Secure testing commits - Mar 2010 - r14336 - data/CVE

Author: gilbert-guest
Date: 2010-03-27 17:05:05 +0000 (Sat, 27 Mar 2010)
New Revision: 14336

Modified:
   data/CVE/list
Log:
kernel-sec sync

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-03-27 16:29:14 UTC (rev 14335)
+++ data/CVE/list	2010-03-27 17:05:05 UTC (rev 14336)
@@ -66,18 +66,25 @@
 	NOT-FOR-US: phpMySite
 CVE-2010-1089 (SQL injection vulnerability in vedi_faq.php in PHP Trouble
Ticket 2.2 ...)
 	NOT-FOR-US: PHP Trouble Ticket
-CVE-2010-1088
+CVE-2010-1088 [linux-2.6: nfs denial-of-service]
 	RESERVED
-CVE-2010-1087
+	- linux-2.6 2.6.32-10
+CVE-2010-1087 [linux-2.6: nfs oops when truncating a file]
 	RESERVED
-CVE-2010-1086
+	- linux-2.6 2.6.32-9 (low)
+CVE-2010-1086 [linux-2.6: ule decapsulation dos]
 	RESERVED
-CVE-2010-1085
+	- linux-2.6 2.6.32-10 (low)
+CVE-2010-1085 [linux-2.6: hda_intel divide by zero]
 	RESERVED
-CVE-2010-1084
+	- linux-2.6 2.6.32-9
+	[lenny] - linux-2.6 <not-affected> (affected call not present)
+CVE-2010-1084 [linux-2.6: bad memory access with sysfs]
 	RESERVED
-CVE-2010-1083
+	- linux-2.6 <unfixed>
+CVE-2010-1083 [linux-2.6: info leak via usb interface]
 	RESERVED
+	- linux-2.6 2.6.32-9
 CVE-2010-1082 (Multiple directory traversal vulnerabilities in OI.Blogs 1.0.0,
when ...)
 	NOT-FOR-US: OI.Blogs
 CVE-2010-1081 (Directory traversal vulnerability in the Community Polls ...)
@@ -1897,7 +1904,7 @@
 	- otrs2 2.4.7-1 (medium)
 	NOTE: http://otrs.org/advisory/OSA-2010-01-en/
 CVE-2010-0437 (The ip6_dst_lookup_tail function in net/ipv6/ip6_output.c in the
Linux ...)
-	TODO: check
+	- linux-2.6 2.6.27-1
 CVE-2010-0436
 	RESERVED
 CVE-2010-0435