Author: joeyh
Date: 2009-11-23 21:14:17 +0000 (Mon, 23 Nov 2009)
New Revision: 13356
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-11-23 18:34:06 UTC (rev 13355)
+++ data/CVE/list 2009-11-23 21:14:17 UTC (rev 13356)
@@ -1,3 +1,67 @@
+CVE-2009-4046 (Multiple SQL injection vulnerabilities in FrontAccounting (FA)
2.2.x ...)
+ TODO: check
+CVE-2009-4045 (Multiple SQL injection vulnerabilities in FrontAccounting (FA)
before ...)
+ TODO: check
+CVE-2009-4044 (The Web Services module 6.x for Drupal does not perform the
expected ...)
+ TODO: check
+CVE-2009-4043 (Cross-site scripting (XSS) vulnerability in the AddToAny module
5.x ...)
+ TODO: check
+CVE-2009-4042 (Cross-site scripting (XSS) vulnerability in the RootCandy theme
6.x ...)
+ TODO: check
+CVE-2009-4041 (UseBB 1.0.9 before 1.0.10 allows remote attackers to cause a
denial of ...)
+ TODO: check
+CVE-2009-4040 (Cross-site scripting (XSS) vulnerability in phpMyFAQ before
2.0.17 and ...)
+ TODO: check
+CVE-2009-4039 (Cross-site scripting (XSS) vulnerability in Piwigo before 2.0.6
allows ...)
+ TODO: check
+CVE-2009-4038 (Multiple cross-site scripting (XSS) vulnerabilities in NCH
Software ...)
+ TODO: check
+CVE-2009-4037 (Multiple SQL injection vulnerabilities in FrontAccounting (FA)
before ...)
+ TODO: check
+CVE-2009-4036
+ RESERVED
+CVE-2009-4035
+ RESERVED
+CVE-2009-4034
+ RESERVED
+CVE-2009-4033
+ RESERVED
+CVE-2009-4032
+ RESERVED
+CVE-2009-4031
+ RESERVED
+CVE-2009-4030
+ RESERVED
+CVE-2009-4029
+ RESERVED
+CVE-2009-4028
+ RESERVED
+CVE-2009-4027
+ RESERVED
+CVE-2009-4026
+ RESERVED
+CVE-2009-4025
+ RESERVED
+CVE-2009-4024
+ RESERVED
+CVE-2009-4023
+ RESERVED
+CVE-2009-4022
+ RESERVED
+CVE-2009-4021
+ RESERVED
+CVE-2009-4020
+ RESERVED
+CVE-2009-4019
+ RESERVED
+CVE-2009-4018
+ RESERVED
+CVE-2009-4017
+ RESERVED
+CVE-2005-4883 (Race condition in Philippe Jounin Tftpd32 before 2.80 allows
remote ...)
+ TODO: check
+CVE-2005-4882 (tftpd in Philippe Jounin Tftpd32 2.74 and earlier, as used in
Wyse ...)
+ TODO: check
CVE-2009-4016
RESERVED
CVE-2009-4015
@@ -288,8 +352,7 @@
CVE-2009-3896
RESERVED
{DSA-1920-1}
-CVE-2009-3895 [libexif heap buffer overflow when processing certain images]
- RESERVED
+CVE-2009-3895 (Heap-based buffer overflow in the exif_entry_fix function (aka
the tag ...)
- libexif 0.6.19-1 (medium; bug #557137)
NOTE: it is said that only 0.6.18 is affected
NOTE: http://article.gmane.org/gmane.comp.graphics.libexif.devel/806
@@ -399,8 +462,8 @@
RESERVED
CVE-2009-3843
RESERVED
-CVE-2009-3842
- RESERVED
+CVE-2009-3842 (Unspecified vulnerability on the HP Color LaserJet M3530
Multifunction ...)
+ TODO: check
CVE-2009-3841 (Unspecified vulnerability in HP Discovery & Dependency
Mapping ...)
NOT-FOR-US: HP Discovery & Dependency Mapping
CVE-2009-3840 (The embedded database engine service (aka ovdbrun.exe) in HP
OpenView ...)
@@ -1584,8 +1647,8 @@
RESERVED
CVE-2009-3387
RESERVED
-CVE-2009-3386
- RESERVED
+CVE-2009-3386 (Template.pm in Bugzilla 3.3.2 through 3.4.3 and 3.5 through
3.5.1 ...)
+ TODO: check
CVE-2009-3385
RESERVED
CVE-2009-3384 (Multiple unspecified vulnerabilities in WebKit in Apple Safari
before ...)
@@ -2559,8 +2622,8 @@
NOT-FOR-US: Snow Hall Silurus System
CVE-2009-3081 (SQL injection vulnerability in index.php in Uiga Church Portal
allows ...)
NOT-FOR-US: Uiga Church Portal
-CVE-2009-3080
- RESERVED
+CVE-2009-3080 (Array index error in the gdth_read_event function in ...)
+ TODO: check
CVE-2009-3079 (Unspecified vulnerability in Mozilla Firefox before 3.0.14, and
3.5.x ...)
{DSA-1886-1}
- iceweasel 3.0.14-1