Author: joeyh Date: 2011-08-25 21:14:18 +0000 (Thu, 25 Aug 2011) New Revision: 17126 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-08-25 14:44:44 UTC (rev 17125) +++ data/CVE/list 2011-08-25 21:14:18 UTC (rev 17126) @@ -1,3 +1,17 @@ +CVE-2011-3266 (The proto_tree_add_item function in Wireshark 1.6.1, when the IKEv1 ...) + TODO: check +CVE-2010-4830 (SQL injection vulnerability in Resumes/TD_RESUME_Indlist.asp in Techno ...) + TODO: check +CVE-2010-4829 (SQL injection vulnerability in processview.asp in Techno Dreams ...) + TODO: check +CVE-2010-4828 (Multiple cross-site scripting (XSS) vulnerabilities in SolarWinds ...) + TODO: check +CVE-2010-4827 (Cross-site scripting (XSS) vulnerability in members.asp in Snitz ...) + TODO: check +CVE-2010-4826 (SQL injection vulnerability in members.asp in Snitz Forums 2000 3.4.07 ...) + TODO: check +CVE-2010-4825 (Cross-site scripting (XSS) vulnerability in magpie_debug.php in the ...) + TODO: check CVE-2011-XXXX [lightdm privilege escalation] - lightdm <unfixed> (bug #639151) CVE-2011-3265 (popup.php in Zabbix before 1.8.7 allows remote attackers to read the ...) @@ -1286,8 +1300,8 @@ RESERVED CVE-2011-2736 RESERVED -CVE-2011-2735 - RESERVED +CVE-2011-2735 (Multiple buffer overflows in EMC AutoStart 5.3.x and 5.4.x before ...) + TODO: check CVE-2011-2734 RESERVED CVE-2011-2733 (EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, ...) @@ -1386,8 +1400,7 @@ CVE-2011-2699 RESERVED - linux-2.6 3.0.0-2 -CVE-2011-2698 [Wireshark ANSI MAP dissector] - RESERVED +CVE-2011-2698 (Off-by-one error in the elem_cell_id_aux function in ...) - wireshark 1.6.1-1 (unimportant) NOTE: no code injection, not treated as a security issue, see README.Debian.security CVE-2011-2697 (foomatic-rip-hplip in HP Linux Imaging and Printing (HPLIP) 3.11.5 ...) @@ -1512,24 +1525,24 @@ RESERVED CVE-2011-2653 RESERVED -CVE-2011-2652 - RESERVED -CVE-2011-2651 - RESERVED -CVE-2011-2650 - RESERVED -CVE-2011-2649 - RESERVED -CVE-2011-2648 - RESERVED -CVE-2011-2647 - RESERVED -CVE-2011-2646 - RESERVED -CVE-2011-2645 - RESERVED -CVE-2011-2644 - RESERVED +CVE-2011-2652 (Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as ...) + TODO: check +CVE-2011-2651 (Unspecified vulnerability in the file browser in Kiwi before 3.74.2, ...) + TODO: check +CVE-2011-2650 (Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as ...) + TODO: check +CVE-2011-2649 (Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows ...) + TODO: check +CVE-2011-2648 (Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE ...) + TODO: check +CVE-2011-2647 (Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE ...) + TODO: check +CVE-2011-2646 (Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE ...) + TODO: check +CVE-2011-2645 (Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE ...) + TODO: check +CVE-2011-2644 (Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as ...) + TODO: check CVE-2011-2643 (Directory traversal vulnerability in sql.php in phpMyAdmin 3.4.x ...) - phpmyadmin 4:3.4.3.2-1 [squeeze] - phpmyadmin <not-affected> (Vulnerable code not present) @@ -2540,10 +2553,10 @@ RESERVED CVE-2011-2227 RESERVED -CVE-2011-2226 - RESERVED -CVE-2011-2225 - RESERVED +CVE-2011-2226 (Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as ...) + TODO: check +CVE-2011-2225 (Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE ...) + TODO: check CVE-2011-2224 (The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through ...) NOT-FOR-US: Novell Data Synchronizer CVE-2011-2223 (The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through ...)