joeyh at alioth.debian.org
2008-Oct-02 21:14 UTC
[Secure-testing-commits] r9960 - data/CVE
Author: joeyh Date: 2008-10-02 21:14:34 +0000 (Thu, 02 Oct 2008) New Revision: 9960 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-10-02 16:08:52 UTC (rev 9959) +++ data/CVE/list 2008-10-02 21:14:34 UTC (rev 9960) @@ -1,3 +1,61 @@ +CVE-2008-4395 + RESERVED +CVE-2008-4394 + RESERVED +CVE-2008-4393 + RESERVED +CVE-2008-4392 + RESERVED +CVE-2008-4391 + RESERVED +CVE-2008-4390 + RESERVED +CVE-2008-4389 + RESERVED +CVE-2008-4388 + RESERVED +CVE-2008-4387 + RESERVED +CVE-2008-4386 + RESERVED +CVE-2008-4385 + RESERVED +CVE-2008-4384 + RESERVED +CVE-2008-4383 + RESERVED +CVE-2008-4382 (Konqueror in KDE 3.5.9 allows remote attackers to cause a denial of ...) + TODO: check +CVE-2008-4381 (Microsoft Internet Explorer 7 allows remote attackers to cause a ...) + TODO: check +CVE-2008-4380 (The web interface in Samsung DVR SHR2040 allows remote attackers to ...) + TODO: check +CVE-2008-4379 (Cross-site scripting (XSS) vulnerability in report.php in Mr. CGI Guy ...) + TODO: check +CVE-2008-4378 (SQL injection vulnerability in report.php in Mr. CGI Guy Hot Links ...) + TODO: check +CVE-2008-4377 (SQL injection vulnerability in index.asp in Creative Mind Creator CMS ...) + TODO: check +CVE-2008-4376 (SQL injection vulnerability in index.php in Live TV Script allows ...) + TODO: check +CVE-2008-4375 (SQL injection vulnerability in viewprofile.php in Availscript ...) + TODO: check +CVE-2008-4374 (SQL injection vulnerability in index.php in CMS Buzz allows remote ...) + TODO: check +CVE-2008-4373 (SQL injection vulnerability in job_seeker/applynow.php in AvailScript ...) + TODO: check +CVE-2008-4372 (Cross-site scripting (XSS) vulnerability in articles.php in ...) + TODO: check +CVE-2008-4371 (SQL injection vulnerability in articles.php in AvailScript Article ...) + TODO: check +CVE-2008-4370 (Multiple cross-site scripting (XSS) vulnerabilities in Availscript ...) + TODO: check +CVE-2008-4369 (SQL injection vulnerability in pics.php in Availscript Photo Album ...) + TODO: check +CVE-2008-4368 (The default configuration of Java 1.5 on Apple Mac OS X 10.5.4 and ...) + TODO: check +CVE-2008-4367 + RESERVED CVE-2008-XXXX [liquidsoap: insecure temp file] - liquidsoap <unfixed> (low; bug #496360) CVE-2008-XXXX [openswan kernel patch: insecure temp file] @@ -1989,8 +2047,8 @@ RESERVED CVE-2008-3543 RESERVED -CVE-2008-3542 - RESERVED +CVE-2008-3542 (Unspecified vulnerability in HP Insight Diagnostics before 7.9.1.2402 ...) + TODO: check CVE-2008-3541 RESERVED CVE-2008-3540 @@ -2042,14 +2100,11 @@ TODO: check CVE-2008-3523 RESERVED -CVE-2008-3522 [jasper - buffer overflow] - RESERVED +CVE-2008-3522 (Buffer overflow in the jas_stream_printf function in ...) - jasper <unfixed> -CVE-2008-3521 [jasper - tmp race] - RESERVED +CVE-2008-3521 (The jas_stream_tmpfile function in libjasper/base/jas_stream.c in ...) - jasper <unfixed> -CVE-2008-3520 [jasper - various potential integer overflows] - RESERVED +CVE-2008-3520 (Multiple integer overflows in JasPer 1.900.1 might allow ...) - jasper <unfixed> CVE-2008-3519 (The default configuration of the JBossAs component in Red Hat JBoss ...) - jbossas4 <not-affected> (configuration not yet included in Debian package) @@ -3623,8 +3678,8 @@ NOT-FOR-US: le.cms CVE-2008-2832 (Unrestricted file upload vulnerability in calendar_admin.asp in Full ...) NOT-FOR-US: aspWebCalendar 2008 -CVE-2008-2831 - RESERVED +CVE-2008-2831 (Multiple cross-site scripting (XSS) vulnerabilities in the delegated ...) + TODO: check CVE-2008-2830 (Open Scripting Architecture in Apple Mac OS X 10.4.11 and 10.5.4, and ...) NOT-FOR-US: Apple Mac OS CVE-2008-2829 (php_imap.c in PHP 5.2.5, 5.2.6, 4.x, and other versions, uses obsolete ...)