[Secure-testing-commits] r12435 - data/CVE

Joey Hess Tue, 28 Jul 2009 14:14:23 -0700

Author: joeyh
Date: 2009-07-28 21:14:16 +0000 (Tue, 28 Jul 2009)
New Revision: 12435


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2009-07-28 20:08:02 UTC (rev 12434)
+++ data/CVE/list       2009-07-28 21:14:16 UTC (rev 12435)
@@ -1,6 +1,60 @@
+CVE-2009-2619 (SQL injection vulnerability in login.asp in DataCheck Solutions 
...)
+       TODO: check
+CVE-2009-2618 (SQL injection vulnerability in the Surveys (aka NS-Polls) 
module in ...)
+       TODO: check
+CVE-2009-2617 (Stack-based buffer overflow in medialib.dll in BaoFeng Storm 
3.9.62 ...)
+       TODO: check
+CVE-2009-2616 (SQL injection vulnerability in z_admin_login.asp in DataCheck 
...)
+       TODO: check
+CVE-2009-2615 (Multiple cross-site scripting (XSS) vulnerabilities in 
DataCheck ...)
+       TODO: check
+CVE-2009-2614 (SQL injection vulnerability in z_admin_login.asp in DataCheck 
...)
+       TODO: check
+CVE-2009-2613 (Multiple cross-site scripting (XSS) vulnerabilities in 
DataCheck ...)
+       TODO: check
+CVE-2009-2612 (SQL injection vulnerability in login.aspx in ProSMDR allows 
remote ...)
+       TODO: check
+CVE-2009-2611 (Directory traversal vulnerability in ...)
+       TODO: check
+CVE-2009-2610 (Cross-site scripting (XSS) vulnerability in the Links Related 
module ...)
+       TODO: check
+CVE-2009-2609 (SQL injection vulnerability in the amoCourse (com_amocourse) 
component ...)
+       TODO: check
+CVE-2009-2608 (Multiple SQL injection vulnerabilities in PHP Address Book 
4.0.x allow ...)
+       TODO: check
+CVE-2009-2607 (SQL injection vulnerability in the com_pinboard component for 
Joomla! ...)
+       TODO: check
+CVE-2009-2606 (ASP Football Pool 2.3 stores sensitive information under the 
web root ...)
+       TODO: check
+CVE-2009-2605 (Multiple SQL injection vulnerabilities in adminquery.php in 
Traidnt Up ...)
+       TODO: check
+CVE-2009-2604 (Multiple SQL injection vulnerabilities in adminlogin.asp in Zen 
Help ...)
+       TODO: check
+CVE-2009-2603 (Multiple SQL injection vulnerabilities in index.php in Escon 
...)
+       TODO: check
+CVE-2009-2602 (R2 Newsletter Lite, Pro, and Stats stores sensitive information 
under ...)
+       TODO: check
+CVE-2009-2601 (SQL injection vulnerability in the Joomlaequipment (aka JUser 
or ...)
+       TODO: check
+CVE-2009-2600 (Multiple directory traversal vulnerabilities in view.php in 
Webboard ...)
+       TODO: check
+CVE-2009-2599 (SQL injection vulnerability in index.php in RadCLASSIFIEDS Gold 
2.0 ...)
+       TODO: check
+CVE-2009-2598 (Multiple SQL injection vulnerabilities in Online Grades &amp; 
Attendance ...)
+       TODO: check
+CVE-2009-2597 (The Sun Java System (SJS) Access Manager Policy Agent module 
2.2 for ...)
+       TODO: check
+CVE-2009-2596 (Unspecified vulnerability in the Solaris Auditing subsystem in 
Sun ...)
+       TODO: check
+CVE-2008-6878 (** DISPUTED ** Directory traversal vulnerability in ...)
+       TODO: check
+CVE-2008-6877 (** DISPUTED ** ...)
+       TODO: check
 CVE-2009-2622 [squid3 DoS because of missing bounds checks]
+       {DSA-1843-1}
        - squid3 <unfixed> (medium; bug #538989)
 CVE-2009-2621 [squid3 DoS because of insufficient input validation from 
req/resp]
+       {DSA-1843-1}
        - squid3 <unfixed> (medium; bug #538989)
 CVE-2009-2595 (Cross-site scripting (XSS) vulnerability in productSearch.html 
in ...)
        NOT-FOR-US: Censura
@@ -2248,12 +2302,15 @@
        RESERVED
 CVE-2009-1722 [openexr]
        RESERVED
+       {DSA-1842-1}
        - openexr <unfixed>
 CVE-2009-1721 [openexr]
        RESERVED
+       {DSA-1842-1}
        - openexr <unfixed>
 CVE-2009-1720 [openexr]
        RESERVED
+       {DSA-1842-1}
        - openexr <unfixed>
 CVE-2009-1719 (The Aqua Look and Feel for Java implementation in Java 1.5 on 
Mac OS X ...)
        NOT-FOR-US: Aqua Look and Feel for Java implementation in Java 1.5 on 
Mac OS X
@@ -4265,7 +4322,7 @@
        NOT-FOR-US: Jack (tR) Jax LinkLists 
 CVE-2008-6561 (Citrix Presentation Server Client for Windows before 10.200 
does not ...)
        NOT-FOR-US: Citrix
-CVE-2007-6724 (Vidalia bundle before 0.1.2.18, when running on Windows and Mac 
OS X, ...)
+CVE-2007-6724 (Vidalia bundle before 0.1.2.18, when running on Windows, 
installs ...)
        NOT-FOR-US: Vidalia
 CVE-2007-6723 (TorK before 0.22, when running on Windows and Mac OS X, 
installs ...)
        - tork <not-affected> (Affects only Windows and MacOS)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r12435 - data/CVE

Reply via email to