[Secure-testing-commits] r17502 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Oct 26 21:14:20 UTC 2011 

Author: joeyh
Date: 2011-10-26 21:14:19 +0000 (Wed, 26 Oct 2011)
New Revision: 17502

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-10-26 15:36:15 UTC (rev 17501)
+++ data/CVE/list	2011-10-26 21:14:19 UTC (rev 17502)
@@ -1,3 +1,35 @@
+CVE-2011-4196
+	RESERVED
+CVE-2011-4195
+	RESERVED
+CVE-2011-4194
+	RESERVED
+CVE-2011-4193
+	RESERVED
+CVE-2011-4192
+	RESERVED
+CVE-2011-4191
+	RESERVED
+CVE-2011-4190
+	RESERVED
+CVE-2011-4189
+	RESERVED
+CVE-2011-4188
+	RESERVED
+CVE-2011-4187
+	RESERVED
+CVE-2011-4186
+	RESERVED
+CVE-2011-4185
+	RESERVED
+CVE-2011-4184
+	RESERVED
+CVE-2011-4183
+	RESERVED
+CVE-2011-4182
+	RESERVED
+CVE-2011-4181
+	RESERVED
 CVE-2011-4180
 	RESERVED
 CVE-2011-4179
@@ -859,40 +891,40 @@
 	RESERVED
 CVE-2011-3892
 	RESERVED
-CVE-2011-3891
-	RESERVED
-CVE-2011-3890
-	RESERVED
-CVE-2011-3889
-	RESERVED
-CVE-2011-3888
-	RESERVED
-CVE-2011-3887
-	RESERVED
-CVE-2011-3886
-	RESERVED
-CVE-2011-3885
-	RESERVED
-CVE-2011-3884
-	RESERVED
-CVE-2011-3883
-	RESERVED
-CVE-2011-3882
-	RESERVED
-CVE-2011-3881
-	RESERVED
-CVE-2011-3880
-	RESERVED
-CVE-2011-3879
-	RESERVED
-CVE-2011-3878
-	RESERVED
-CVE-2011-3877
-	RESERVED
-CVE-2011-3876
-	RESERVED
-CVE-2011-3875
-	RESERVED
+CVE-2011-3891 (Google Chrome before 15.0.874.102 does not properly restrict access to ...)
+	TODO: check
+CVE-2011-3890 (Use-after-free vulnerability in Google Chrome before 15.0.874.102 ...)
+	TODO: check
+CVE-2011-3889 (Heap-based buffer overflow in the Web Audio implementation in Google ...)
+	TODO: check
+CVE-2011-3888 (Use-after-free vulnerability in Google Chrome before 15.0.874.102 ...)
+	TODO: check
+CVE-2011-3887 (Google Chrome before 15.0.874.102 does not properly handle javascript: ...)
+	TODO: check
+CVE-2011-3886 (Google V8, as used in Google Chrome before 15.0.874.102, allows remote ...)
+	TODO: check
+CVE-2011-3885 (Use-after-free vulnerability in Google Chrome before 15.0.874.102 ...)
+	TODO: check
+CVE-2011-3884 (Google Chrome before 15.0.874.102 does not properly address timing ...)
+	TODO: check
+CVE-2011-3883 (Use-after-free vulnerability in Google Chrome before 15.0.874.102 ...)
+	TODO: check
+CVE-2011-3882 (Use-after-free vulnerability in Google Chrome before 15.0.874.102 ...)
+	TODO: check
+CVE-2011-3881 (Google Chrome before 15.0.874.102 allows remote attackers to bypass ...)
+	TODO: check
+CVE-2011-3880 (Google Chrome before 15.0.874.102 does not prevent use of an ...)
+	TODO: check
+CVE-2011-3879 (Google Chrome before 15.0.874.102 does not prevent redirects to ...)
+	TODO: check
+CVE-2011-3878 (Race condition in Google Chrome before 15.0.874.102 allows remote ...)
+	TODO: check
+CVE-2011-3877 (Cross-site scripting (XSS) vulnerability in the appcache internals ...)
+	TODO: check
+CVE-2011-3876 (Google Chrome before 15.0.874.102 does not properly handle downloading ...)
+	TODO: check
+CVE-2011-3875 (Google Chrome before 15.0.874.102 does not properly handle drag and ...)
+	TODO: check
 CVE-2011-3874
 	RESERVED
 CVE-2011-3873 (Google Chrome before 14.0.835.202 does not properly implement shader ...)
@@ -3660,8 +3692,8 @@
 CVE-2011-2846 (Use-after-free vulnerability in Google Chrome before 14.0.835.163 ...)
 	- chromium-browser 14.0.835.163~r101024-1
 	- webkit <undetermined>
-CVE-2011-2845
-	RESERVED
+CVE-2011-2845 (Google Chrome before 15.0.874.102 does not properly handle history ...)
+	TODO: check
 CVE-2011-2844 (Google Chrome before 14.0.835.163 does not properly process MP3 files, ...)
 	- chromium-browser 14.0.835.163~r101024-1
 	[squeeze] - chromium-browser <not-affected>
@@ -20320,7 +20352,7 @@
 	[lenny] - apache2 <not-affected> (vulnerable code introduced in 2.2.15-2 or -3)
 CVE-2010-1622 (SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before ...)
 	- libspring-2.5-java 2.5.6.SEC02-1 (medium)
-CVE-2010-1621 (The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL ...)
+CVE-2010-1621 (The mysql_uninstall_plugin function in sql/sql_plugin.cc in MySQL 5.1 ...)
 	- mysql-5.1 5.1.46-1
 	- mysql-dfsg-5.0 <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=590190

More information about the Secure-testing-commits mailing list