joeyh at alioth.debian.org
2008-Mar-19 09:14 UTC
[Secure-testing-commits] r8371 - data/CVE
Author: joeyh
Date: 2008-03-19 09:14:11 +0000 (Wed, 19 Mar 2008)
New Revision: 8371
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-03-19 05:12:02 UTC (rev 8370)
+++ data/CVE/list 2008-03-19 09:14:11 UTC (rev 8371)
@@ -1,3 +1,49 @@
+CVE-2008-1391
+ RESERVED
+CVE-2008-1390
+ RESERVED
+CVE-2008-1389
+ RESERVED
+CVE-2008-1388
+ RESERVED
+CVE-2008-1387
+ RESERVED
+CVE-2008-1386
+ RESERVED
+CVE-2008-1385
+ RESERVED
+CVE-2008-1384
+ RESERVED
+CVE-2008-1383 (The docert function in ssl-cert.eclass, when used by src_compile
or ...)
+ TODO: check
+CVE-2008-1382
+ RESERVED
+CVE-2008-1381
+ RESERVED
+CVE-2008-1380
+ RESERVED
+CVE-2008-1379
+ RESERVED
+CVE-2008-1378
+ RESERVED
+CVE-2008-1377
+ RESERVED
+CVE-2008-1376
+ RESERVED
+CVE-2008-1375
+ RESERVED
+CVE-2008-1374
+ RESERVED
+CVE-2008-1373
+ RESERVED
+CVE-2008-1372 (bzlib.c in bzip2 before 1.0.5 allows user-assisted remote
attackers to ...)
+ TODO: check
+CVE-2008-1371 (Absolute path traversal vulnerability in install/index.php in
Drake ...)
+ TODO: check
+CVE-2008-1370 (PHP remote file inclusion vulnerability in index.php in wildmary
Yap ...)
+ TODO: check
+CVE-2008-1369 (A certain incorrect Sun Solaris 10 image on SPARC Enterprise
T5120 and ...)
+ TODO: check
CVE-2008-1368 (CRLF injection vulnerability in Microsoft Internet Explorer 5
and 6 ...)
TODO: check
CVE-2008-1367 (gcc 4.3.x does not generate a cld instruction while compiling
...)
@@ -72,8 +118,8 @@
RESERVED
CVE-2008-1331
RESERVED
-CVE-2008-1330
- RESERVED
+CVE-2008-1330 (Unspecified vulnerability in the Windows client API in Novell
...)
+ TODO: check
CVE-2008-1329
RESERVED
CVE-2008-1328
@@ -831,56 +877,56 @@
RESERVED
CVE-2008-1012
RESERVED
-CVE-2008-1011
- RESERVED
-CVE-2008-1010
- RESERVED
-CVE-2008-1009
- RESERVED
-CVE-2008-1008
- RESERVED
-CVE-2008-1007
- RESERVED
-CVE-2008-1006
- RESERVED
-CVE-2008-1005
- RESERVED
-CVE-2008-1004
- RESERVED
-CVE-2008-1003
- RESERVED
-CVE-2008-1002
- RESERVED
-CVE-2008-1001
- RESERVED
-CVE-2008-1000
- RESERVED
-CVE-2008-0999
- RESERVED
-CVE-2008-0998
- RESERVED
-CVE-2008-0997
- RESERVED
-CVE-2008-0996
- RESERVED
-CVE-2008-0995
- RESERVED
-CVE-2008-0994
- RESERVED
-CVE-2008-0993
- RESERVED
-CVE-2008-0992
- RESERVED
+CVE-2008-1011 (Cross-site scripting (XSS) vulnerability in WebKit, as used in
Apple ...)
+ TODO: check
+CVE-2008-1010 (Buffer overflow in WebKit, as used in Apple Safari before 3.1,
allows ...)
+ TODO: check
+CVE-2008-1009 (Cross-site scripting (XSS) vulnerability in WebCore, as used in
Apple ...)
+ TODO: check
+CVE-2008-1008 (Cross-site scripting (XSS) vulnerability in WebCore, as used in
Apple ...)
+ TODO: check
+CVE-2008-1007 (WebCore, as used in Apple Safari before 3.1, does not enforce
the ...)
+ TODO: check
+CVE-2008-1006 (Cross-site scripting (XSS) vulnerability in WebCore, as used in
Apple ...)
+ TODO: check
+CVE-2008-1005 (WebCore, as used in Apple Safari before 3.1, does not properly
mask ...)
+ TODO: check
+CVE-2008-1004 (Cross-site scripting (XSS) vulnerability in WebCore, as used in
Apple ...)
+ TODO: check
+CVE-2008-1003 (Cross-site scripting (XSS) vulnerability in WebCore, as used in
Apple ...)
+ TODO: check
+CVE-2008-1002 (Cross-site scripting (XSS) vulnerability in Apple Safari before
3.1 ...)
+ TODO: check
+CVE-2008-1001 (Cross-site scripting (XSS) vulnerability in Apple Safari before
3.1, ...)
+ TODO: check
+CVE-2008-1000 (Directory traversal vulnerability in ContentServer.py in the
Wiki ...)
+ TODO: check
+CVE-2008-0999 (Apple Mac OS X 10.5.2 allows user-assisted attackers to cause a
denial ...)
+ TODO: check
+CVE-2008-0998 (Unspecified vulnerability in NetCfgTool in the System
Configuration ...)
+ TODO: check
+CVE-2008-0997 (Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11
allows ...)
+ TODO: check
+CVE-2008-0996 (The Printing component in Apple Mac OS X 10.5.2 might save ...)
+ TODO: check
+CVE-2008-0995 (The Printing component in Apple Mac OS X 10.5.2 uses 40-bit RC4
when ...)
+ TODO: check
+CVE-2008-0994 (Preview in Apple Mac OS X 10.5.2 uses 40-bit RC4 when saving a
PDF ...)
+ TODO: check
+CVE-2008-0993 (Podcast Capture in Podcast Producer for Apple Mac OS X 10.5.2
invokes ...)
+ TODO: check
+CVE-2008-0992 (Array index error in pax in Apple Mac OS X 10.5.2 allows ...)
+ TODO: check
CVE-2008-0991
RESERVED
-CVE-2008-0990
- RESERVED
-CVE-2008-0989
- RESERVED
-CVE-2008-0988
- RESERVED
-CVE-2008-0987
- RESERVED
+CVE-2008-0990 (notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port
death ...)
+ TODO: check
+CVE-2008-0989 (Format string vulnerability in mDNSResponderHelper in Apple Mac
OS X ...)
+ TODO: check
+CVE-2008-0988 (Off-by-one error in the Libsystem strnstr API in libc on Apple
Mac OS ...)
+ TODO: check
+CVE-2008-0987 (Stack-based buffer overflow in Image Raw in Apple Mac OS X
10.5.2 ...)
+ TODO: check
CVE-2008-0986 (Integer overflow in the BMP::readFromStream method in the
libsgl.so ...)
NOT-FOR-US: Google Android
CVE-2008-0985 (Heap-based buffer overflow in the GIF library in the WebKit
framework ...)
@@ -961,12 +1007,10 @@
RESERVED
CVE-2008-0949 (Unspecified vulnerability in IBM Informix Dynamic Server (IDS)
7.x ...)
TODO: check
-CVE-2008-0948
- RESERVED
+CVE-2008-0948 (Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c)
used by ...)
- krb5 1.3-1 (unimportant)
NOTE: glibc properly defines FD_SETSIZE
-CVE-2008-0947
- RESERVED
+CVE-2008-0947 (Buffer overflow in the RPC library used by libgssrpc and kadmind
in ...)
{DSA-1524-1}
- krb5 1.6.dfsg.3~beta1-4 (medium)
CVE-2008-0946 (Directory traversal vulnerability in the IM Server (aka IMserve
or ...)
@@ -3039,40 +3083,40 @@
RESERVED
{DSA-1524-1}
- krb5 1.6.dfsg.3~beta1-4 (high)
-CVE-2008-0060
- RESERVED
-CVE-2008-0059
- RESERVED
-CVE-2008-0058
- RESERVED
-CVE-2008-0057
- RESERVED
-CVE-2008-0056
- RESERVED
-CVE-2008-0055
- RESERVED
-CVE-2008-0054
- RESERVED
-CVE-2008-0053
- RESERVED
-CVE-2008-0052
- RESERVED
-CVE-2008-0051
- RESERVED
-CVE-2008-0050
- RESERVED
-CVE-2008-0049
- RESERVED
-CVE-2008-0048
- RESERVED
-CVE-2008-0047
- RESERVED
-CVE-2008-0046
- RESERVED
-CVE-2008-0045
- RESERVED
-CVE-2008-0044
- RESERVED
+CVE-2008-0060 (Help Viewer in Apple Mac OS X 10.4.11 and 10.5.2 allows remote
...)
+ TODO: check
+CVE-2008-0059 (Race condition in NSXML in Foundation for Apple Mac OS X 10.4.11
...)
+ TODO: check
+CVE-2008-0058 (Race condition in the NSURLConnection cache management
functionality ...)
+ TODO: check
+CVE-2008-0057 (Multiple integer overflows in a "legacy serialization
format" parser ...)
+ TODO: check
+CVE-2008-0056 (Stack-based buffer overflow in Foundation in Apple Mac OS X
10.4.11 ...)
+ TODO: check
+CVE-2008-0055 (Foundation in Apple Mac OS X 10.4.11 creates world-writable ...)
+ TODO: check
+CVE-2008-0054 (Foundation in Apple Mac OS X 10.4.11 might allow
context-dependent ...)
+ TODO: check
+CVE-2008-0053 (Unspecified vulnerability in CUPS before 1.3.6 in Apple Mac OS X
...)
+ TODO: check
+CVE-2008-0052 (CoreServices in Apple Mac OS X 10.4.11 treats .ief as a safe
file ...)
+ TODO: check
+CVE-2008-0051 (Integer overflow in CoreFoundation in Apple Mac OS X 10.4.11
might ...)
+ TODO: check
+CVE-2008-0050 (CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy
servers ...)
+ TODO: check
+CVE-2008-0049 (AppKit in Apple Mac OS X 10.4.11 inadvertently makes an
NSApplication ...)
+ TODO: check
+CVE-2008-0048 (Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11
allows ...)
+ TODO: check
+CVE-2008-0047 (Heap-based buffer overflow in CUPS in Apple Mac OS X 10.5.2,
when ...)
+ TODO: check
+CVE-2008-0046 (The Application Firewall in Apple Mac OS X 10.5.2 has an
incorrect ...)
+ TODO: check
+CVE-2008-0045 (Unspecified vulnerability in AFP Server in Apple Mac OS X
10.4.11 ...)
+ TODO: check
+CVE-2008-0044 (Multiple buffer overflows in AFP Client in Apple Mac OS X
10.4.11 and ...)
+ TODO: check
CVE-2008-0043 (Format string vulnerability in Apple iPhoto before 7.1.2 allows
remote ...)
NOT-FOR-US: Apple iPhoto
CVE-2008-0042 (Argument injection vulnerability in Terminal.app in Terminal in
Apple ...)