thr3ads.net - Secure testing commits - [Secure-testing-commits] r15363

If this information is useful, please help other people find it:
Share via:
Joey Hess
2010-Sep-21 21:14 UTC
[Secure-testing-commits] r15363 - data/CVE

Author: joeyh
Date: 2010-09-21 21:14:36 +0000 (Tue, 21 Sep 2010)
New Revision: 15363

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-09-21 05:13:40 UTC (rev 15362)
+++ data/CVE/list	2010-09-21 21:14:36 UTC (rev 15363)
@@ -1,3 +1,239 @@
+CVE-2010-3600
+	RESERVED
+CVE-2010-3599
+	RESERVED
+CVE-2010-3598
+	RESERVED
+CVE-2010-3597
+	RESERVED
+CVE-2010-3596
+	RESERVED
+CVE-2010-3595
+	RESERVED
+CVE-2010-3594
+	RESERVED
+CVE-2010-3593
+	RESERVED
+CVE-2010-3592
+	RESERVED
+CVE-2010-3591
+	RESERVED
+CVE-2010-3590
+	RESERVED
+CVE-2010-3589
+	RESERVED
+CVE-2010-3588
+	RESERVED
+CVE-2010-3587
+	RESERVED
+CVE-2010-3586
+	RESERVED
+CVE-2010-3585
+	RESERVED
+CVE-2010-3584
+	RESERVED
+CVE-2010-3583
+	RESERVED
+CVE-2010-3582
+	RESERVED
+CVE-2010-3581
+	RESERVED
+CVE-2010-3580
+	RESERVED
+CVE-2010-3579
+	RESERVED
+CVE-2010-3578
+	RESERVED
+CVE-2010-3577
+	RESERVED
+CVE-2010-3576
+	RESERVED
+CVE-2010-3575
+	RESERVED
+CVE-2010-3574
+	RESERVED
+CVE-2010-3573
+	RESERVED
+CVE-2010-3572
+	RESERVED
+CVE-2010-3571
+	RESERVED
+CVE-2010-3570
+	RESERVED
+CVE-2010-3569
+	RESERVED
+CVE-2010-3568
+	RESERVED
+CVE-2010-3567
+	RESERVED
+CVE-2010-3566
+	RESERVED
+CVE-2010-3565
+	RESERVED
+CVE-2010-3564
+	RESERVED
+CVE-2010-3563
+	RESERVED
+CVE-2010-3562
+	RESERVED
+CVE-2010-3561
+	RESERVED
+CVE-2010-3560
+	RESERVED
+CVE-2010-3559
+	RESERVED
+CVE-2010-3558
+	RESERVED
+CVE-2010-3557
+	RESERVED
+CVE-2010-3556
+	RESERVED
+CVE-2010-3555
+	RESERVED
+CVE-2010-3554
+	RESERVED
+CVE-2010-3553
+	RESERVED
+CVE-2010-3552
+	RESERVED
+CVE-2010-3551
+	RESERVED
+CVE-2010-3550
+	RESERVED
+CVE-2010-3549
+	RESERVED
+CVE-2010-3548
+	RESERVED
+CVE-2010-3547
+	RESERVED
+CVE-2010-3546
+	RESERVED
+CVE-2010-3545
+	RESERVED
+CVE-2010-3544
+	RESERVED
+CVE-2010-3543
+	RESERVED
+CVE-2010-3542
+	RESERVED
+CVE-2010-3541
+	RESERVED
+CVE-2010-3540
+	RESERVED
+CVE-2010-3539
+	RESERVED
+CVE-2010-3538
+	RESERVED
+CVE-2010-3537
+	RESERVED
+CVE-2010-3536
+	RESERVED
+CVE-2010-3535
+	RESERVED
+CVE-2010-3534
+	RESERVED
+CVE-2010-3533
+	RESERVED
+CVE-2010-3532
+	RESERVED
+CVE-2010-3531
+	RESERVED
+CVE-2010-3530
+	RESERVED
+CVE-2010-3529
+	RESERVED
+CVE-2010-3528
+	RESERVED
+CVE-2010-3527
+	RESERVED
+CVE-2010-3526
+	RESERVED
+CVE-2010-3525
+	RESERVED
+CVE-2010-3524
+	RESERVED
+CVE-2010-3523
+	RESERVED
+CVE-2010-3522
+	RESERVED
+CVE-2010-3521
+	RESERVED
+CVE-2010-3520
+	RESERVED
+CVE-2010-3519
+	RESERVED
+CVE-2010-3518
+	RESERVED
+CVE-2010-3517
+	RESERVED
+CVE-2010-3516
+	RESERVED
+CVE-2010-3515
+	RESERVED
+CVE-2010-3514
+	RESERVED
+CVE-2010-3513
+	RESERVED
+CVE-2010-3512
+	RESERVED
+CVE-2010-3511
+	RESERVED
+CVE-2010-3510
+	RESERVED
+CVE-2010-3509
+	RESERVED
+CVE-2010-3508
+	RESERVED
+CVE-2010-3507
+	RESERVED
+CVE-2010-3506
+	RESERVED
+CVE-2010-3505
+	RESERVED
+CVE-2010-3504
+	RESERVED
+CVE-2010-3503
+	RESERVED
+CVE-2010-3502
+	RESERVED
+CVE-2010-3501
+	RESERVED
+CVE-2010-3500
+	RESERVED
+CVE-2010-3476 (Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x
before ...)
+	TODO: check
+CVE-2010-3475 (IBM DB2 9.7 before FP3 does not properly enforce privilege ...)
+	TODO: check
+CVE-2010-3474 (IBM DB2 9.7 before FP3 does not perform the expected drops or
...)
+	TODO: check
+CVE-2010-3473 (Open redirect vulnerability in the Workplace (aka WP) component
in IBM ...)
+	TODO: check
+CVE-2010-3472 (Multiple cross-site scripting (XSS) vulnerabilities in the
Workplace ...)
+	TODO: check
+CVE-2010-3471 (Session fixation vulnerability in the Workplace (aka WP)
component in ...)
+	TODO: check
+CVE-2010-3470 (Multiple cross-site scripting (XSS) vulnerabilities in the
Workplace ...)
+	TODO: check
+CVE-2010-3469
+	RESERVED
+CVE-2010-3468
+	RESERVED
+CVE-2009-5002 (The Workplace (aka WP) component in IBM FileNet P8 Application
Engine ...)
+	TODO: check
+CVE-2009-5001 (The Workplace (aka WP) component in IBM FileNet P8 Application
Engine ...)
+	TODO: check
+CVE-2009-5000 (Multiple cross-site scripting (XSS) vulnerabilities in the
Workplace ...)
+	TODO: check
+CVE-2009-4999 (Cross-site scripting (XSS) vulnerability in the Workplace (aka
WP) ...)
+	TODO: check
+CVE-2009-4998 (The Workplace (aka WP) component in IBM FileNet P8 Application
Engine ...)
+	TODO: check
+CVE-2008-7261 (The Workplace (aka WP) component in IBM FileNet P8 Application
Engine ...)
+	TODO: check
+CVE-2006-7242 (The Workplace (aka WP) component in IBM FileNet P8 Application
Engine ...)
+	TODO: check
+CVE-2006-7241 (The Image Viewer component in IBM FileNet P8 Application Engine
(P8AE) ...)
+	TODO: check
 CVE-2010-3467 (SQL injection vulnerability in modules/sections/index.php in
...)
 	TODO: check
 CVE-2010-3466 (Cross-site scripting (XSS) vulnerability in index.php in the
...)
@@ -468,8 +704,8 @@
 CVE-2010-3263 (Cross-site scripting (XSS) vulnerability in
setup/frames/index.inc.php ...)
 	- phpmyadmin 4:3.3.7-1 (low)
 	[lenny] - phpmyadmin <not-affected> (Vulnerable code not present)
-CVE-2010-3262
-	RESERVED
+CVE-2010-3262 (Cross-site scripting (XSS) vulnerability in Flock Browser 3.x
before ...)
+	TODO: check
 CVE-2010-3261
 	RESERVED
 CVE-2010-3260
@@ -638,8 +874,8 @@
 	TODO: check
 CVE-2010-3201
 	RESERVED
-CVE-2010-3200
-	RESERVED
+CVE-2010-3200 (MSO.dll in Microsoft Word 2003 SP3 11.8326.11.8324 allows remote
...)
+	TODO: check
 CVE-2010-3199 (Untrusted search path vulnerability in TortoiseSVN 1.6.10, Build
19898 ...)
 	NOT-FOR-US: TortoiseSVN
 CVE-2010-3198 (ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7
allows ...)
@@ -1019,8 +1255,7 @@
 	- encfs 1.7.2-1 (bug #595998)
 CVE-2010-3073 (SSL_Cipher.cpp in EncFS before 1.7.0 does not properly handle
integer ...)
 	- encfs 1.7.2-1 (bug #595998)
-CVE-2010-3072
-	RESERVED
+CVE-2010-3072 (The string-comparison functions in String.cci in Squid 3.x
before ...)
 	{DSA-2111-1}
 	- squid3 3.1.6-1.1 (bug #596086; low)
 	- squid <not-affected> (Only affects 3.x)
@@ -3603,8 +3838,7 @@
 	NOT-FOR-US: Cisco
 CVE-2010-2081
 	RESERVED
-CVE-2010-2080 [otrs XSS and DoS]
-	RESERVED
+CVE-2010-2080 (Multiple cross-site scripting (XSS) vulnerabilities in Open
Ticket ...)
 	- otrs2 <unfixed>
 	TODO: check lenny
 	NOTE: http://otrs.org/advisory/OSA-2010-02-en/
@@ -6112,7 +6346,7 @@
 	- chromium-browser 5.0.375.29~r46008-1
 	NOTE: http://trac.webkit.org/changeset/55511
 	NOTE: evidence of memory corruption
http://code.google.com/p/chromium/issues/detail?id=37061
-CVE-2010-1236 (Google Chrome before 4.1.249.1036 does not properly restrict
...)
+CVE-2010-1236 (The protocolIs function in platform/KURLGoogle.cpp in WebCore in
...)
 	- webkit <not-affected> (bug #577457; proof-of-concepts are not
effective against webkit)
 	- chromium-browser 5.0.375.29~r46008-1
 	NOTE: http://trac.webkit.org/changeset/55822
Secure testing commits - Sep 2010 - r15363 - data/CVE

[Secure-testing-commits] r15363 - data/CVE
