[Secure-testing-commits] r17200 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2011-09-09 21:14:19 +0000 (Fri, 09 Sep 2011)
New Revision: 17200

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-09-09 11:55:41 UTC (rev 17199)
+++ data/CVE/list	2011-09-09 21:14:19 UTC (rev 17200)
@@ -1,3 +1,7 @@
+CVE-2011-3392 (Cross-site scripting (XSS) vulnerability in control.php in the ...)
+	TODO: check
+CVE-2011-3391 (IBM Rational Build Forge 7.1.2 relies on client-side JavaScript code ...)
+	TODO: check
 CVE-2011-XXXX [quassel ctcp DoS]
 	- quassel <unfixed> (low; bug #640960)
 	[squeeze] - quassel <no-dsa> (Minor issue)
@@ -27,14 +31,14 @@
 	NOT-FOR-US: Medtronic Paradigm wireless insulin pump
 CVE-2011-3385 (Cross-site scripting (XSS) vulnerability in WebsiteBaker before 2.8, ...)
 	NOT-FOR-US: WebsiteBaker
-CVE-2011-3384
-	RESERVED
+CVE-2011-3384 (Cross-site scripting (XSS) vulnerability in the Sage add-on 1.3.10 and ...)
+	TODO: check
 CVE-2011-3383
 	RESERVED
-CVE-2011-3382
-	RESERVED
-CVE-2011-3381
-	RESERVED
+CVE-2011-3382 (Cross-site scripting (XSS) vulnerability in Phorum before 5.2.16 ...)
+	TODO: check
+CVE-2011-3381 (Cross-site request forgery (CSRF) vulnerability in Phorum before ...)
+	TODO: check
 CVE-2011-3380
 	RESERVED
 CVE-2011-3379
@@ -109,16 +113,13 @@
 	RESERVED
 CVE-2011-3344
 	RESERVED
-CVE-2011-3343
-	RESERVED
+CVE-2011-3343 (Multiple buffer overflows in OpenTTD before 1.1.3 allow local users to ...)
 	- openttd <unfixed>
 	NOTE: http://www.openwall.com/lists/oss-security/2011/09/02/4
-CVE-2011-3342
-	RESERVED
+CVE-2011-3342 (Multiple buffer overflows in OpenTTD before 1.1.3 allow remote ...)
 	- openttd <unfixed>
 	NOTE: http://www.openwall.com/lists/oss-security/2011/09/02/4
-CVE-2011-3341
-	RESERVED
+CVE-2011-3341 (Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 ...)
 	- openttd <unfixed>
 	NOTE: http://www.openwall.com/lists/oss-security/2011/09/02/4
 CVE-2011-3340