Author: joeyh
Date: 2009-06-09 21:14:17 +0000 (Tue, 09 Jun 2009)
New Revision: 12092
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-06-09 20:25:22 UTC (rev 12091)
+++ data/CVE/list 2009-06-09 21:14:17 UTC (rev 12092)
@@ -1,3 +1,115 @@
+CVE-2009-2011
+ RESERVED
+CVE-2009-2010 (Multiple SQL injection vulnerabilities in Haudenschilt Family
...)
+ TODO: check
+CVE-2009-2009 (Multiple cross-site scripting (XSS) vulnerabilities in Dokeos
1.8.5, ...)
+ TODO: check
+CVE-2009-2008 (Multiple SQL injection vulnerabilities in Dokeos 1.8.5, and
possibly ...)
+ TODO: check
+CVE-2009-2007 (Multiple directory traversal vulnerabilities in Dokeos 1.8.5,
and ...)
+ TODO: check
+CVE-2009-2006 (Multiple cross-site scripting (XSS) vulnerabilities in Dokeos
1.8.5, ...)
+ TODO: check
+CVE-2009-2005 (Cross-site request forgery (CSRF) vulnerability in Dokeos 1.8.5,
and ...)
+ TODO: check
+CVE-2009-2004 (Multiple SQL injection vulnerabilities in
main/mySpace/myStudents.php ...)
+ TODO: check
+CVE-2009-2003 (Ascad Networks Password Protector SD 1.3.1 allows remote
attackers to ...)
+ TODO: check
+CVE-2009-2002
+ RESERVED
+CVE-2009-2001
+ RESERVED
+CVE-2009-2000
+ RESERVED
+CVE-2009-1999
+ RESERVED
+CVE-2009-1998
+ RESERVED
+CVE-2009-1997
+ RESERVED
+CVE-2009-1996
+ RESERVED
+CVE-2009-1995
+ RESERVED
+CVE-2009-1994
+ RESERVED
+CVE-2009-1993
+ RESERVED
+CVE-2009-1992
+ RESERVED
+CVE-2009-1991
+ RESERVED
+CVE-2009-1990
+ RESERVED
+CVE-2009-1989
+ RESERVED
+CVE-2009-1988
+ RESERVED
+CVE-2009-1987
+ RESERVED
+CVE-2009-1986
+ RESERVED
+CVE-2009-1985
+ RESERVED
+CVE-2009-1984
+ RESERVED
+CVE-2009-1983
+ RESERVED
+CVE-2009-1982
+ RESERVED
+CVE-2009-1981
+ RESERVED
+CVE-2009-1980
+ RESERVED
+CVE-2009-1979
+ RESERVED
+CVE-2009-1978
+ RESERVED
+CVE-2009-1977
+ RESERVED
+CVE-2009-1976
+ RESERVED
+CVE-2009-1975
+ RESERVED
+CVE-2009-1974
+ RESERVED
+CVE-2009-1973
+ RESERVED
+CVE-2009-1972
+ RESERVED
+CVE-2009-1971
+ RESERVED
+CVE-2009-1970
+ RESERVED
+CVE-2009-1969
+ RESERVED
+CVE-2009-1968
+ RESERVED
+CVE-2009-1967
+ RESERVED
+CVE-2009-1966
+ RESERVED
+CVE-2009-1965
+ RESERVED
+CVE-2009-1964
+ RESERVED
+CVE-2009-1963
+ RESERVED
+CVE-2008-6832 (Cross-site request forgery (CSRF) vulnerability in Atlassian
JIRA ...)
+ TODO: check
+CVE-2008-6831 (Multiple cross-site scripting (XSS) vulnerabilities in Atlassian
JIRA ...)
+ TODO: check
+CVE-2008-6830 (The disconnection feature in Citrix Web Interface 5.0 and 5.0.1
for ...)
+ TODO: check
+CVE-2008-6829 (VicFTPS 5.0 allows remote attackers to cause a denial of service
...)
+ TODO: check
+CVE-2008-6828 (Symantec Altiris Deployment Solution 6.x before 6.9.355 SP1
stores the ...)
+ TODO: check
+CVE-2008-6827 (The ListView control in the Client GUI (AClient.exe) in Symantec
...)
+ TODO: check
+CVE-2008-6826 (dhtml.pl in MHF Media Pro allows remote attackers to execute
arbitrary ...)
+ TODO: check
CVE-2009-XXXX [predictable random number generator used in web browsers]
- webkit <unfixed> (low; bug #532514)
- xulrunner <unfixed> (low; bug #532516)
@@ -17,6 +129,7 @@
CVE-2009-1956 (Off-by-one error in the apr_brigade_vprintf function in Apache
...)
- apr-util 1.3.7+dfsg-1 (low)
CVE-2009-1955 (The expat XML parser in the apr_xml_* interface in xml/apr_xml.c
in ...)
+ {DSA-1812-1}
- apr-util 1.3.7+dfsg-1 (medium)
CVE-2009-1954 (Unspecified vulnerability in portmapper (aka portmap) in IBM AIX
5.3 ...)
NOT-FOR-US: IBM AIX
@@ -1487,16 +1600,16 @@
- pidgin 2.5.6-1
- gaim <removed>
[lenny] - gaim <not-affected> (Only a transitional package)
-CVE-2009-1375 (The PurpleCircBuffer implementation in Pidgin before 2.5.6 does
not ...)
+CVE-2009-1375 (The PurpleCircBuffer implementation in Pidgin (formerly Gaim)
before ...)
{DSA-1805-1}
- pidgin 2.5.6-1
- gaim <removed>
[lenny] - gaim <not-affected> (Only a transitional package)
-CVE-2009-1374 (Buffer overflow in the decrypt_out function in Pidgin before
2.5.6 ...)
+CVE-2009-1374 (Buffer overflow in the decrypt_out function in Pidgin (formerly
Gaim) ...)
- pidgin 2.5.6-1
[lenny] - pidgin <not-affected> (QQ support not yet present)
- gaim <not-affected> (QQ support not yet present)
-CVE-2009-1373 (Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin
before ...)
+CVE-2009-1373 (Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin
...)
{DSA-1805-1}
- pidgin 2.5.6-1
- gaim <removed>