Author: joeyh Date: 2011-10-21 21:14:24 +0000 (Fri, 21 Oct 2011) New Revision: 17475 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-10-21 14:06:18 UTC (rev 17474) +++ data/CVE/list 2011-10-21 21:14:24 UTC (rev 17475) @@ -1,3 +1,13 @@ +CVE-2011-4151 (The krb5_db2_lockout_audit function in the Key Distribution Center ...) + TODO: check +CVE-2010-4967 (SQL injection vulnerability in default.asp in ATCOM Netvolution 2.5.6 ...) + TODO: check +CVE-2010-4966 (Cross-site scripting (XSS) vulnerability in default.asp in ATCOM ...) + TODO: check +CVE-2009-5103 (Cross-site scripting (XSS) vulnerability in ATCOM Netvolution 1.0 ASP ...) + TODO: check +CVE-2009-5102 (SQL injection vulnerability in default.asp in ATCOM Netvolution 1.0 ...) + TODO: check CVE-2011-4150 RESERVED CVE-2011-4149 @@ -177,8 +187,8 @@ RESERVED CVE-2011-4065 RESERVED -CVE-2011-4063 - RESERVED +CVE-2011-4063 (chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x ...) + TODO: check CVE-2011-4062 (Buffer overflow in the "linux emulation" support in FreeBSD 7.3 and ...) - kfreebsd-10 10.0~svn226224-1 - kfreebsd-9 9.0~svn225873-1 @@ -2183,8 +2193,8 @@ CVE-2011-3341 (Multiple off-by-one errors in order_cmd.cpp in OpenTTD before 1.1.3 ...) - openttd 1.1.3-1 NOTE: http://www.openwall.com/lists/oss-security/2011/09/02/4 -CVE-2011-3340 - RESERVED +CVE-2011-3340 (SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows ...) + TODO: check CVE-2010-4832 RESERVED CVE-2010-4831 (Untrusted search path vulnerability in gdk/win32/gdkinput-win32.c in ...) @@ -7200,16 +7210,13 @@ NOT-FOR-US: HP Photosmart CVE-2011-1530 RESERVED -CVE-2011-1529 - RESERVED +CVE-2011-1529 (The lookup_lockout_policy function in the Key Distribution Center ...) - krb5 <unfixed> [lenny] - krb5 <not-affected> (Introduced in 1.8) -CVE-2011-1528 - RESERVED +CVE-2011-1528 (The krb5_ldap_lockout_audit function in the Key Distribution Center ...) - krb5 <unfixed> [lenny] - krb5 <not-affected> (Introduced in 1.8) -CVE-2011-1527 - RESERVED +CVE-2011-1527 (The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT ...) - krb5 <unfixed> [squeeze] - krb5 <not-affected> (Introduced in 1.9) [lenny] - krb5 <not-affected> (Introduced in 1.9) @@ -10846,8 +10853,8 @@ RESERVED CVE-2011-0291 RESERVED -CVE-2011-0290 - RESERVED +CVE-2011-0290 (The BlackBerry Collaboration Service in Research In Motion (RIM) ...) + TODO: check CVE-2011-0289 RESERVED CVE-2011-0288