thr3ads.net - Secure testing commits - [Secure-testing-commits] r13410

If this information is useful, please help other people find it:
Share via:
Joey Hess
2009-Nov-30 21:14 UTC
[Secure-testing-commits] r13410 - data/CVE

Author: joeyh
Date: 2009-11-30 21:14:19 +0000 (Mon, 30 Nov 2009)
New Revision: 13410

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-11-30 18:51:40 UTC (rev 13409)
+++ data/CVE/list	2009-11-30 21:14:19 UTC (rev 13410)
@@ -1,3 +1,79 @@
+CVE-2009-4110 (Cross-site scripting (XSS) vulnerability in the search
functionality ...)
+	TODO: check
+CVE-2009-4109 (The install wizard in DotNetNuke 4.0 through 5.1.4 does not
prevent ...)
+	TODO: check
+CVE-2009-4108 (XM Easy Personal FTP Server 5.8.0 allows remote authenticated
users to ...)
+	TODO: check
+CVE-2009-4107 (Buffer overflow in Invisible Browsing 5.0.52 allows
user-assisted ...)
+	TODO: check
+CVE-2009-4106 (Unrestricted file upload vulnerability in
admintools/editpage-2.php in ...)
+	TODO: check
+CVE-2009-4105 (TYPSoft FTP Server 1.10 allows remote authenticated users to
cause a ...)
+	TODO: check
+CVE-2009-4104 (SQL injection vulnerability in Lyften Designs LyftenBloggie ...)
+	TODO: check
+CVE-2009-4103 (Buffer overflow in Robo-FTP 3.6.17, and possibly other versions,
...)
+	TODO: check
+CVE-2009-4102 (Sage 1.4.3 and earlier extension for Firefox performs certain
...)
+	TODO: check
+CVE-2009-4101 (infoRSS 1.1.4.2 and earlier extension for Firefox performs
certain ...)
+	TODO: check
+CVE-2009-4100 (Yoono extension 6.1.1 for Firefox performs certain operations
with ...)
+	TODO: check
+CVE-2009-4099 (SQL injection vulnerability in the Google Calendar GCalendar
...)
+	TODO: check
+CVE-2009-4098 (Unrestricted file upload vulnerability in banner-edit.php in
OpenX ...)
+	TODO: check
+CVE-2009-4097 (Stack-based buffer overflow in the MplayInputFile function in
Serenity ...)
+	TODO: check
+CVE-2009-4096 (RADIO istek scripti 2.5 stores sensitive information under the
web ...)
+	TODO: check
+CVE-2009-4095 (myPhile 1.2.1 allows remote attackers to bypass authentication
via an ...)
+	TODO: check
+CVE-2009-4094 (PHP remote file inclusion vulnerability in ...)
+	TODO: check
+CVE-2009-4093 (Multiple cross-site scripting (XSS) vulnerabilities in
comments.php in ...)
+	TODO: check
+CVE-2009-4092 (Cross-site request forgery (CSRF) vulnerability in user.php in
Simplog ...)
+	TODO: check
+CVE-2009-4091 (comments.php in Simplog 0.9.3.2, and possibly earlier, does not
...)
+	TODO: check
+CVE-2009-4090 (Unrestricted file upload vulnerability in ajax/addComment.php in
...)
+	TODO: check
+CVE-2009-4089 (telepark.wiki 2.4.23 and earlier allows remote attackers to
bypass ...)
+	TODO: check
+CVE-2009-4088 (Multiple directory traversal vulnerabilities in telepark.wiki
2.4.23 ...)
+	TODO: check
+CVE-2009-4087 (Cross-site scripting (XSS) vulnerability in index.php in
telepark.wiki ...)
+	TODO: check
+CVE-2009-4086 (CRLF injection vulnerability in Xerver HTTP Server 4.31 and 4.32
...)
+	TODO: check
+CVE-2009-4085 (PHP remote file inclusion vulnerability in ...)
+	TODO: check
+CVE-2009-4084 (SQL injection vulnerability in the search feature in e107 0.7.16
and ...)
+	TODO: check
+CVE-2009-4083 (Multiple cross-site scripting (XSS) vulnerabilities in e107
0.7.16 and ...)
+	TODO: check
+CVE-2009-4082 (PHP remote file inclusion vulnerability in ...)
+	TODO: check
+CVE-2009-4081 (Untrusted search path vulnerability in dstat before r3199 allows
local ...)
+	TODO: check
+CVE-2009-4080 (Multiple unspecified vulnerabilities in ldap_cachemgr (aka the
LDAP ...)
+	TODO: check
+CVE-2009-4079 (Cross-site request forgery (CSRF) vulnerability in Redmine 0.8.5
and ...)
+	TODO: check
+CVE-2009-4078 (Multiple cross-site scripting (XSS) vulnerabilities in Redmine
0.8.5 ...)
+	TODO: check
+CVE-2009-4077 (Cross-site request forgery (CSRF) vulnerability in Roundcube
Webmail ...)
+	TODO: check
+CVE-2009-4076 (Cross-site request forgery (CSRF) vulnerability in Roundcube
Webmail ...)
+	TODO: check
+CVE-2009-4075 (Unspecified vulnerability in the timeout mechanism in sshd in
Sun ...)
+	TODO: check
+CVE-2009-4074 (The XSS Filter in Microsoft Internet Explorer 8 allows remote
...)
+	TODO: check
+CVE-2008-7247
+	RESERVED
 CVE-2009-XXXX [rails insufficient escaping XSS]
 	- rails <unfixed> (low; bug #558685)
 	NOTE:
http://groups.google.com/group/rubyonrails-security/browse_thread/thread/4d4f71f2aef4c0ab?pli=1
@@ -66,8 +142,7 @@
 	NOTE: 4B0E1566.1070509 at moritz-naumann.com in bugtraq
 	NOTE: low or maybe even unimportant as one requires admin access
 	NOTE: to cacti
-CVE-2009-4032 [Cacti Multiple Script Insertion Vulnerabilities]
-	RESERVED
+CVE-2009-4032 (Multiple cross-site scripting (XSS) vulnerabilities in Cacti
0.8.7e ...)
 	- cacti <unfixed>
 	TODO: check
 	NOTE: http://docs.cacti.net/#cross-site_scripting_fixes
@@ -100,8 +175,7 @@
 	RESERVED
 CVE-2009-4033
 	RESERVED
-CVE-2009-4031 [linux-2.6/kvm dos]
-	RESERVED
+CVE-2009-4031 (The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86
...)
 	- linux-2.6 <unfixed> (low)
 	[etch] - linux-2.6 <not-affected> (kvm introduced in 2.6.25)
 	- linux-2.6.24 <not-affected> (kvm introduced in 2.6.25)
@@ -116,28 +190,25 @@
 	RESERVED
 CVE-2009-4026
 	RESERVED
-CVE-2009-4025
-	RESERVED
-CVE-2009-4024 [Net_Ping PEAR module argument injection]
-	RESERVED
+CVE-2009-4025 (Argument injection vulnerability in the traceroute function in
...)
+	TODO: check
+CVE-2009-4024 (Argument injection in the ping function in Ping.php in the
Net_Ping ...)
 	- php-net-ping <unfixed>
 	TODO: check
 	NOTE: http://pear.php.net/advisory20091114-01.txt
 	NOTE: the fix by upstream should be double checked,
 	NOTE: escapeshellcmd might not be the most appropriate function either
-CVE-2009-4111 [command injection in the Mail pear module - $recipients part]
+CVE-2009-4111 (Argument injection vulnerability in Mail/sendmail.php in the
Mail ...)
 	{DSA-1938-1}
 	- php-mail 1.1.14-2 (medium; bug #557121)
 	[lenny] - php-mail  1.1.14-1+lenny1
 	[etch] - php-mail 1.1.6-2+etch1
-CVE-2009-4023 [command injection in the Mail pear module]
-	RESERVED
+CVE-2009-4023 (Argument injection vulnerability in the sendmail implementation
of the ...)
 	{DSA-1938-1}
 	- php-mail 1.1.14-2 (medium; bug #557121)
 	[lenny] - php-mail  1.1.14-1+lenny1
 	[etch] - php-mail 1.1.6-2+etch1
-CVE-2009-4022 [BIND 9 cache poisoning through secure domains]
-	RESERVED
+CVE-2009-4022 (Unspecified vulnerability in ISC BIND 9.4 before 9.4.3-P4, 9.5
before ...)
 	- bind9 1:9.6.1.dfsg.P2-1 (medium)
 	NOTE: <https://www.isc.org/node/504>
 	NOTE: Only affects installations with trust anchors, but then the
@@ -153,8 +224,7 @@
 	NOTE: http://dev.mysql.com/doc/refman/5.0/en/news-5-0-88.html
 	NOTE: http://bugs.mysql.com/47780
 	NOTE: http://bugs.mysql.com/48291
-CVE-2009-4018
-	RESERVED
+CVE-2009-4018 (The proc_open function in ext/standard/proc_open.c in PHP before
...)
 	- php5 <unfixed> (unimportant)
 	NOTE: safe_mode bypass
 CVE-2005-4883 (Race condition in Philippe Jounin Tftpd32 before 2.80 allows
remote ...)
@@ -285,8 +355,7 @@
 	- linux-2.6 <unfixed> (medium)
 	- linux-2.6.24 <removed> (medium)
 	NOTE:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=690e744869f3262855b83b4fb59199cf142765b0
-CVE-2009-4021 [fuse_put_request() invalid pointer dereference]
-	RESERVED
+CVE-2009-4021 (The fuse_direct_io function in fs/fuse/file.c in the fuse
subsystem in ...)
 	- linux-2.6 <unfixed> (low)
 	- linux-2.6.24 <removed> (low)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=538734
@@ -446,8 +515,7 @@
 	- libexif 0.6.19-1 (medium; bug #557137)
 	[lenny] - libexif <not-affected> (Only 0.6.18 is affected)
 	[etch] - libexif <not-affected> (Only 0.6.18 is affected)
-CVE-2009-3894 [dstat insecure library path]
-	RESERVED
+CVE-2009-3894 (Multiple untrusted search path vulnerabilities in dstat before
0.7.0 ...)
 	- dstat 0.7.0-1 (low; bug #557989)
 	[lenny] - dstat <no-dsa> (Minor issue)
 	[etch] - dstat <no-dsa> (Minor issue)
@@ -831,8 +899,8 @@
 	RESERVED
 CVE-2009-3737
 	RESERVED
-CVE-2009-3736
-	RESERVED
+CVE-2009-3736 (ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b,
...)
+	TODO: check
 CVE-2009-3735
 	RESERVED
 CVE-2009-3734
@@ -2992,8 +3060,8 @@
 	RESERVED
 CVE-2009-3034
 	RESERVED
-CVE-2009-3033
-	RESERVED
+CVE-2009-3033 (Buffer overflow in the RunCmd method in the Altiris eXpress NS
Console ...)
+	TODO: check
 CVE-2009-3032
 	RESERVED
 CVE-2009-3031 (Stack-based buffer overflow in the BrowseAndSaveFile method in
the ...)
@@ -3789,7 +3857,7 @@
 	TODO: check
 CVE-2009-2817 (Buffer overflow in Apple iTunes before 9.0.1 allows remote
attackers ...)
 	NOT-FOR-US: Apple iTunes
-CVE-2009-2816 (WebKit, as used in Apple Safari before 4.0.4 and Google Chrome
before ...)
+CVE-2009-2816 (The implementation of Cross-Origin Resource Sharing (CORS) in
WebKit, ...)
 	TODO: check
 CVE-2009-2815 (The Telephony component in Apple iPhone OS before 3.1 does not
...)
 	NOT-FOR-US: Apple iPhone OS
Secure testing commits - Nov 2009 - r13410 - data/CVE

[Secure-testing-commits] r13410 - data/CVE
