thr3ads.net - Secure testing commits - [Secure-testing-commits] r15076

If this information is useful, please help other people find it:
Share via:

Joey Hess

2010-Jul-30 21:14 UTC

[Secure-testing-commits] r15076 - data/CVE

Author: joeyh
Date: 2010-07-30 21:14:52 +0000 (Fri, 30 Jul 2010)
New Revision: 15076

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-07-30 12:17:18 UTC (rev 15075)
+++ data/CVE/list	2010-07-30 21:14:52 UTC (rev 15076)
@@ -1,3 +1,5 @@
+CVE-2010-2913 (The Citibank Citi Mobile app before 2.0.3 for iOS stores account
data ...)
+	TODO: check
 CVE-2010-2912 (SQL injection vulnerability in index.php in Kayako eSupport
3.70.02 ...)
 	NOT-FOR-US: Kayako eSupport
 CVE-2010-2911 (SQL injection vulnerability in index.php in Kayako eSupport
3.70.02 ...)
@@ -420,11 +422,9 @@
 	RESERVED
 CVE-2010-2756
 	RESERVED
-CVE-2010-2755
-	RESERVED
+CVE-2010-2755 (layout/generic/nsObjectFrame.cpp in Mozilla Firefox 3.6.7 does
not ...)
 	- xulrunner <not-affected> (Only exploitable in Firefox 3.6.x and above)
-CVE-2010-2754
-	RESERVED
+CVE-2010-2754 (dom/base/nsJSEnvironment.cpp in Mozilla Firefox 3.5.x before
3.5.11 ...)
 	{DSA-2075-1}
 	- xulrunner 1.9.1.11-1
 	- iceape 2.0.6-1
@@ -966,8 +966,7 @@
 CVE-2010-2529 (Unspecified vulnerability in ping.c in iputils 20020927,
20070202, ...)
 	- iputils 3:20100418-2
 	[lenny] - iputils <no-dsa> (Minor issue)
-CVE-2010-2528 [pidgin]
-	RESERVED
+CVE-2010-2528 (The clientautoresp function in family_icbm.c in the oscar
protocol ...)
 	- pidgin 2.7.2-1
 CVE-2010-2527
 	RESERVED
@@ -2859,8 +2858,8 @@
 	RESERVED
 CVE-2010-1778
 	RESERVED
-CVE-2010-1777
-	RESERVED
+CVE-2010-1777 (Buffer overflow in Apple iTunes before 9.2.1 allows remote
attackers ...)
+	TODO: check
 CVE-2010-1776
 	RESERVED
 CVE-2010-1775 (Race condition in Passcode Lock in Apple iOS before 4 on the
iPhone ...)
@@ -6285,7 +6284,7 @@
 CVE-2010-0655 (Use-after-free vulnerability in Google Chrome before 4.0.249.78
allows ...)
 	- chromium-browser 5.0.375.29~r46008-1
 	- webkit <not-affected> (chrome-specific issue)
-CVE-2010-0654 (Mozilla Firefox permits cross-origin loading of CSS stylesheets
even ...)
+CVE-2010-0654 (Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, ...)
 	{DSA-2075-1}
 	- xulrunner 1.9.1.11-1 (bug #570743)
 	- iceape 2.0.6-1

Secure testing commits - Jul 2010 - r15076 - data/CVE

[Secure-testing-commits] r15076 - data/CVE