[Secure-testing-commits] r16289 - data/CVE

Joey Hess Wed, 02 Mar 2011 13:23:37 -0800

Author: joeyh
Date: 2011-03-02 21:15:43 +0000 (Wed, 02 Mar 2011)
New Revision: 16289


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2011-03-02 20:58:03 UTC (rev 16288)
+++ data/CVE/list       2011-03-02 21:15:43 UTC (rev 16289)
@@ -1,3 +1,57 @@
+CVE-2011-1125 (Google Chrome before 9.0.597.107 does not properly perform 
layout, ...)
+       TODO: check
+CVE-2011-1124 (Use-after-free vulnerability in Google Chrome before 
9.0.597.107 ...)
+       TODO: check
+CVE-2011-1123 (Google Chrome before 9.0.597.107 does not properly restrict 
access to ...)
+       TODO: check
+CVE-2011-1122 (The WebGL implementation in Google Chrome before 9.0.597.107 
allows ...)
+       TODO: check
+CVE-2011-1121 (Integer overflow in Google Chrome before 9.0.597.107 allows 
remote ...)
+       TODO: check
+CVE-2011-1120 (The WebGL implementation in Google Chrome before 9.0.597.107 
allows ...)
+       TODO: check
+CVE-2011-1119 (Google Chrome before 9.0.597.107 does not properly determine 
device ...)
+       TODO: check
+CVE-2011-1118 (Google Chrome before 9.0.597.107 does not properly handle 
TEXTAREA ...)
+       TODO: check
+CVE-2011-1117 (Google Chrome before 9.0.597.107 does not properly handle XHTML 
...)
+       TODO: check
+CVE-2011-1116 (Google Chrome before 9.0.597.107 does not properly handle SVG 
...)
+       TODO: check
+CVE-2011-1115 (Google Chrome before 9.0.597.107 does not properly render 
tables, ...)
+       TODO: check
+CVE-2011-1114 (Google Chrome before 9.0.597.107 does not properly handle 
tables, ...)
+       TODO: check
+CVE-2011-1113 (Google Chrome before 9.0.597.107 on 64-bit Linux platforms does 
not ...)
+       TODO: check
+CVE-2011-1112 (Google Chrome before 9.0.597.107 does not properly perform SVG 
...)
+       TODO: check
+CVE-2011-1111 (Google Chrome before 9.0.597.107 does not properly implement 
forms ...)
+       TODO: check
+CVE-2011-1110 (Google Chrome before 9.0.597.107 does not properly implement 
key frame ...)
+       TODO: check
+CVE-2011-1109 (Google Chrome before 9.0.597.107 does not properly process 
nodes in ...)
+       TODO: check
+CVE-2011-1108 (Google Chrome before 9.0.597.107 does not properly implement 
...)
+       TODO: check
+CVE-2011-1107 (Unspecified vulnerability in Google Chrome before 9.0.597.107 
allows ...)
+       TODO: check
+CVE-2011-1106 (Cross-site scripting (XSS) vulnerability in stcenter.nsf in the 
server ...)
+       TODO: check
+CVE-2010-4753 (Cross-site scripting (XSS) vulnerability in LightNEasy.php in 
...)
+       TODO: check
+CVE-2010-4752 (SQL injection vulnerability in LightNEasy.php in LightNEasy 
3.2.1, ...)
+       TODO: check
+CVE-2010-4751 (SQL injection vulnerability in LightNEasy.php in LightNEasy 
3.2.1, ...)
+       TODO: check
+CVE-2010-4750 (Cross-site request forgery (CSRF) vulnerability in ...)
+       TODO: check
+CVE-2010-4749 (Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 
...)
+       TODO: check
+CVE-2010-4748 (Cross-site scripting (XSS) vulnerability in pmwiki.php in 
PmWiki ...)
+       TODO: check
+CVE-2010-4747 (Cross-site scripting (XSS) vulnerability in ...)
+       TODO: check
 CVE-2011-XXXX [polarssl d-h man in the middle]
        - polarssl <unfixed> (bug #616114)
        NOTE: 
https://lists.ubuntu.com/archives/ubuntu-motu/2011-February/007026.html
@@ -247,8 +301,7 @@
        - linux-2.6 <unfixed>
 CVE-2011-1018 (logwatch.pl in Logwatch 7.3.6 allows remote attackers to 
execute ...)
        - logwatch <unfixed> (bug #615995)
-CVE-2011-1017
-       RESERVED
+CVE-2011-1017 (Heap-based buffer overflow in the ldm_frag_add function in ...)
        - linux-2.6 <unfixed>
 CVE-2011-1016 (The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do 
not ...)
        - linux-2.6 <unfixed>
@@ -268,13 +321,11 @@
 CVE-2011-1013 [drm_modeset_ctl signedness issue]
        RESERVED
        - linux-2.6 <unfixed>
-CVE-2011-1012
-       RESERVED
+CVE-2011-1012 (The ldm_parse_vmdb function in fs/partitions/ldm.c in the Linux 
kernel ...)
        - linux-2.6 <unfixed>
 CVE-2011-1011 (The seunshare_mount function in sandbox/seunshare.c in 
seunshare in ...)
        NOT-FOR-US: seunshare
-CVE-2011-1010
-       RESERVED
+CVE-2011-1010 (Buffer overflow in the mac_partition function in 
fs/partitions/mac.c ...)
        - linux-2.6 2.6.37-2
 CVE-2011-1009
        RESERVED
@@ -1039,9 +1090,9 @@
 CVE-2011-0720 (Unspecified vulnerability in Plone 2.5 through 4.0 allows 
remote ...)
        - plone3 <removed>
        TODO: check
-CVE-2011-0719
-       RESERVED
+CVE-2011-0719 (Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before 
3.5.7 ...)
        {DSA-2175-1}
+       TODO: check
 CVE-2011-0718 (Red Hat Network (RHN) Satellite Server 5.4 does not use a time 
delay ...)
        NOT-FOR-US: Red Hat Network Satellite/Spacewalk
 CVE-2011-0717 (Session fixation vulnerability in Red Hat Network (RHN) 
Satellite ...)
@@ -1062,8 +1113,7 @@
        NOTE: http://anonsvn.wireshark.org/viewvc?view=rev&revision=35953
 CVE-2011-0712 (Multiple buffer overflows in the caiaq Native Instruments USB 
audio ...)
        - linux-2.6 2.6.37-2
-CVE-2011-0711
-       RESERVED
+CVE-2011-0711 (The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux 
kernel ...)
        - linux-2.6 <unfixed> (low)
 CVE-2011-0710 (The task_show_regs function in arch/s390/kernel/traps.c in the 
Linux ...)
        - linux-2.6 2.6.37-2 (low)
@@ -1730,8 +1780,8 @@
        RESERVED
 CVE-2011-0455
        RESERVED
-CVE-2011-0454
-       RESERVED
+CVE-2011-0454 (Buffer overflow in the PPP Access Concentrator (PPPAC) on the 
SEIL/x86 ...)
+       TODO: check
 CVE-2011-0453 (F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not 
...)
        NOT-FOR-US: F-Secure Internet Gatekeeper
 CVE-2011-0452 (Untrusted search path vulnerability in the script function in 
...)
@@ -1779,15 +1829,19 @@
        RESERVED
 CVE-2011-0437
        RESERVED
+       {DSA-2179-1}
        - dtc 0.32.10-1
 CVE-2011-0436 [new users' unencrypted passwords emailed to admin]
        RESERVED
+       {DSA-2179-1}
        - dtc 0.32.10-1 (bug #614302)
 CVE-2011-0435
        RESERVED
+       {DSA-2179-1}
        - dtc 0.32.10-1
 CVE-2011-0434
        RESERVED
+       {DSA-2179-1}
        - dtc 0.32.10-1
 CVE-2011-0433 [linetoken() buffer overflow]
        RESERVED
@@ -1798,6 +1852,7 @@
        NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=640923
 CVE-2011-0432
        RESERVED
+       {DSA-2177-1}
        - pywebdav 0.9.4-3
 CVE-2011-0431 (The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the 
kernel ...)
        {DSA-2168-1}
@@ -2386,8 +2441,8 @@
        RESERVED
 CVE-2011-0279
        RESERVED
-CVE-2011-0278
-       RESERVED
+CVE-2011-0278 (Unspecified vulnerability in HP Web Jetadmin 10.2 Service 
Release 3 ...)
+       TODO: check
 CVE-2011-0277 (Cross-site request forgery (CSRF) vulnerability in HP Power 
Manager ...)
        NOT-FOR-US: HP Power Manager
 CVE-2011-0276 (HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 
5.41 ...)
@@ -2840,6 +2895,7 @@
        RESERVED
 CVE-2011-0064 [NULL pointer dereference in hb_buffer_add_glyph]
        RESERVED
+       {DSA-2178-1}
        - pango1.0 <unfixed>
 CVE-2011-0063
        RESERVED


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r16289 - data/CVE

Reply via email to