joeyh at alioth.debian.org
2009-Feb-18 21:14 UTC
[Secure-testing-commits] r11237 - data/CVE
Author: joeyh
Date: 2009-02-18 21:14:13 +0000 (Wed, 18 Feb 2009)
New Revision: 11237
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-02-18 21:03:18 UTC (rev 11236)
+++ data/CVE/list 2009-02-18 21:14:13 UTC (rev 11237)
@@ -1,3 +1,75 @@
+CVE-2009-0638
+ RESERVED
+CVE-2009-0637
+ RESERVED
+CVE-2009-0636
+ RESERVED
+CVE-2009-0635
+ RESERVED
+CVE-2009-0634
+ RESERVED
+CVE-2009-0633
+ RESERVED
+CVE-2009-0632
+ RESERVED
+CVE-2009-0631
+ RESERVED
+CVE-2009-0630
+ RESERVED
+CVE-2009-0629
+ RESERVED
+CVE-2009-0628
+ RESERVED
+CVE-2009-0627
+ RESERVED
+CVE-2009-0626
+ RESERVED
+CVE-2009-0625
+ RESERVED
+CVE-2009-0624
+ RESERVED
+CVE-2009-0623
+ RESERVED
+CVE-2009-0622
+ RESERVED
+CVE-2009-0621
+ RESERVED
+CVE-2009-0620
+ RESERVED
+CVE-2009-0619
+ RESERVED
+CVE-2009-0618
+ RESERVED
+CVE-2009-0617
+ RESERVED
+CVE-2009-0616
+ RESERVED
+CVE-2009-0615
+ RESERVED
+CVE-2009-0614
+ RESERVED
+CVE-2009-0613 (Trend Micro InterScan Web Security Suite (IWSS) 3.1 before build
1237 ...)
+ TODO: check
+CVE-2009-0612 (Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 3.x
and ...)
+ TODO: check
+CVE-2009-0611 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
+ TODO: check
+CVE-2009-0610 (Multiple static code injection vulnerabilities in post.php in
Simple ...)
+ TODO: check
+CVE-2009-0609 (Sun Java System Directory Proxy Server in Sun Java System
Directory ...)
+ TODO: check
+CVE-2009-0608 (Integer overflow in the showLog function in fake_log_device.c in
...)
+ TODO: check
+CVE-2009-0607 (Multiple integer overflows in malloc_leak.c in Bionic in Open
Handset ...)
+ TODO: check
+CVE-2009-0606 (The link_image function in linker/linker.c in the dynamic linker
in ...)
+ TODO: check
+CVE-2009-0605 (Stack consumption vulnerability in the do_page_fault function in
...)
+ TODO: check
+CVE-2008-6158 (Multiple unspecified vulnerabilities in the admin backend in
w3b>cms ...)
+ TODO: check
+CVE-2008-6157 (SepCity Classified Ads stores the admin password in cleartext in
...)
+ TODO: check
CVE-2009-0604 (SQL injection vulnerability in index.php in PHP Director 0.21
and ...)
NOT-FOR-US: PHP Director
CVE-2009-0603 (Cross-site scripting (XSS) vulnerability in index.php in the
Link ...)
@@ -229,6 +301,7 @@
CVE-2008-6125 (Unspecified vulnerability in the user editing interface in
Moodle ...)
TODO: check
CVE-2008-6124 (SQL injection vulnerability in the
hotpot_delete_selected_attempts ...)
+ {DSA-1691-1}
- moodle 1.8.2.dfsg-2
CVE-2008-6123 (The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in
net-snmp ...)
TODO: check
@@ -305,8 +378,8 @@
RESERVED
CVE-2009-0505
RESERVED
-CVE-2009-0504
- RESERVED
+CVE-2009-0504 (WSPolicy in the Web Services component in IBM WebSphere
Application ...)
+ TODO: check
CVE-2009-0503 (IBM WebSphere Message Broker 6.1.x before 6.1.0.2 writes a
database ...)
NOT-FOR-US: IBM WebSphere
CVE-2008-6110 (Unspecified vulnerability in SemanticScuttle before 0.90 has
unknown ...)
@@ -855,8 +928,7 @@
RESERVED
CVE-2009-0364
RESERVED
-CVE-2009-0363 [barnowl sprintf calls]
- RESERVED
+CVE-2009-0363 (Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b)
owl ...)
{DTSA-197-1}
- barnowl 1.0.5-1
CVE-2009-0362 (filter.d/wuftpd.conf in Fail2ban 0.8.3 uses an incorrect regular
...)
@@ -868,8 +940,7 @@
CVE-2009-0360 (Russ Allbery pam-krb5 before 3.13, when linked against MIT
Kerberos, ...)
{DSA-1721-1}
- libpam-krb5 3.13-2
-CVE-2009-0359 [Cross-site scripting via missing input sanitising]
- RESERVED
+CVE-2009-0359 (Multiple cross-site scripting (XSS) vulnerabilities in Samizdat
before ...)
{DTSA-194-1}
- samizdat <unfixed>
CVE-2009-0358 (Mozilla Firefox 3.x before 3.0.6 does not properly implement the
(1) ...)
@@ -5776,8 +5847,8 @@
RESERVED
CVE-2008-4286
RESERVED
-CVE-2008-4285
- RESERVED
+CVE-2008-4285 (Unspecified vulnerability in the Performance Monitoring
Infrastructure ...)
+ TODO: check
CVE-2008-4284 (Open redirect vulnerability in the ibm_security_logout servlet
in IBM ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2008-4283 (CRLF injection vulnerability in the WebContainer component in
IBM ...)