thr3ads.net - Secure testing commits - [Secure-testing-commits] r13830

If this information is useful, please help other people find it:
Share via:

Raphael Geissert

2010-Jan-15 21:38 UTC

[Secure-testing-commits] r13830 - data/CVE

Author: geissert
Date: 2010-01-15 21:38:35 +0000 (Fri, 15 Jan 2010)
New Revision: 13830

Modified:
   data/CVE/list
Log:
2 dokuwiki issues, 1 gnome-screensaver, 1 NFU


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-01-15 21:14:19 UTC (rev 13829)
+++ data/CVE/list	2010-01-15 21:38:35 UTC (rev 13830)
@@ -1,3 +1,17 @@
+CVE-2010-XXXX [dokuwiki CSRF]
+	- dokuwiki <unfixed>
+	TODO: check
+	NOTE: http://secunia.com/advisories/38205/
+CVE-2010-XXXX [dokuwiki multiple issues]
+	- dokuwiki <unfixed> (medium; bug #565406)
+	NOTE: http://bugs.splitbrain.org/index.php?do=details&task_id=1847
+	NOTE: issue being exploited
+	TODO: request CVE
+CVE-2009-XXXX [gnome screensaver not locking second screen]
+	- gnome-screensaver <unfixed> (low)
+	NOTE:
http://git.gnome.org/browse/gnome-screensaver/commit/?id=2f597ea9f1f363277fd4dfc109fa41bbc6225aca
+	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=593616
+	TODO: file bug, check affected versions
 CVE-2010-0350 (Directory traversal vulnerability in the Photo Book
(goof_fotoboek) ...)
 	TODO: check
 CVE-2010-0349 (Cross-site scripting (XSS) vulnerability in C3 Corp.
WebCalenderC3 ...)
@@ -1347,7 +1361,7 @@
 CVE-2010-0019
 	RESERVED
 CVE-2010-0018 (Integer overflow in the Embedded OpenType (EOT) Font Engine in
...)
-	TODO: check
+	NOT-FOR-US: Microsoft Windows
 CVE-2010-0017
 	RESERVED
 CVE-2010-0016

Secure testing commits - Jan 2010 - r13830 - data/CVE

[Secure-testing-commits] r13830 - data/CVE