thr3ads.net - Secure testing commits - [Secure-testing-commits] r14067

If this information is useful, please help other people find it:
Share via:

Joey Hess

2010-Feb-09 21:14 UTC

[Secure-testing-commits] r14067 - data/CVE

Author: joeyh
Date: 2010-02-09 21:14:45 +0000 (Tue, 09 Feb 2010)
New Revision: 14067

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-02-09 20:28:03 UTC (rev 14066)
+++ data/CVE/list	2010-02-09 21:14:45 UTC (rev 14067)
@@ -1,3 +1,13 @@
+CVE-2010-0563 (The Single Sign-on (SSO) functionality in IBM WebSphere
Application ...)
+	TODO: check
+CVE-2010-0562 (The sdump function in sdump.c in fetchmail 6.3.11, 6.3.12, and
6.3.13, ...)
+	TODO: check
+CVE-2010-0561 (Integer signedness error in NetBSD 4.0, 5.0, and NetBSD-current
before ...)
+	TODO: check
+CVE-2010-0560 (Unspecified vulnerability in the BIOS in Intel Desktop Board DB,
DG, ...)
+	TODO: check
+CVE-2003-1588 (Sun Cluster 2.2, when HA-Oracle or HA-Sybase DBMS services are
used, ...)
+	TODO: check
 CVE-2010-0559 (The default configuration of Oracle OpenSolaris snv_91 through
snv_131 ...)
 	NOT-FOR-US: Oracle OpenSolaris
 CVE-2010-0558 (The default configuration of Oracle OpenSolaris snv_77 through
snv_131 ...)
@@ -343,8 +353,7 @@
 	RESERVED
 CVE-2010-0412
 	RESERVED
-CVE-2010-0411 [systemtap buffer overflow]
-	RESERVED
+CVE-2010-0411 (Multiple integer signedness errors in the (1) __get_argv and (2)
...)
 	- systemtap <unfixed> (low; bug #568809)
 	[lenny] - systemtap <not-affected> (Vulnerable code not present)
 	[etch] - systemtap <no-dsa> (Minor issue)
@@ -354,8 +363,7 @@
 	- linux2.6 <unfixed>
 	- linux-2.6.24 <removed>
 	NOTE:
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=f98bfbd78c37c5946cc53089da32a5f741efdeb7
-CVE-2010-0409 [gmime: possible buffer overflows]
-	RESERVED
+CVE-2010-0409 (Buffer overflow in the GMIME_UUENCODE_LEN macro in ...)
 	- gmime2.2 <unfixed> (bug #568291)
 	- gmime2.4 <unfixed> (bug #568291)
 CVE-2010-0408
@@ -771,16 +779,13 @@
 CVE-2010-0295 (lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each
read ...)
 	{DSA-1987-1}
 	- lighttpd <unfixed> (medium)
-CVE-2010-0294 [chrony syslog limit disc fill DoS]
-	RESERVED
+CVE-2010-0294 (chronyd in Chrony before 1.23.1, and possibly 1.24-pre1,
generates a ...)
 	{DSA-1992-1}
 	- chrony 1.23-7 (low)
-CVE-2010-0293 [chrony many client memory exhaustian DoS]
-	RESERVED
+CVE-2010-0293 (The client logging functionality in chronyd in Chrony before
1.23.1 ...)
 	{DSA-1992-1}
 	- chrony 1.23-7 (low)
-CVE-2010-0292 [chrony cmdmon network DoS]
-	RESERVED
+CVE-2010-0292 (The read_from_cmd_socket function in cmdmon.c in chronyd in
Chrony ...)
 	{DSA-1992-1}
 	- chrony 1.23-7 (medium)
 CVE-2010-0291

Secure testing commits - Feb 2010 - r14067 - data/CVE

[Secure-testing-commits] r14067 - data/CVE