thr3ads.net - Secure testing commits - [Secure-testing-commits] r13676

If this information is useful, please help other people find it:
Share via:
Joey Hess
2009-Dec-29 21:14 UTC
[Secure-testing-commits] r13676 - data/CVE

Author: joeyh
Date: 2009-12-29 21:14:20 +0000 (Tue, 29 Dec 2009)
New Revision: 13676

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2009-12-29 18:17:39 UTC (rev 13675)
+++ data/CVE/list	2009-12-29 21:14:20 UTC (rev 13676)
@@ -1,3 +1,43 @@
+CVE-2009-4443 (Unspecified vulnerability in the psearch (aka persistent search)
...)
+	TODO: check
+CVE-2009-4442 (Directory Proxy Server (DPS) in Sun Java System Directory Server
...)
+	TODO: check
+CVE-2009-4441 (Directory Proxy Server (DPS) in Sun Java System Directory Server
...)
+	TODO: check
+CVE-2009-4440 (Directory Proxy Server (DPS) in Sun Java System Directory Server
...)
+	TODO: check
+CVE-2009-4439 (Unspecified vulnerability in the Query Compiler, Rewrite, and
...)
+	TODO: check
+CVE-2009-4438 (The Query Compiler, Rewrite, and Optimizer component in IBM DB2
9.1 ...)
+	TODO: check
+CVE-2009-4437 (Multiple SQL injection vulnerabilities in Active Auction House
3.6 ...)
+	TODO: check
+CVE-2009-4436 (Multiple SQL injection vulnerabilities in Active Web Softwares
...)
+	TODO: check
+CVE-2009-4435 (Multiple directory traversal vulnerabilities in F3Site 2009
allow ...)
+	TODO: check
+CVE-2009-4434 (Directory traversal vulnerability in index.php in IDevSpot
iSupport ...)
+	TODO: check
+CVE-2009-4433 (Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot
...)
+	TODO: check
+CVE-2009-4432 (SQL injection vulnerability in index.php in CodeMight VideoCMS
3.1 ...)
+	TODO: check
+CVE-2009-4431 (PHP remote file inclusion vulnerability in cal_popup.php in the
...)
+	TODO: check
+CVE-2009-4430 (SQL injection vulnerability in index.php in VirtueMart 1.0
allows ...)
+	TODO: check
+CVE-2009-4429 (Cross-site scripting (XSS) vulnerability in the Sections module
5.x ...)
+	TODO: check
+CVE-2009-4428 (SQL injection vulnerability in the JoomPortfolio
(com_joomportfolio) ...)
+	TODO: check
+CVE-2009-4427 (Directory traversal vulnerability in cmd.php in phpLDAPadmin
1.1.0.5 ...)
+	TODO: check
+CVE-2009-4426 (Multiple directory traversal vulnerabilities in Ignition 1.2,
when ...)
+	TODO: check
+CVE-2009-4425 (Cross-site scripting (XSS) vulnerability in index.php in
iDevCart 1.09 ...)
+	TODO: check
+CVE-2009-4424 (SQL injection vulnerability in results.php in the Pyrmont plugin
2 for ...)
+	TODO: check
 CVE-2009-XXXX [ampache DoS and CSRF]
 	- ampache 3.5.3-1 (low)
 	[lenny] - ampache <no-dsa> (minor issue)
@@ -1229,8 +1269,7 @@
 	RESERVED
 CVE-2009-4008
 	RESERVED
-CVE-2009-4007 [openttd DoS]
-	RESERVED
+CVE-2009-4007 (Unspecified vulnerability in the NormaliseTrainConsist function
in ...)
 	- openttd 0.7.5-1
 	[lenny] - openttd <no-dsa> (Contrib not supported)
 	TODO: next point update [lenny] - openttd 0.6.2-1+lenny1
@@ -1908,6 +1947,7 @@
 CVE-2009-3737
 	RESERVED
 CVE-2009-3736 (ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b,
...)
+	{DSA-1958-1}
 	- libtool 2.2.6b-1 (low; bug #559797)
 	- arts <unfixed> (low; bug #559798)
 	[lenny] - arts <no-dsa> (Minor issue)
@@ -8211,10 +8251,10 @@
 	NOTE: cve id requested, but seems to be in limbo; see bug report for
discussion
 	[etch] - cacti 0.8.6i-3.3
 	NOTE: Fixed in DSA-1569-1
-CVE-2009-1798
-	RESERVED
-CVE-2009-1797
-	RESERVED
+CVE-2009-1798 (Multiple cross-site scripting (XSS) vulnerabilities on the
Network ...)
+	TODO: check
+CVE-2009-1797 (Multiple cross-site request forgery (CSRF) vulnerabilities on
the ...)
+	TODO: check
 CVE-2009-1796 (Cross-site scripting (XSS) vulnerability in Sun Java System
Portal ...)
 	NOT-FOR-US: Sun Java System Portal Server
 CVE-2009-1795
Secure testing commits - Dec 2009 - r13676 - data/CVE

[Secure-testing-commits] r13676 - data/CVE
