Author: joeyh
Date: 2010-06-04 21:14:47 +0000 (Fri, 04 Jun 2010)
New Revision: 14799

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2010-06-04 19:23:18 UTC (rev 14798)
+++ data/CVE/list       2010-06-04 21:14:47 UTC (rev 14799)
@@ -1,3 +1,63 @@
+CVE-2010-2157
+       RESERVED
+CVE-2010-2156
+       RESERVED
+CVE-2010-2155 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+       TODO: check
+CVE-2010-2154 (Cross-site scripting (XSS) vulnerability in the Search Site in 
CMScout ...)
+       TODO: check
+CVE-2010-2153 (Unrestricted file upload vulnerability in ...)
+       TODO: check
+CVE-2010-2152 (Unspecified vulnerability in JustSystems Ichitaro 2004 through 
2009, ...)
+       TODO: check
+CVE-2010-2151 (Cross-site request forgery (CSRF) vulnerability in Fujitsu 
e-Pares V01 ...)
+       TODO: check
+CVE-2010-2150 (Cross-site scripting (XSS) vulnerability Fujitsu e-Pares V01 
L01 ...)
+       TODO: check
+CVE-2010-2149 (Session fixation vulnerability in Fujitsu e-Pares V01 L01, L03, 
L10, ...)
+       TODO: check
+CVE-2010-2148 (SQL injection vulnerability in the My Car (com_mycar) component 
1.0 ...)
+       TODO: check
+CVE-2010-2147 (Cross-site scripting (XSS) vulnerability in the My Car 
(com_mycar) ...)
+       TODO: check
+CVE-2010-2146 (PHP remote file inclusion vulnerability in banned.php in 
Visitor ...)
+       TODO: check
+CVE-2010-2145 (Multiple PHP remote file inclusion vulnerabilities in ClearSite 
Beta ...)
+       TODO: check
+CVE-2010-2144 (Cross-site scripting (XSS) vulnerability in signinform.php in 
Zeeways ...)
+       TODO: check
+CVE-2010-2143 (Directory traversal vulnerability in index.php in Symphony CMS 
2.0.7 ...)
+       TODO: check
+CVE-2010-2142 (SQL injection vulnerability in default.asp in Cyberhost allows 
remote ...)
+       TODO: check
+CVE-2010-2141 (SQL injection vulnerability in index.php in NITRO Web Gallery 
allows ...)
+       TODO: check
+CVE-2010-2140 (SQL injection vulnerability in itemdetail.php in Multishop CMS 
allows ...)
+       TODO: check
+CVE-2010-2139 (SQL injection vulnerability in pages.php in Multishop CMS 
allows ...)
+       TODO: check
+CVE-2010-2138 (Multiple directory traversal vulnerabilities in ProMan 0.1.1 
and ...)
+       TODO: check
+CVE-2010-2137 (PHP remote file inclusion vulnerability in _center.php in 
ProMan 0.1.1 ...)
+       TODO: check
+CVE-2010-2136 (Directory traversal vulnerability in admin/index.php in Article 
...)
+       TODO: check
+CVE-2010-2135 (Multiple SQL injection vulnerabilities in login.php in 
HazelPress Lite ...)
+       TODO: check
+CVE-2010-2134 (Multiple SQL injection vulnerabilities in login.php in Project 
Man 1.0 ...)
+       TODO: check
+CVE-2010-2133 (SQL injection vulnerability in contact.php in My Little Forum 
allows ...)
+       TODO: check
+CVE-2010-2132 (Multiple PHP remote file inclusion vulnerabilities in Open 
Education ...)
+       TODO: check
+CVE-2010-2131 (SQL injection vulnerability in the Calendar Base (cal) 
extension ...)
+       TODO: check
+CVE-2010-2130 (Cross-site scripting (XSS) vulnerability in wflogin.jsp in Aris 
Global ...)
+       TODO: check
+CVE-2009-4882 (Cross-site scripting (XSS) vulnerability in 
zc/publisher/html.rb in ...)
+       TODO: check
+CVE-2008-7256 (mm/shmem.c in the Linux kernel before 2.6.28-rc8, when strict 
...)
+       TODO: check
 CVE-2010-2129 (Directory traversal vulnerability in the JE Ajax Event Calendar 
...)
        NOT-FOR-US: JE Ajax Event Calenda
 CVE-2010-2128 (Directory traversal vulnerability in the JE Quotation Form ...)
@@ -1132,8 +1192,8 @@
        RESERVED
 CVE-2010-1644
        RESERVED
-CVE-2010-1643
-       RESERVED
+CVE-2010-1643 (mm/shmem.c in the Linux kernel before 2.6.28-rc3, when strict 
...)
+       TODO: check
 CVE-2010-1642
        RESERVED
        - samba <unfixed> (unimportant)
@@ -1160,8 +1220,8 @@
        NOTE: Only crashes a single connection, not the entire smbd
 CVE-2010-1634 (Multiple integer overflows in audioop.c in the audioop module 
in ...)
        TODO: check
-CVE-2010-1633
-       RESERVED
+CVE-2010-1633 (RSA verification recovery in the EVP_PKEY_verify_recover 
function in ...)
+       TODO: check
 CVE-2010-1632
        RESERVED
 CVE-2010-1631
@@ -3730,8 +3790,8 @@
        {DSA-2042-1}
        - iscsitarget 0.4.17+svn229-1.4 (medium; bug #574935)
        - tgt 1:1.0.3-2 (medium; bug #576086)
-CVE-2010-0742
-       RESERVED
+CVE-2010-0742 (The Cryptographic Message Syntax (CMS) implementation in ...)
+       TODO: check
 CVE-2010-0741 (The virtio_net_bad_features function in hw/virtio-net.c in the 
...)
        - linux-2.6 2.6.26-1
 CVE-2010-0740 (The ssl3_get_record function in ssl/s3_pkt.c in OpenSSL 0.9.8f 
through ...)
@@ -4772,6 +4832,7 @@
        - tor 0.2.1.22-1 (medium)
        [lenny] - tor 0.2.0.35-1~lenny2 (medium)
 CVE-2010-0382 (ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 
...)
+       {DSA-2054-1}
        - bind9 1:9.7.0.dfsg-1
 CVE-2010-0381 (SQL injection vulnerability in modules/arcade/index.php in PHP 
MySpace ...)
        NOT-FOR-US: PHP MySpace Gold Edition
@@ -5103,6 +5164,7 @@
        {DSA-2005-1 DSA-1996-1}
        - linux-2.6 2.6.32-6
 CVE-2010-0290 (Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 
before ...)
+       {DSA-2054-1}
        - bind9 1:9.7.0.dfsg-1 (medium)
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=554851#c7
 CVE-2010-0289 (Multiple cross-site request forgery (CSRF) vulnerabilities in 
the ACL ...)
@@ -5744,6 +5806,7 @@
        - clamav 0.96+dfsg-1
        [lenny] - clamav <end-of-life> (No longer supported in Lenny)
 CVE-2010-0097 (ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P5, 9.5 before 
...)
+       {DSA-2054-1}
        - bind9 1:9.7.0.dfsg-1
 CVE-2010-0096
        RESERVED


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

Reply via email to