thr3ads.net - Secure testing commits - [Secure-testing-commits] r18982

If this information is useful, please help other people find it:
Share via:
Joey Hess
2012-Apr-16 21:14 UTC
[Secure-testing-commits] r18982 - data/CVE

Author: joeyh
Date: 2012-04-16 21:14:51 +0000 (Mon, 16 Apr 2012)
New Revision: 18982

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-04-16 20:56:57 UTC (rev 18981)
+++ data/CVE/list	2012-04-16 21:14:51 UTC (rev 18982)
@@ -1,3 +1,13 @@
+CVE-2012-2235
+	RESERVED
+CVE-2012-2234
+	RESERVED
+CVE-2012-2233
+	RESERVED
+CVE-2012-2232
+	RESERVED
+CVE-2012-2231
+	RESERVED
 CVE-2012-2230 (Cloudera Manager 3.7.x before 3.7.5 and Service and
Configuration ...)
 	TODO: check
 CVE-2012-2229
@@ -251,8 +261,8 @@
 CVE-2012-2110
 	RESERVED
 CVE-2012-2109
+	RESERVED
 	NOT-FOR-US: wordpress buddypress plugin
-	RESERVED
 CVE-2012-2108
 	RESERVED
 	- csound <unfixed> (bug #661197)
@@ -269,8 +279,8 @@
 	RESERVED
 	- munin <unfixed> (bug #668666)
 CVE-2012-2103
+	RESERVED
 	- munin <unfixed> (bug #668778) 
-	RESERVED
 CVE-2012-2102 [mysql DoS by authenticated user]
 	RESERVED
 	- mysql-5.1 <unfixed> (low)
@@ -936,16 +946,16 @@
 	RESERVED
 CVE-2012-1810
 	RESERVED
-CVE-2012-1809
-	RESERVED
-CVE-2012-1808
-	RESERVED
-CVE-2012-1807
-	RESERVED
-CVE-2012-1806
-	RESERVED
-CVE-2012-1805
-	RESERVED
+CVE-2012-1809 (The web server in the ECOM Ethernet module in Koyo H0-ECOM, ...)
+	TODO: check
+CVE-2012-1808 (The web server in the ECOM Ethernet module in Koyo H0-ECOM, ...)
+	TODO: check
+CVE-2012-1807 (Cross-site scripting (XSS) vulnerability in the web server in
the ECOM ...)
+	TODO: check
+CVE-2012-1806 (The ECOM Ethernet module in Koyo H0-ECOM, H0-ECOM100, H2-ECOM,
...)
+	TODO: check
+CVE-2012-1805 (Buffer overflow in the ECOM Ethernet module in Koyo H0-ECOM,
...)
+	TODO: check
 CVE-2012-1804
 	RESERVED
 CVE-2012-1803
@@ -6233,8 +6243,7 @@
 	RESERVED
 	{DSA-2438-1}
 	- raptor 1.4.21-7
-CVE-2012-0036
-	RESERVED
+CVE-2012-0036 (curl and libcurl 7.2x before 7.24.0 do not properly consider
special ...)
 	{DSA-2398-1}
 	- curl 7.24.0-1
 	[lenny] - curl <not-affected> (Only affects 7.20.0 to 7.23.1)
@@ -15096,16 +15105,13 @@
 	RESERVED
 	- linux-2.6 <unfixed>
 	TODO: check
-CVE-2011-1779
-	RESERVED
+CVE-2011-1779 (Multiple use-after-free vulnerabilities in libarchive 2.8.4 and
2.8.5 ...)
 	- libarchive <unfixed>
 	TODO: check
-CVE-2011-1778
-	RESERVED
+CVE-2011-1778 (Buffer overflow in libarchive through 2.8.5 allows remote
attackers to ...)
 	{DSA-2413-1}
 	- libarchive 2.8.5-5 (bug #651844)
-CVE-2011-1777
-	RESERVED
+CVE-2011-1777 (Multiple buffer overflows in the (1) heap_add_entry and (2) ...)
 	{DSA-2413-1}
 	- libarchive 2.8.5-5 (bug #651844)
 CVE-2011-1776 (The is_gpt_valid function in fs/partitions/efi.c in the Linux
kernel ...)
@@ -19582,8 +19588,7 @@
 	- linux-2.6 2.6.32-29
 CVE-2010-4667 (Cross-site scripting (XSS) vulnerability in Coppermine Photo
Gallery ...)
 	NOT-FOR-US: Coppermine Photo Gallery
-CVE-2010-4666
-	RESERVED
+CVE-2010-4666 (Buffer overflow in libarchive 3.0 pre-release code allows remote
...)
 	- libarchive <unfixed>
 	TODO: check
 CVE-2010-4665 (Integer overflow in the ReadDirectory function in tiffdump.c in
...)
Secure testing commits - Apr 2012 - r18982 - data/CVE

[Secure-testing-commits] r18982 - data/CVE
