thr3ads.net - Secure testing commits - [Secure-testing-commits] r15263

If this information is useful, please help other people find it:
Share via:

Raphael Geissert

2010-Sep-04 04:37 UTC

[Secure-testing-commits] r15263 - data/CVE

Author: geissert
Date: 2010-09-04 04:37:24 +0000 (Sat, 04 Sep 2010)
New Revision: 15263

Modified:
   data/CVE/list
Log:
new squid3, phpmyadmin (Thijs, please check) and zope2.x issues


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-09-03 23:28:35 UTC (rev 15262)
+++ data/CVE/list	2010-09-04 04:37:24 UTC (rev 15263)
@@ -6,8 +6,10 @@
 	RESERVED
 CVE-2010-3199
 	RESERVED
-CVE-2010-3198
+CVE-2010-3198 [zope DoS via PluggableAuthService]
 	RESERVED
+	- zope2.10 <removed>
+	- zope2.11 <removed>
 CVE-2010-3197 (IBM DB2 9.7 before FP2 does not perform the expected access
control on ...)
 	NOT-FOR-US: IBM DB2
 CVE-2010-3196 (IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows
remote ...)
@@ -584,8 +586,11 @@
 	RESERVED
 	{DSA-2094-1}
 	- linux-2.6 2.6.32-20
-CVE-2010-2958
+CVE-2010-2958 [phpmyadmin backtrace XSS]
 	RESERVED
+	- phpmyadmin 4:3.3.6-1
+	[lenny] - phpmyadmin <not-affected> (only affects 3.x)
+	NOTE: http://www.phpmyadmin.net/home_page/security/PMASA-2010-6.php
 CVE-2010-2957 [serendipity xss]
 	RESERVED
 	- serendipity 1.5.3-2
@@ -602,8 +607,11 @@
 	- couchdb <unfixed> (low; bug #594412)
 CVE-2010-2952
 	RESERVED
-CVE-2010-2951
+CVE-2010-2951 [squid3 DoS via TCP DNS request]
 	RESERVED
+	- squid3 <unfixed>
+	[lenny] - squid3 <not-affected> (vulnerable code introduced in 3.1.6)
+	NOTE: http://marc.info/?l=squid-users&m=128263555724981&w=2
 CVE-2010-2950 [phar string format]
 	RESERVED
 	- php5 <unfixed> (low)

Secure testing commits - Sep 2010 - r15263 - data/CVE

[Secure-testing-commits] r15263 - data/CVE