Author: joeyh
Date: 2009-12-08 21:14:25 +0000 (Tue, 08 Dec 2009)
New Revision: 13494
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2009-12-08 20:18:06 UTC (rev 13493)
+++ data/CVE/list 2009-12-08 21:14:25 UTC (rev 13494)
@@ -1,3 +1,25 @@
+CVE-2009-4224 (Multiple PHP remote file inclusion vulnerabilities in SweetRice
0.5.4, ...)
+ TODO: check
+CVE-2009-4223 (PHP remote file inclusion vulnerability in adm/krgourl.php in
KR-Web ...)
+ TODO: check
+CVE-2009-4222 (phpBazar 2.1.1fix and earlier does not require administrative
...)
+ TODO: check
+CVE-2009-4221 (SQL injection vulnerability in classified.php in phpBazar
2.1.1fix and ...)
+ TODO: check
+CVE-2009-4220 (PHP remote file inclusion vulnerability in ...)
+ TODO: check
+CVE-2009-4219 (Stack-based buffer overflow in the MYACTIVEX.MyActiveXCtrl.1
ActiveX ...)
+ TODO: check
+CVE-2009-4218 (Multiple SQL injection vulnerabilities in files/login.asp in
JiRo''s ...)
+ TODO: check
+CVE-2009-4217 (SQL injection vulnerability in the Itamar Elharar MusicGallery
...)
+ TODO: check
+CVE-2009-4216 (Directory traversal vulnerability in funzioni/lib/menulast.php
in ...)
+ TODO: check
+CVE-2009-4215 (Panda Global Protection 2010, Internet Security 2010, and
Antivirus ...)
+ TODO: check
+CVE-2009-4214 (Cross-site scripting (XSS) vulnerability in the strip_tags
function in ...)
+ TODO: check
CVE-2009-4213
RESERVED
CVE-2009-4212
@@ -1690,6 +1712,7 @@
[lenny] - puppet <no-dsa> (minor issue)
CVE-2009-3563 [ntpd DoS]
RESERVED
+ {DSA-1948-1}
- ntp <unfixed> (medium; bug #560074)
CVE-2009-3562 (Cross-site scripting (XSS) vulnerability in Xerver HTTP Server
4.32 ...)
NOT-FOR-US: Xerver HTTP Server