Author: joeyh
Date: 2011-10-03 21:14:22 +0000 (Mon, 03 Oct 2011)
New Revision: 17361
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-10-03 18:10:53 UTC (rev 17360)
+++ data/CVE/list 2011-10-03 21:14:22 UTC (rev 17361)
@@ -1,3 +1,207 @@
+CVE-2011-3974 (Integer signedness error in the decode_residual_inter function
in ...)
+ TODO: check
+CVE-2011-3973 (cavsdec.c in libavcodec in FFmpeg before 0.7.4 and 0.8.x before
0.8.3 ...)
+ TODO: check
+CVE-2011-3972
+ RESERVED
+CVE-2011-3971
+ RESERVED
+CVE-2011-3970
+ RESERVED
+CVE-2011-3969
+ RESERVED
+CVE-2011-3968
+ RESERVED
+CVE-2011-3967
+ RESERVED
+CVE-2011-3966
+ RESERVED
+CVE-2011-3965
+ RESERVED
+CVE-2011-3964
+ RESERVED
+CVE-2011-3963
+ RESERVED
+CVE-2011-3962
+ RESERVED
+CVE-2011-3961
+ RESERVED
+CVE-2011-3960
+ RESERVED
+CVE-2011-3959
+ RESERVED
+CVE-2011-3958
+ RESERVED
+CVE-2011-3957
+ RESERVED
+CVE-2011-3956
+ RESERVED
+CVE-2011-3955
+ RESERVED
+CVE-2011-3954
+ RESERVED
+CVE-2011-3953
+ RESERVED
+CVE-2011-3952
+ RESERVED
+CVE-2011-3951
+ RESERVED
+CVE-2011-3950
+ RESERVED
+CVE-2011-3949
+ RESERVED
+CVE-2011-3948
+ RESERVED
+CVE-2011-3947
+ RESERVED
+CVE-2011-3946
+ RESERVED
+CVE-2011-3945
+ RESERVED
+CVE-2011-3944
+ RESERVED
+CVE-2011-3943
+ RESERVED
+CVE-2011-3942
+ RESERVED
+CVE-2011-3941
+ RESERVED
+CVE-2011-3940
+ RESERVED
+CVE-2011-3939
+ RESERVED
+CVE-2011-3938
+ RESERVED
+CVE-2011-3937
+ RESERVED
+CVE-2011-3936
+ RESERVED
+CVE-2011-3935
+ RESERVED
+CVE-2011-3934
+ RESERVED
+CVE-2011-3933
+ RESERVED
+CVE-2011-3932
+ RESERVED
+CVE-2011-3931
+ RESERVED
+CVE-2011-3930
+ RESERVED
+CVE-2011-3929
+ RESERVED
+CVE-2011-3928
+ RESERVED
+CVE-2011-3927
+ RESERVED
+CVE-2011-3926
+ RESERVED
+CVE-2011-3925
+ RESERVED
+CVE-2011-3924
+ RESERVED
+CVE-2011-3923
+ RESERVED
+CVE-2011-3922
+ RESERVED
+CVE-2011-3921
+ RESERVED
+CVE-2011-3920
+ RESERVED
+CVE-2011-3919
+ RESERVED
+CVE-2011-3918
+ RESERVED
+CVE-2011-3917
+ RESERVED
+CVE-2011-3916
+ RESERVED
+CVE-2011-3915
+ RESERVED
+CVE-2011-3914
+ RESERVED
+CVE-2011-3913
+ RESERVED
+CVE-2011-3912
+ RESERVED
+CVE-2011-3911
+ RESERVED
+CVE-2011-3910
+ RESERVED
+CVE-2011-3909
+ RESERVED
+CVE-2011-3908
+ RESERVED
+CVE-2011-3907
+ RESERVED
+CVE-2011-3906
+ RESERVED
+CVE-2011-3905
+ RESERVED
+CVE-2011-3904
+ RESERVED
+CVE-2011-3903
+ RESERVED
+CVE-2011-3902
+ RESERVED
+CVE-2011-3901
+ RESERVED
+CVE-2011-3900
+ RESERVED
+CVE-2011-3899
+ RESERVED
+CVE-2011-3898
+ RESERVED
+CVE-2011-3897
+ RESERVED
+CVE-2011-3896
+ RESERVED
+CVE-2011-3895
+ RESERVED
+CVE-2011-3894
+ RESERVED
+CVE-2011-3893
+ RESERVED
+CVE-2011-3892
+ RESERVED
+CVE-2011-3891
+ RESERVED
+CVE-2011-3890
+ RESERVED
+CVE-2011-3889
+ RESERVED
+CVE-2011-3888
+ RESERVED
+CVE-2011-3887
+ RESERVED
+CVE-2011-3886
+ RESERVED
+CVE-2011-3885
+ RESERVED
+CVE-2011-3884
+ RESERVED
+CVE-2011-3883
+ RESERVED
+CVE-2011-3882
+ RESERVED
+CVE-2011-3881
+ RESERVED
+CVE-2011-3880
+ RESERVED
+CVE-2011-3879
+ RESERVED
+CVE-2011-3878
+ RESERVED
+CVE-2011-3877
+ RESERVED
+CVE-2011-3876
+ RESERVED
+CVE-2011-3875
+ RESERVED
+CVE-2011-3874
+ RESERVED
+CVE-2011-3873
+ RESERVED
CVE-2011-XXXX [unsafe use of eval]
- libdigest-perl 1.17-1 (low; bug #644108)
[lenny] - libdigest-perl <no-dsa> (Minor issue)
@@ -13,12 +217,15 @@
RESERVED
CVE-2011-3871
RESERVED
+ {DSA-2314-1}
- puppet 2.7.3-3
CVE-2011-3870
RESERVED
+ {DSA-2314-1}
- puppet 2.7.3-3
CVE-2011-3869
RESERVED
+ {DSA-2314-1}
- puppet 2.7.3-3
CVE-2011-3868
RESERVED
@@ -66,6 +273,7 @@
RESERVED
CVE-2011-3848
RESERVED
+ {DSA-2314-1}
- puppet 2.7.3-2
CVE-2011-3847
RESERVED
@@ -642,10 +850,10 @@
RESERVED
CVE-2011-3581
RESERVED
-CVE-2011-3580
- RESERVED
-CVE-2011-3579
- RESERVED
+CVE-2011-3580 (IceWarp WebMail in IceWarp Mail Server before 10.3.3 allows
remote ...)
+ TODO: check
+CVE-2011-3579 (server/webmail.php in IceWarp WebMail in IceWarp Mail Server
before ...)
+ TODO: check
CVE-2011-3578 (Cross-site scripting (XSS) vulnerability in ...)
TODO: check
CVE-2004-2770
@@ -1141,12 +1349,12 @@
RESERVED
CVE-2011-3372
RESERVED
-CVE-2011-3371
- RESERVED
+CVE-2011-3371 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
CVE-2011-3370
RESERVED
-CVE-2011-3369
- RESERVED
+CVE-2011-3369 (The add_conversation function in conversations.c in EtherApe
before ...)
+ TODO: check
CVE-2011-3368
RESERVED
CVE-2011-3367
@@ -1162,8 +1370,7 @@
- linux-2.6 2.6.39-1
[squeeze] - linux-2.6 2.6.32-34
[lenny] - linux-2.6 <not-affected> (vulnerability introduced in commit
1bfe73c2)
-CVE-2011-3362 [libavcodec insufficient boundary check in CAVS]
- RESERVED
+CVE-2011-3362 (Integer signedness error in the decode_residual_block function
in ...)
- libav 4:0.7.1-7 (bug #641478)
- ffmpeg <removed>
- ffmpeg-debian <end-of-life>
@@ -3106,10 +3313,10 @@
RESERVED
CVE-2011-2675
RESERVED
-CVE-2011-2674
- RESERVED
-CVE-2011-2673
- RESERVED
+CVE-2011-2674 (BaserCMS before 1.6.12 does not properly restrict additions to
the ...)
+ TODO: check
+CVE-2011-2673 (Cross-site scripting (XSS) vulnerability in BaserCMS before
1.6.13.2 ...)
+ TODO: check
CVE-2011-2672 (Cross-site scripting (XSS) vulnerability in SemanticScuttle
before ...)
TODO: check
CVE-2011-2671 (Unspecified vulnerability in Megalith 12th edition through 27th
...)
@@ -3741,8 +3948,8 @@
RESERVED
CVE-2011-2412 (Unspecified vulnerability in HP Business Service Automation
(BSA) ...)
TODO: check
-CVE-2011-2411
- RESERVED
+CVE-2011-2411 (Unspecified vulnerability on HP NonStop Servers with software
H06.x ...)
+ TODO: check
CVE-2011-2410 (Cross-site scripting (XSS) vulnerability in HP OpenView
Performance ...)
NOT-FOR-US: HP OpenView
CVE-2011-2409 (Cross-site scripting (XSS) vulnerability in the Calendar
application ...)
@@ -9119,12 +9326,12 @@
NOT-FOR-US: Adobe Shockwave Player
CVE-2011-0555 (The TextXtra.x32 module in Adobe Shockwave Player before
11.5.9.620 ...)
NOT-FOR-US: Adobe Shockwave Player
-CVE-2011-0554
- RESERVED
-CVE-2011-0553
- RESERVED
-CVE-2011-0552
- RESERVED
+CVE-2011-0554 (The management console in Symantec IM Manager before 8.4.18
allows ...)
+ TODO: check
+CVE-2011-0553 (SQL injection vulnerability in the management console in
Symantec IM ...)
+ TODO: check
+CVE-2011-0552 (Multiple cross-site scripting (XSS) vulnerabilities in the
management ...)
+ TODO: check
CVE-2011-0551 (Cross-site request forgery (CSRF) vulnerability in the Web
Interface ...)
NOT-FOR-US: Symantec Endpoint Protection
CVE-2011-0550 (Multiple cross-site scripting (XSS) vulnerabilities in the Web
...)
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
