commits] r17361 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Oct 3 21:14:22 UTC 2011 

Author: joeyh
Date: 2011-10-03 21:14:22 +0000 (Mon, 03 Oct 2011)
New Revision: 17361

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-10-03 18:10:53 UTC (rev 17360)
+++ data/CVE/list	2011-10-03 21:14:22 UTC (rev 17361)
@@ -1,3 +1,207 @@
+CVE-2011-3974 (Integer signedness error in the decode_residual_inter function in ...)
+	TODO: check
+CVE-2011-3973 (cavsdec.c in libavcodec in FFmpeg before 0.7.4 and 0.8.x before 0.8.3 ...)
+	TODO: check
+CVE-2011-3972
+	RESERVED
+CVE-2011-3971
+	RESERVED
+CVE-2011-3970
+	RESERVED
+CVE-2011-3969
+	RESERVED
+CVE-2011-3968
+	RESERVED
+CVE-2011-3967
+	RESERVED
+CVE-2011-3966
+	RESERVED
+CVE-2011-3965
+	RESERVED
+CVE-2011-3964
+	RESERVED
+CVE-2011-3963
+	RESERVED
+CVE-2011-3962
+	RESERVED
+CVE-2011-3961
+	RESERVED
+CVE-2011-3960
+	RESERVED
+CVE-2011-3959
+	RESERVED
+CVE-2011-3958
+	RESERVED
+CVE-2011-3957
+	RESERVED
+CVE-2011-3956
+	RESERVED
+CVE-2011-3955
+	RESERVED
+CVE-2011-3954
+	RESERVED
+CVE-2011-3953
+	RESERVED
+CVE-2011-3952
+	RESERVED
+CVE-2011-3951
+	RESERVED
+CVE-2011-3950
+	RESERVED
+CVE-2011-3949
+	RESERVED
+CVE-2011-3948
+	RESERVED
+CVE-2011-3947
+	RESERVED
+CVE-2011-3946
+	RESERVED
+CVE-2011-3945
+	RESERVED
+CVE-2011-3944
+	RESERVED
+CVE-2011-3943
+	RESERVED
+CVE-2011-3942
+	RESERVED
+CVE-2011-3941
+	RESERVED
+CVE-2011-3940
+	RESERVED
+CVE-2011-3939
+	RESERVED
+CVE-2011-3938
+	RESERVED
+CVE-2011-3937
+	RESERVED
+CVE-2011-3936
+	RESERVED
+CVE-2011-3935
+	RESERVED
+CVE-2011-3934
+	RESERVED
+CVE-2011-3933
+	RESERVED
+CVE-2011-3932
+	RESERVED
+CVE-2011-3931
+	RESERVED
+CVE-2011-3930
+	RESERVED
+CVE-2011-3929
+	RESERVED
+CVE-2011-3928
+	RESERVED
+CVE-2011-3927
+	RESERVED
+CVE-2011-3926
+	RESERVED
+CVE-2011-3925
+	RESERVED
+CVE-2011-3924
+	RESERVED
+CVE-2011-3923
+	RESERVED
+CVE-2011-3922
+	RESERVED
+CVE-2011-3921
+	RESERVED
+CVE-2011-3920
+	RESERVED
+CVE-2011-3919
+	RESERVED
+CVE-2011-3918
+	RESERVED
+CVE-2011-3917
+	RESERVED
+CVE-2011-3916
+	RESERVED
+CVE-2011-3915
+	RESERVED
+CVE-2011-3914
+	RESERVED
+CVE-2011-3913
+	RESERVED
+CVE-2011-3912
+	RESERVED
+CVE-2011-3911
+	RESERVED
+CVE-2011-3910
+	RESERVED
+CVE-2011-3909
+	RESERVED
+CVE-2011-3908
+	RESERVED
+CVE-2011-3907
+	RESERVED
+CVE-2011-3906
+	RESERVED
+CVE-2011-3905
+	RESERVED
+CVE-2011-3904
+	RESERVED
+CVE-2011-3903
+	RESERVED
+CVE-2011-3902
+	RESERVED
+CVE-2011-3901
+	RESERVED
+CVE-2011-3900
+	RESERVED
+CVE-2011-3899
+	RESERVED
+CVE-2011-3898
+	RESERVED
+CVE-2011-3897
+	RESERVED
+CVE-2011-3896
+	RESERVED
+CVE-2011-3895
+	RESERVED
+CVE-2011-3894
+	RESERVED
+CVE-2011-3893
+	RESERVED
+CVE-2011-3892
+	RESERVED
+CVE-2011-3891
+	RESERVED
+CVE-2011-3890
+	RESERVED
+CVE-2011-3889
+	RESERVED
+CVE-2011-3888
+	RESERVED
+CVE-2011-3887
+	RESERVED
+CVE-2011-3886
+	RESERVED
+CVE-2011-3885
+	RESERVED
+CVE-2011-3884
+	RESERVED
+CVE-2011-3883
+	RESERVED
+CVE-2011-3882
+	RESERVED
+CVE-2011-3881
+	RESERVED
+CVE-2011-3880
+	RESERVED
+CVE-2011-3879
+	RESERVED
+CVE-2011-3878
+	RESERVED
+CVE-2011-3877
+	RESERVED
+CVE-2011-3876
+	RESERVED
+CVE-2011-3875
+	RESERVED
+CVE-2011-3874
+	RESERVED
+CVE-2011-3873
+	RESERVED
 CVE-2011-XXXX [unsafe use of eval]
 	- libdigest-perl 1.17-1 (low; bug #644108)
 	[lenny] - libdigest-perl <no-dsa> (Minor issue)
@@ -13,12 +217,15 @@
 	RESERVED
 CVE-2011-3871
 	RESERVED
+	{DSA-2314-1}
 	- puppet 2.7.3-3
 CVE-2011-3870
 	RESERVED
+	{DSA-2314-1}
 	- puppet 2.7.3-3
 CVE-2011-3869
 	RESERVED
+	{DSA-2314-1}
 	- puppet 2.7.3-3
 CVE-2011-3868
 	RESERVED
@@ -66,6 +273,7 @@
 	RESERVED
 CVE-2011-3848
 	RESERVED
+	{DSA-2314-1}
 	- puppet 2.7.3-2
 CVE-2011-3847
 	RESERVED
@@ -642,10 +850,10 @@
 	RESERVED
 CVE-2011-3581
 	RESERVED
-CVE-2011-3580
-	RESERVED
-CVE-2011-3579
-	RESERVED
+CVE-2011-3580 (IceWarp WebMail in IceWarp Mail Server before 10.3.3 allows remote ...)
+	TODO: check
+CVE-2011-3579 (server/webmail.php in IceWarp WebMail in IceWarp Mail Server before ...)
+	TODO: check
 CVE-2011-3578 (Cross-site scripting (XSS) vulnerability in ...)
 	TODO: check
 CVE-2004-2770
@@ -1141,12 +1349,12 @@
 	RESERVED
 CVE-2011-3372
 	RESERVED
-CVE-2011-3371
-	RESERVED
+CVE-2011-3371 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+	TODO: check
 CVE-2011-3370
 	RESERVED
-CVE-2011-3369
-	RESERVED
+CVE-2011-3369 (The add_conversation function in conversations.c in EtherApe before ...)
+	TODO: check
 CVE-2011-3368
 	RESERVED
 CVE-2011-3367
@@ -1162,8 +1370,7 @@
 	- linux-2.6 2.6.39-1
 	[squeeze] - linux-2.6 2.6.32-34
 	[lenny] - linux-2.6 <not-affected> (vulnerability introduced in commit 1bfe73c2)
-CVE-2011-3362 [libavcodec insufficient boundary check in CAVS]
-	RESERVED
+CVE-2011-3362 (Integer signedness error in the decode_residual_block function in ...)
 	- libav 4:0.7.1-7 (bug #641478)
 	- ffmpeg <removed>
 	- ffmpeg-debian <end-of-life>
@@ -3106,10 +3313,10 @@
 	RESERVED
 CVE-2011-2675
 	RESERVED
-CVE-2011-2674
-	RESERVED
-CVE-2011-2673
-	RESERVED
+CVE-2011-2674 (BaserCMS before 1.6.12 does not properly restrict additions to the ...)
+	TODO: check
+CVE-2011-2673 (Cross-site scripting (XSS) vulnerability in BaserCMS before 1.6.13.2 ...)
+	TODO: check
 CVE-2011-2672 (Cross-site scripting (XSS) vulnerability in SemanticScuttle before ...)
 	TODO: check
 CVE-2011-2671 (Unspecified vulnerability in Megalith 12th edition through 27th ...)
@@ -3741,8 +3948,8 @@
 	RESERVED
 CVE-2011-2412 (Unspecified vulnerability in HP Business Service Automation (BSA) ...)
 	TODO: check
-CVE-2011-2411
-	RESERVED
+CVE-2011-2411 (Unspecified vulnerability on HP NonStop Servers with software H06.x ...)
+	TODO: check
 CVE-2011-2410 (Cross-site scripting (XSS) vulnerability in HP OpenView Performance ...)
 	NOT-FOR-US: HP OpenView
 CVE-2011-2409 (Cross-site scripting (XSS) vulnerability in the Calendar application ...)
@@ -9119,12 +9326,12 @@
 	NOT-FOR-US: Adobe Shockwave Player
 CVE-2011-0555 (The TextXtra.x32 module in Adobe Shockwave Player before 11.5.9.620 ...)
 	NOT-FOR-US: Adobe Shockwave Player
-CVE-2011-0554
-	RESERVED
-CVE-2011-0553
-	RESERVED
-CVE-2011-0552
-	RESERVED
+CVE-2011-0554 (The management console in Symantec IM Manager before 8.4.18 allows ...)
+	TODO: check
+CVE-2011-0553 (SQL injection vulnerability in the management console in Symantec IM ...)
+	TODO: check
+CVE-2011-0552 (Multiple cross-site scripting (XSS) vulnerabilities in the management ...)
+	TODO: check
 CVE-2011-0551 (Cross-site request forgery (CSRF) vulnerability in the Web Interface ...)
 	NOT-FOR-US: Symantec Endpoint Protection
 CVE-2011-0550 (Multiple cross-site scripting (XSS) vulnerabilities in the Web ...)

More information about the Secure-testing-commits mailing list