joeyh at alioth.debian.org
2008-Sep-03 21:14 UTC
[Secure-testing-commits] r9736 - data/CVE
Author: joeyh Date: 2008-09-03 21:14:09 +0000 (Wed, 03 Sep 2008) New Revision: 9736 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-09-03 21:02:25 UTC (rev 9735) +++ data/CVE/list 2008-09-03 21:14:09 UTC (rev 9736) @@ -1,3 +1,27 @@ +CVE-2008-3901 (Software suspend 2 2-2.2.1, when used with the Linux kernel 2.6.16, ...) + TODO: check +CVE-2008-3900 (Intel firmware PE94510M.86A.0050.2007.0710.1559 stores pre-boot ...) + TODO: check +CVE-2008-3899 (TrueCrypt 5.0 stores pre-boot authentication passwords in the BIOS ...) + TODO: check +CVE-2008-3898 (Secu Star DriveCrypt Plus Pack 3.9 stores pre-boot authentication ...) + TODO: check +CVE-2008-3897 (DiskCryptor 0.2.6 on Windows stores pre-boot authentication passwords ...) + TODO: check +CVE-2008-3896 (Grub Legacy 0.97 and earlier stores pre-boot authentication passwords ...) + TODO: check +CVE-2008-3895 (LILO 22.6.1 and earlier stores pre-boot authentication passwords in ...) + TODO: check +CVE-2008-3894 (IBM Lenovo firmware 7CETB5WW 2.05 stores pre-boot authentication ...) + TODO: check +CVE-2008-3893 (Microsoft Bitlocker in Windows Vista before SP1 stores pre-boot ...) + TODO: check +CVE-2008-3892 (Buffer overflow in a certain ActiveX control in the COM API in VMware ...) + TODO: check +CVE-2008-3891 (The SAML Single Sign-On (SSO) Service for Google Apps allows remote ...) + TODO: check +CVE-2008-3890 + RESERVED CVE-2008-3888 (SQL injection vulnerability in members.asp in Mini-NUKE Freehost 2.3 ...) NOT-FOR-US: Mini-NUKE Freehost CVE-2008-3887 (Multiple SQL injection vulnerabilities in index.php in dotProject ...) @@ -220,10 +244,10 @@ NOT-FOR-US: WS_FTP Home CVE-2008-3793 RESERVED -CVE-2008-3792 - RESERVED -CVE-2008-3791 - RESERVED +CVE-2008-3792 (net/sctp/socket.c in the Stream Control Transmission Protocol (sctp) ...) + TODO: check +CVE-2008-3791 (src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop ...) + TODO: check CVE-2008-3788 (Multiple SQL injection vulnerabilities in PICTURESPRO Photo Cart 3.9, ...) NOT-FOR-US: PICTURESPRO Photo Cart 3.9 CVE-2008-3787 (SQL injection vulnerability in listing_view.php in Web Directory ...) @@ -513,22 +537,22 @@ NOT-FOR-US: Kayako SupportSuite CVE-2008-3700 (Multiple cross-site scripting (XSS) vulnerabilities in Kayako ...) NOT-FOR-US: Kayako SupportSuite -CVE-2008-3698 - RESERVED -CVE-2008-3697 - RESERVED -CVE-2008-3696 - RESERVED -CVE-2008-3695 - RESERVED -CVE-2008-3694 - RESERVED -CVE-2008-3693 - RESERVED -CVE-2008-3692 - RESERVED -CVE-2008-3691 - RESERVED +CVE-2008-3698 (Unspecified vulnerability in the OpenProcess function in VMware ...) + TODO: check +CVE-2008-3697 (An unspecified ISAPI extension in VMware Server before 1.0.7 build ...) + TODO: check +CVE-2008-3696 (Unspecified vulnerability in a certain ActiveX control in VMware ...) + TODO: check +CVE-2008-3695 (Unspecified vulnerability in a certain ActiveX control in VMware ...) + TODO: check +CVE-2008-3694 (Unspecified vulnerability in a certain ActiveX control in VMware ...) + TODO: check +CVE-2008-3693 (Unspecified vulnerability in a certain ActiveX control in VMware ...) + TODO: check +CVE-2008-3692 (Unspecified vulnerability in a certain ActiveX control in VMware ...) + TODO: check +CVE-2008-3691 (Unspecified vulnerability in a certain ActiveX control in VMware ...) + TODO: check CVE-2008-3690 RESERVED CVE-2008-3689 @@ -889,12 +913,12 @@ RESERVED CVE-2008-3539 RESERVED -CVE-2008-3538 (libxml2, possibly before 2.5.0, does not properly detect recursion ...) +CVE-2008-3538 (Unspecified vulnerability in HP Enterprise Discovery 2.0 through 2.52 ...) TODO: check -CVE-2008-3537 - RESERVED -CVE-2008-3536 - RESERVED +CVE-2008-3537 (Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node ...) + TODO: check +CVE-2008-3536 (Unspecified vulnerability in ovalarmsrv in HP OpenView Network Node ...) + TODO: check CVE-2008-3535 (Off-by-one error in the iov_iter_advance function in mm/filemap.c in ...) - linux-2.6 2.6.26-2 - linux-2.6.24 <unfixed> @@ -921,8 +945,8 @@ RESERVED CVE-2008-3526 (Integer overflow in the sctp_setsockopt_auth_key function in ...) TODO: check -CVE-2008-3525 - RESERVED +CVE-2008-3525 (The sbni_ioctl function in drivers/net/wan/sbni.c in the wan subsystem ...) + TODO: check CVE-2008-3524 RESERVED CVE-2008-3523 @@ -1891,8 +1915,8 @@ - sun-java6 6-07-1 (bug #490260) CVE-2008-3102 RESERVED -CVE-2008-3101 - RESERVED +CVE-2008-3101 (Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM ...) + TODO: check CVE-2008-3100 (Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve ...) - owl-dms 0.95-1.1 (low; bug #493579) CVE-2008-3099 @@ -4154,8 +4178,8 @@ [etch] - bugzilla <no-dsa> (Minor issue) CVE-2008-2102 RESERVED -CVE-2008-2101 - RESERVED +CVE-2008-2101 (The VMware Consolidated Backup (VCB) command-line utilities in VMware ...) + TODO: check CVE-2008-2100 (Multiple buffer overflows in VIX API 1.1.x before 1.1.4 build 93057 on ...) - vmware-package <unfixed> (low; bug #485919) [etch] - vmware-package <no-dsa> (Contrib not supported)