[Secure-testing-commits] r17475 - data/CVE

Joey Hess joeyh at alioth.debian.org
Fri Oct 21 21:14:24 UTC 2011 

Author: joeyh
Date: 2011-10-21 21:14:24 +0000 (Fri, 21 Oct 2011)
New Revision: 17475

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-10-21 14:06:18 UTC (rev 17474)
+++ data/CVE/list	2011-10-21 21:14:24 UTC (rev 17475)
@@ -1,3 +1,13 @@
+CVE-2011-4151 (The krb5_db2_lockout_audit function in the Key Distribution Center ...)
+	TODO: check
+CVE-2010-4967 (SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 ...)
+	TODO: check
+CVE-2010-4966 (Cross-site scripting (XSS) vulnerability in default.asp in ATCOM ...)
+	TODO: check
+CVE-2009-5103 (Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP ...)
+	TODO: check
+CVE-2009-5102 (SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ...)
+	TODO: check
 CVE-2011-4150
 	RESERVED
 CVE-2011-4149
@@ -177,8 +187,8 @@
 	RESERVED
 CVE-2011-4065
 	RESERVED
-CVE-2011-4063
-	RESERVED
+CVE-2011-4063 (chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x ...)
+	TODO: check
 CVE-2011-4062 (Buffer overflow in the "linux emulation" support in FreeBSD 7.3 and ...)
 	- kfreebsd-10 10.0~svn226224-1
 	- kfreebsd-9 9.0~svn225873-1 
@@ -2183,8 +2193,8 @@
 CVE-2011-3341 (Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 ...)
 	- openttd 1.1.3-1
 	NOTE: http://www.openwall.com/lists/oss-security/2011/09/02/4
-CVE-2011-3340
-	RESERVED
+CVE-2011-3340 (SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows ...)
+	TODO: check
 CVE-2010-4832
 	RESERVED
 CVE-2010-4831 (Untrusted search path vulnerability in gdk/win32/gdkinput-win32.c in ...)
@@ -7200,16 +7210,13 @@
 	NOT-FOR-US: HP Photosmart
 CVE-2011-1530
 	RESERVED
-CVE-2011-1529
-	RESERVED
+CVE-2011-1529 (The lookup_lockout_policy function in the Key Distribution Center ...)
 	- krb5 <unfixed>
 	[lenny] - krb5 <not-affected> (Introduced in 1.8)
-CVE-2011-1528
-	RESERVED
+CVE-2011-1528 (The krb5_ldap_lockout_audit function in the Key Distribution Center ...)
 	- krb5 <unfixed>
 	[lenny] - krb5 <not-affected> (Introduced in 1.8)
-CVE-2011-1527
-	RESERVED
+CVE-2011-1527 (The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT ...)
 	- krb5 <unfixed>
 	[squeeze] - krb5 <not-affected> (Introduced in 1.9)
 	[lenny] - krb5 <not-affected> (Introduced in 1.9)
@@ -10846,8 +10853,8 @@
 	RESERVED
 CVE-2011-0291
 	RESERVED
-CVE-2011-0290
-	RESERVED
+CVE-2011-0290 (The BlackBerry Collaboration Service in Research In Motion (RIM) ...)
+	TODO: check
 CVE-2011-0289
 	RESERVED
 CVE-2011-0288

More information about the Secure-testing-commits mailing list