joeyh at alioth.debian.org
2008-Sep-11 21:14 UTC
[Secure-testing-commits] r9802 - data/CVE
Author: joeyh
Date: 2008-09-11 21:14:09 +0000 (Thu, 11 Sep 2008)
New Revision: 9802
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-09-11 18:24:54 UTC (rev 9801)
+++ data/CVE/list 2008-09-11 21:14:09 UTC (rev 9802)
@@ -191,6 +191,7 @@
CVE-2008-3916 (Heap-based buffer overflow in the strip_escapes function in
signal.c ...)
TODO: check
CVE-2008-3915 (Buffer overflow in nfsd in the Linux kernel before 2.6.26.4,
when ...)
+ {DSA-1636-1}
TODO: check
CVE-2008-3911 (The proc_do_xprt function in net/sunrpc/sysctl.c in the Linux
kernel ...)
TODO: check
@@ -496,6 +497,7 @@
CVE-2008-3793
RESERVED
CVE-2008-3792 (net/sctp/socket.c in the Stream Control Transmission Protocol
(sctp) ...)
+ {DSA-1636-1}
TODO: check
CVE-2008-3788 (Multiple SQL injection vulnerabilities in PICTURESPRO Photo Cart
3.9, ...)
NOT-FOR-US: PICTURESPRO Photo Cart 3.9
@@ -1168,11 +1170,13 @@
CVE-2008-3536 (Unspecified vulnerability in ovalarmsrv in HP OpenView Network
Node ...)
NOT-FOR-US: HP OpenView Network Node Manager
CVE-2008-3535 (Off-by-one error in the iov_iter_advance function in
mm/filemap.c in ...)
+ {DSA-1636-1}
- linux-2.6 2.6.26-2
- linux-2.6.24 <unfixed>
NOTE: 94ad374a0751f40d25e22e036c37f7263569d24c
NOTE: Fixed in 2.6.25.14 and 2.6.26.1
CVE-2008-3534 (The shmem_delete_inode function in mm/shmem.c in the tmpfs ...)
+ {DSA-1636-1}
- linux-2.6.24 <unfixed>
- linux-2.6 2.6.26-2
NOTE: 14fcc23fdc78e9d32372553ccf21758a9bd56fa1
@@ -1192,6 +1196,7 @@
CVE-2008-3527
RESERVED
CVE-2008-3526 (Integer overflow in the sctp_setsockopt_auth_key function in
...)
+ {DSA-1636-1}
TODO: check
CVE-2008-3525 (The sbni_ioctl function in drivers/net/wan/sbni.c in the wan
subsystem ...)
TODO: check
@@ -1727,9 +1732,10 @@
CVE-2008-3277
RESERVED
CVE-2008-3276 (Integer overflow in the dccp_setsockopt_change function in ...)
+ {DSA-1636-1}
TODO: check
CVE-2008-3275 (The (1) real_lookup and (2) __lookup_hash functions in
fs/namei.c in ...)
- {DSA-1630-1}
+ {DSA-1636-1 DSA-1630-1}
- linux-2.6.24 <unfixed>
- linux-2.6 <unfixed>
NOTE: d70b67c8bc72ee23b55381bd6a884f4796692f77
@@ -1738,7 +1744,7 @@
CVE-2008-3273 (JBoss Enterprise Application Platform (aka JBossEAP or EAP)
before ...)
NOT-FOR-US: JBoss
CVE-2008-3272 (The snd_seq_oss_synth_make_info function in ...)
- {DSA-1630-1}
+ {DSA-1636-1 DSA-1630-1}
- linux-2.6.24 <unfixed>
- linux-2.6 <unfixed>
NOTE: 82e68f7ffec3800425f2391c8c86277606860442