Moritz Muehlenhoff
2010-Jun-07 16:20 UTC
[Secure-testing-commits] r14823 - in data: CVE DSA
Author: jmm-guest
Date: 2010-06-07 16:20:02 +0000 (Mon, 07 Jun 2010)
New Revision: 14823
Modified:
data/CVE/list
data/DSA/list
Log:
- new opie issue
- new ziproxy issue
- one zonecheck ID was rejected
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-06-07 13:24:03 UTC (rev 14822)
+++ data/CVE/list 2010-06-07 16:20:02 UTC (rev 14823)
@@ -262,8 +262,6 @@
RESERVED
CVE-2010-2052
RESERVED
- {DSA-2056-1}
- - zonecheck 2.1.1-1 (bug #583290)
CVE-2010-2051 (SQL injection vulnerability in article.php in Debliteck DBCart
allows ...)
NOT-FOR-US: Debliteck DBCart
CVE-2010-2050 (Directory traversal vulnerability in the Moron Solutions MS
Comment ...)
@@ -518,8 +516,8 @@
CVE-2010-1939 (Use-after-free vulnerability in Apple Safari 4.0.5 on Windows
allows ...)
TODO: check webkit, chromium, etc. once sufficient details are revealed
CVE-2010-1938 (Off-by-one error in the __opiereadrec function in readrec.c in
libopie ...)
- - opie <undetermined>
- TODO: check
+ - opie <unfixed> (bug filed)
+ [lenny] - opie <no-dsa> (Minor issue)
CVE-2010-1937
RESERVED
CVE-2010-1936 (Directory traversal vulnerability in scr/soustab.php in
openMairie ...)
@@ -1563,8 +1561,8 @@
CVE-2010-1514
RESERVED
CVE-2010-1513 (Multiple integer overflows in src/image.c in Ziproxy before
3.0.1 ...)
- - ziproxy <undetermined>
- TODO: check
+ - ziproxy <unfixed> (bug filed)
+ [lenny] - ziproxy <no-dsa> (Minor issue, obscure attack vector)
CVE-2010-1512 (Directory traversal vulnerability in aria2 before 1.9.3 allows
remote ...)
{DSA-2047-1}
- aria2 1.9.3-1
Modified: data/DSA/list
==================================================================---
data/DSA/list 2010-06-07 13:24:03 UTC (rev 14822)
+++ data/DSA/list 2010-06-07 16:20:02 UTC (rev 14823)
@@ -2,7 +2,7 @@
{CVE-2010-1626 CVE-2010-1848 CVE-2010-1849 CVE-2010-1850}
[lenny] - mysql-dfsg-5.0 5.0.51a-24+lenny4
[06 Jun 2010] DSA-2056-1 - cross-site scripting
- {CVE-2009-4882 CVE-2010-2052 CVE-2010-2155}
+ {CVE-2009-4882 CVE-2010-2155}
[lenny] - zonecheck 2.0.4-13lenny1
[05 Jun 2010] DSA-2055-1 openoffice.org - arbitrary code execution
{CVE-2010-0395}