thr3ads.net - Secure testing commits - [Secure-testing-commits] r14718

If this information is useful, please help other people find it:
Share via:
Joey Hess
2010-May-20 21:15 UTC
[Secure-testing-commits] r14718 - data/CVE

Author: joeyh
Date: 2010-05-20 21:15:04 +0000 (Thu, 20 May 2010)
New Revision: 14718

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-05-20 20:01:10 UTC (rev 14717)
+++ data/CVE/list	2010-05-20 21:15:04 UTC (rev 14718)
@@ -1,3 +1,59 @@
+CVE-2010-1985 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
+	TODO: check
+CVE-2010-1984 (Cross-site scripting (XSS) vulnerability in the Taxonomy
Breadcrumb ...)
+	TODO: check
+CVE-2010-1983 (Directory traversal vulnerability in the redTWITTER
(com_redtwitter) ...)
+	TODO: check
+CVE-2010-1982 (Directory traversal vulnerability in the JA Voice (com_javoice)
...)
+	TODO: check
+CVE-2010-1981 (Directory traversal vulnerability in the Fabrik (com_fabrik)
component ...)
+	TODO: check
+CVE-2010-1980 (Directory traversal vulnerability in joomlaflickr.php in the
Joomla ...)
+	TODO: check
+CVE-2010-1979 (Directory traversal vulnerability in the Affiliate Datafeeds
...)
+	TODO: check
+CVE-2010-1978 (PHP remote file inclusion vulnerability in default_theme.php in
...)
+	TODO: check
+CVE-2010-1977 (Directory traversal vulnerability in the J!WHMCS Integrator ...)
+	TODO: check
+CVE-2010-1976 (Cross-site scripting (XSS) vulnerability in the Taxonomy
Breadcrumb ...)
+	TODO: check
+CVE-2010-1975 (PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before
8.1.21, ...)
+	TODO: check
+CVE-2010-1974 (Multiple unspecified vulnerabilities in the Safe (aka Safe.pm)
module ...)
+	TODO: check
+CVE-2010-1973
+	RESERVED
+CVE-2010-1972
+	RESERVED
+CVE-2010-1971
+	RESERVED
+CVE-2010-1970
+	RESERVED
+CVE-2010-1969
+	RESERVED
+CVE-2010-1968
+	RESERVED
+CVE-2010-1967
+	RESERVED
+CVE-2010-1966
+	RESERVED
+CVE-2010-1965
+	RESERVED
+CVE-2010-1964
+	RESERVED
+CVE-2010-1963
+	RESERVED
+CVE-2010-1962
+	RESERVED
+CVE-2010-1961
+	RESERVED
+CVE-2010-1960
+	RESERVED
+CVE-2010-1959
+	RESERVED
+CVE-2010-1958
+	RESERVED
 CVE-2010-1957 (Directory traversal vulnerability in the Love Factory ...)
 	TODO: check
 CVE-2010-1956 (Directory traversal vulnerability in the Gadget Factory ...)
@@ -747,14 +803,14 @@
 	RESERVED
 CVE-2010-1631
 	RESERVED
-CVE-2010-1630
-	RESERVED
-CVE-2010-1629
-	RESERVED
-CVE-2010-1628
-	RESERVED
-CVE-2010-1627
-	RESERVED
+CVE-2010-1630 (Unspecified vulnerability in posting.php in phpBB before 3.0.5
has ...)
+	TODO: check
+CVE-2010-1629 (Cross-site scripting (XSS) vulnerability in Phorum before 5.2.15
...)
+	TODO: check
+CVE-2010-1628 (Ghostscript 8.64, 8.70, and possibly other versions allows ...)
+	TODO: check
+CVE-2010-1627 (feed.php in phpBB 3.0.7 before 3.0.7-PL1 does not properly check
...)
+	TODO: check
 CVE-2010-1626
 	RESERVED
 	- mysql-dfsg-5.1 <unfixed>
@@ -1295,12 +1351,12 @@
 	[lenny] - gnustep-base <not-affected> (Not installed setuid root)
 	NOTE: http://thread.gmane.org/gmane.comp.lib.gnustep.bugs/12336
 CVE-2010-1456
-	RESERVED
+	REJECTED
 CVE-2010-1455 (The DOCSIS dissector in Wireshark 0.9.6 through 1.0.12 and 1.2.0
...)
 	- wireshark <unfixed> (unimportant)
 	NOTE: Not triggerable remotely
-CVE-2010-1454
-	RESERVED
+CVE-2010-1454 (com.springsource.tcserver.serviceability.rmi.JmxSocketListener
in ...)
+	TODO: check
 CVE-2010-1453 (Cross-site scripting (XSS) vulnerability in the Login form in
Piwik ...)
 	- piwik <itp> (bug #506933)
 CVE-2010-1452
@@ -1315,8 +1371,8 @@
 	RESERVED
 	- lxr-cvs <unfixed>
 	TODO: prod maintainer (and find out why we have lxr and lxr-cvs)
-CVE-2010-1447
-	RESERVED
+CVE-2010-1447 (PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before
8.1.21, ...)
+	TODO: check
 CVE-2010-1446 [kgbd issue]
 	RESERVED
 	- linux-2.6 2.6.32-12 (unimportant)
@@ -1592,8 +1648,7 @@
 	RESERVED
 CVE-2010-1322
 	RESERVED
-CVE-2010-1321 [MITKRB5-SA-2010-005]
-	RESERVED
+CVE-2010-1321 (The kg_accept_krb5 function in krb5/accept_sec_context.c in the
...)
 	- krb5 1.8.1+dfsg-3 (low; bug #582261)
 	NOTE: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-005.txt
 CVE-2010-1320 (Double free vulnerability in do_tgs_req.c in the Key
Distribution ...)
@@ -2002,11 +2057,9 @@
 	RESERVED
 CVE-2010-1171
 	RESERVED
-CVE-2010-1170 [PL/tcl issue]
-	RESERVED
+CVE-2010-1170 (The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0
before ...)
 	- postgresql-8.3 <unfixed>
-CVE-2010-1169 [PL/perl issue]
-	RESERVED
+CVE-2010-1169 (PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before
8.1.21, ...)
 	- postgresql-8.3 <unfixed>
 CVE-2010-1168
 	RESERVED
@@ -7983,7 +8036,7 @@
 	RESERVED
 CVE-2009-3679
 	RESERVED
-CVE-2009-3678 (Microsoft Windows 7, when running on 64-bit platforms, allows
local ...)
+CVE-2009-3678 (cdd.dll in the Canonical Display Driver (CDD) in Microsoft
Windows ...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2009-3677 (The Internet Authentication Service (IAS) in Microsoft Windows
2000 ...)
 	NOT-FOR-US: Microsoft Internet Authentication Service
Secure testing commits - May 2010 - r14718 - data/CVE

[Secure-testing-commits] r14718 - data/CVE
