Author: gilbert-guest Date: 2010-04-05 02:11:55 +0000 (Mon, 05 Apr 2010) New Revision: 14402 Modified: data/CVE/list Log: new webkit and dovecot issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2010-04-05 02:00:51 UTC (rev 14401) +++ data/CVE/list 2010-04-05 02:11:55 UTC (rev 14402) @@ -257,7 +257,11 @@ CVE-2010-1133 (Multiple SQL injection vulnerabilities in TikiWiki CMS/Groupware 4.x ...) TODO: check CVE-2010-1131 (JavaScriptCore.dll, as used in Apple Safari 4.0.5 on Windows XP SP3, ...) - TODO: check + - webkit <undetermined> (unimportant) + - kdelibs <undetermined> (unimportant) + - kde4libs <undetermined> (unimportant) + - qt4-x11 <undetermined> (unimportant) + NOTE: browser crashes are not considered security-relevant CVE-2010-1130 (session.c in the session extension in PHP before 5.2.13, and 5.3.1, ...) TODO: check CVE-2010-1129 (The safe_mode implementation in PHP before 5.2.13 does not properly ...) @@ -2037,6 +2041,8 @@ CVE-2010-0536 (Apple QuickTime before 7.6.6 on Windows allows remote attackers to ...) NOT-FOR-US: Apple QuickTime CVE-2010-0535 (Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is ...) + - dovecot <undetermined> + NOTE: is this CVE-2009-3897? TODO: check CVE-2010-0534 (Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the ...) NOT-FOR-US: Apple Wiki Server