Author: joeyh
Date: 2009-05-14 21:14:11 +0000 (Thu, 14 May 2009)
New Revision: 11897
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-05-14 18:01:29 UTC (rev 11896)
+++ data/CVE/list 2009-05-14 21:14:11 UTC (rev 11897)
@@ -1336,7 +1336,8 @@
NOT-FOR-US: wt_gallery extension for TYPO3
CVE-2008-6629 (Cross-site scripting (XSS) vulnerability in detail.php in
WEBBDOMAIN ...)
NOT-FOR-US: WEBBDOMAIN Multi Languages WebShop Online
-CVE-2008-6628 (SQL injection vulnerability in detail.php in WEBBDOMAIN Multi
...)
+CVE-2008-6628
+ REJECTED
NOT-FOR-US: WEBBDOMAIN Multi Languages WebShop Online
CVE-2008-6627 (SQL injection vulnerability in getin.php in WEBBDOMAIN WebShop
1.2, ...)
NOT-FOR-US: WEBBDOMAIN Multi Languages WebShop Online
@@ -2369,14 +2370,14 @@
CVE-2009-0946 (Multiple integer overflows in FreeType 2.3.9 and earlier allow
remote ...)
{DSA-1784-1}
- freetype 2.3.9-4.1 (medium; bug #524925)
-CVE-2009-0945
- RESERVED
-CVE-2009-0944
- RESERVED
-CVE-2009-0943
- RESERVED
-CVE-2009-0942
- RESERVED
+CVE-2009-0945 (WebKit, as used in Safari before 3.2.3 and 4 Public Beta, on
Apple Mac ...)
+ TODO: check
+CVE-2009-0944 (The Microsoft Office Spotlight Importer in Spotlight in Apple
Mac OS X ...)
+ TODO: check
+CVE-2009-0943 (Help Viewer in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7
does not ...)
+ TODO: check
+CVE-2009-0942 (Help Viewer in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7
does not ...)
+ TODO: check
CVE-2009-0941 (The HP Embedded Web Server (EWS) on HP LaserJet Printers,
Edgeline ...)
NOT-FOR-US: HP Embedded Web Server
CVE-2009-0940 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the HP ...)
@@ -3539,7 +3540,7 @@
NOT-FOR-US: Dragan Mitic Apoll
CVE-2008-6269 (Joovili 3.1.4 allows remote attackers to bypass authentication
and ...)
NOT-FOR-US: Joovili
-CVE-2008-6268 (SQL injection vulnerability in detail.php in Multi Languages
WebShop ...)
+CVE-2008-6268 (SQL injection vulnerability in detail.php in WEBBDOMAIN Multi
...)
NOT-FOR-US: Multi Languages WebShop Online
CVE-2008-6267 (Cross-site scripting (XSS) vulnerability in detail.php in Multi
...)
NOT-FOR-US: Multi Languages WebShop Online
@@ -5492,36 +5493,36 @@
{DSA-1773-1}
- cups 1.3.10-1
- cupsys <removed>
-CVE-2009-0162
- RESERVED
-CVE-2009-0161
- RESERVED
-CVE-2009-0160
- RESERVED
+CVE-2009-0162 (Cross-site scripting (XSS) vulnerability in Safari before 3.2.3,
and 4 ...)
+ TODO: check
+CVE-2009-0161 (The OpenSSL::OCSP module for Ruby in Apple Mac OS X 10.5 before
10.5.7 ...)
+ TODO: check
+CVE-2009-0160 (QuickDraw Manager in Apple Mac OS X 10.4.11 and 10.5 before
10.5.7 ...)
+ TODO: check
CVE-2009-0159 (Stack-based buffer overflow in the cookedprint function in
ntpq/ntpq.c ...)
- ntp <unfixed> (low; bug #525373)
[lenny] - ntp <no-dsa> (Minor issue)
[etch] - ntp <no-dsa> (Minor issue)
-CVE-2009-0158
- RESERVED
-CVE-2009-0157
- RESERVED
-CVE-2009-0156
- RESERVED
-CVE-2009-0155
- RESERVED
-CVE-2009-0154
- RESERVED
-CVE-2009-0153
- RESERVED
-CVE-2009-0152
- RESERVED
+CVE-2009-0158 (Stack-based buffer overflow in telnet in Apple Mac OS X 10.4.11
and ...)
+ TODO: check
+CVE-2009-0157 (Heap-based buffer overflow in CFNetwork in Apple Mac OS X 10.5
before ...)
+ TODO: check
+CVE-2009-0156 (Launch Services in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7
...)
+ TODO: check
+CVE-2009-0155 (Integer underflow in CoreGraphics in Apple Mac OS X 10.5 before
10.5.7 ...)
+ TODO: check
+CVE-2009-0154 (Heap-based buffer overflow in Apple Type Services (ATS) in Apple
Mac ...)
+ TODO: check
+CVE-2009-0153 (International Components for Unicode (ICU) in Apple Mac OS X
10.5 ...)
+ TODO: check
+CVE-2009-0152 (iChat in Apple Mac OS X 10.5 before 10.5.7 disables SSL for AOL
...)
+ TODO: check
CVE-2009-0151
RESERVED
-CVE-2009-0150
- RESERVED
-CVE-2009-0149
- RESERVED
+CVE-2009-0150 (Stack-based buffer overflow in Apple Mac OS X 10.5 before 10.5.7
...)
+ TODO: check
+CVE-2009-0149 (Apple Mac OS X 10.4.11 and 10.5 before 10.5.7 allows local users
to ...)
+ TODO: check
CVE-2009-0148 (Multiple buffer overflows in Cscope before 15.7a allow remote
...)
- cscope <unfixed> (low; bug #528510)
CVE-2009-0147 (Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2
and ...)
@@ -5538,10 +5539,10 @@
- xpdf <unfixed> (medium; bug #524809)
- kdegraphics <unfixed> (medium; bug #524810)
- swftools <unfixed> (medium; bug #527449)
-CVE-2009-0145
- RESERVED
-CVE-2009-0144
- RESERVED
+CVE-2009-0145 (CoreGraphics in Apple Mac OS X 10.4.11 and 10.5 before 10.5.7
allows ...)
+ TODO: check
+CVE-2009-0144 (CFNetwork in Apple Mac OS X 10.5 before 10.5.7 does not properly
parse ...)
+ TODO: check
CVE-2009-0143 (Apple iTunes before 8.1 does not properly inform the user about
the ...)
NOT-FOR-US: Apple iTunes
CVE-2009-0142 (Race condition in AFP Server in Apple Mac OS X 10.5.6 allows
local ...)
@@ -6556,8 +6557,8 @@
NOT-FOR-US: Apple Mac OS X
CVE-2009-0011 (Certificate Assistant in Apple Mac OS X 10.5.6 allows local
users to ...)
NOT-FOR-US: Apple Mac OS X
-CVE-2009-0010
- RESERVED
+CVE-2009-0010 (Integer underflow in QuickDraw Manager in Apple Mac OS X 10.4.11
and ...)
+ TODO: check
CVE-2009-0009 (Unspecified vulnerability in the Pixlet codec in Apple Mac OS X
...)
NOT-FOR-US: Apple Mac OS X
CVE-2009-0008 (Unspecified vulnerability in Apple QuickTime MPEG-2 Playback
Component ...)
@@ -16469,8 +16470,8 @@
RESERVED
CVE-2008-1518 (Stack-based buffer overflow in kl1.sys in Kaspersky Anti-Virus
6.0 and ...)
NOT-FOR-US: Kaspersky Anti-Virus
-CVE-2008-1517
- RESERVED
+CVE-2008-1517 (The kernel in Apple Mac OS X 10.5 before 10.5.7 does not
properly ...)
+ TODO: check
CVE-2008-1516
RESERVED
CVE-2008-1515 (The SOAP interface in OTRS 2.1.x before 2.1.8 and 2.2.x before
2.2.6 ...)