Author: joeyh
Date: 2010-06-22 21:14:38 +0000 (Tue, 22 Jun 2010)
New Revision: 14895
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-06-22 15:46:37 UTC (rev 14894)
+++ data/CVE/list 2010-06-22 21:14:38 UTC (rev 14895)
@@ -1,3 +1,159 @@
+CVE-2010-2419
+ RESERVED
+CVE-2010-2418
+ RESERVED
+CVE-2010-2417
+ RESERVED
+CVE-2010-2416
+ RESERVED
+CVE-2010-2415
+ RESERVED
+CVE-2010-2414
+ RESERVED
+CVE-2010-2413
+ RESERVED
+CVE-2010-2412
+ RESERVED
+CVE-2010-2411
+ RESERVED
+CVE-2010-2410
+ RESERVED
+CVE-2010-2409
+ RESERVED
+CVE-2010-2408
+ RESERVED
+CVE-2010-2407
+ RESERVED
+CVE-2010-2406
+ RESERVED
+CVE-2010-2405
+ RESERVED
+CVE-2010-2404
+ RESERVED
+CVE-2010-2403
+ RESERVED
+CVE-2010-2402
+ RESERVED
+CVE-2010-2401
+ RESERVED
+CVE-2010-2400
+ RESERVED
+CVE-2010-2399
+ RESERVED
+CVE-2010-2398
+ RESERVED
+CVE-2010-2397
+ RESERVED
+CVE-2010-2396
+ RESERVED
+CVE-2010-2395
+ RESERVED
+CVE-2010-2394
+ RESERVED
+CVE-2010-2393
+ RESERVED
+CVE-2010-2392
+ RESERVED
+CVE-2010-2391
+ RESERVED
+CVE-2010-2390
+ RESERVED
+CVE-2010-2389
+ RESERVED
+CVE-2010-2388
+ RESERVED
+CVE-2010-2387
+ RESERVED
+CVE-2010-2386
+ RESERVED
+CVE-2010-2385
+ RESERVED
+CVE-2010-2384
+ RESERVED
+CVE-2010-2383
+ RESERVED
+CVE-2010-2382
+ RESERVED
+CVE-2010-2381
+ RESERVED
+CVE-2010-2380
+ RESERVED
+CVE-2010-2379
+ RESERVED
+CVE-2010-2378
+ RESERVED
+CVE-2010-2377
+ RESERVED
+CVE-2010-2376
+ RESERVED
+CVE-2010-2375
+ RESERVED
+CVE-2010-2374
+ RESERVED
+CVE-2010-2373
+ RESERVED
+CVE-2010-2372
+ RESERVED
+CVE-2010-2371
+ RESERVED
+CVE-2010-2370
+ RESERVED
+CVE-2010-2369
+ RESERVED
+CVE-2010-2368
+ RESERVED
+CVE-2010-2367
+ RESERVED
+CVE-2010-2366
+ RESERVED
+CVE-2010-2365
+ RESERVED
+CVE-2010-2364
+ RESERVED
+CVE-2010-2363
+ RESERVED
+CVE-2010-2362
+ RESERVED
+CVE-2010-2361
+ RESERVED
+CVE-2010-2360
+ RESERVED
+CVE-2010-2359 (SQL injection vulnerability in eWebQuiz.asp in
ActiveWebSoftwares.com ...)
+ TODO: check
+CVE-2010-2358 (PHP remote file inclusion vulnerability in ...)
+ TODO: check
+CVE-2010-2357 (SQL injection vulnerability in index.php in Eicra Realestate
Script ...)
+ TODO: check
+CVE-2010-2356 (Cross-site scripting (XSS) vulnerability in subscribe.php in
Pilot ...)
+ TODO: check
+CVE-2010-2355 (Cross-site scripting (XSS) vulnerability in error.php in Pilot
Group ...)
+ TODO: check
+CVE-2010-2354 (SQL injection vulnerability in subscribe.php in Pilot Group (PG)
eLMS ...)
+ TODO: check
+CVE-2010-2353 (The Node Reference module in Content Construction Kit (CCK)
module 6.x ...)
+ TODO: check
+CVE-2010-2352 (The Node Reference module in Content Construction Kit (CCK)
module 5.x ...)
+ TODO: check
+CVE-2010-2351 (Stack-based buffer overflow in the CIFS.NLM driver in Netware
SMB 1.0 ...)
+ TODO: check
+CVE-2010-2350 (Heap-based buffer overflow in the PNG decoder in Ziproxy 3.1.0
allows ...)
+ TODO: check
+CVE-2010-2349 (H264WebCam 3.7 allows remote attackers to cause a denial of
service ...)
+ TODO: check
+CVE-2010-2348 (Stack-based buffer overflow in Batch Audio Converter Lite
Edition ...)
+ TODO: check
+CVE-2010-2347 (The Telnet interface in the SAP J2EE Engine Core (SAP-JEECOR)
6.40 ...)
+ TODO: check
+CVE-2010-2346
+ RESERVED
+CVE-2010-2345 (Cross-site request forgery (CSRF) vulnerability in odCMS 1.06,
and ...)
+ TODO: check
+CVE-2010-2344 (Multiple cross-site scripting (XSS) vulnerabilities in odCMS
1.06, and ...)
+ TODO: check
+CVE-2010-2343 (Stack-based buffer overflow in D.R. Software Audio Converter
8.1, ...)
+ TODO: check
+CVE-2010-2342 (SQL injection vulnerability in onlinenotebookmanager.asp in
DMXReady ...)
+ TODO: check
CVE-2010-2341 (PHP remote file inclusion vulnerability in ...)
TODO: check
CVE-2010-2340 (SQL injection vulnerability in members.php in Arab Portal 2.2,
when ...)
@@ -884,7 +1040,8 @@
{DSA-2051-1}
- postgresql-8.4 8.4.4-1 (low)
- postgresql-8.3 <removed> (low)
-CVE-2010-1974 (Multiple unspecified vulnerabilities in the Safe (aka Safe.pm)
module ...)
+CVE-2010-1974
+ REJECTED
- perl 5.10.1-13 (bug #582978)
CVE-2010-1973
RESERVED
@@ -916,8 +1073,8 @@
NOT-FOR-US: HP OpenView Network Node Manager
CVE-2010-1959 (Unspecified vulnerability in HP TestDirector for Quality Center
9.2 ...)
NOT-FOR-US: HP TestDirector for Quality Center
-CVE-2010-1958
- RESERVED
+CVE-2010-1958 (Cross-site scripting (XSS) vulnerability in the FileField module
5.x ...)
+ TODO: check
CVE-2010-1957 (Directory traversal vulnerability in the Love Factory ...)
NOT-FOR-US: com_lovefactory component for joomla!
CVE-2010-1956 (Directory traversal vulnerability in the Gadget Factory ...)
@@ -1759,8 +1916,8 @@
NOTE: MSN support was disabled in 2.4.3-4lenny6
CVE-2010-1623
RESERVED
-CVE-2010-1622
- RESERVED
+CVE-2010-1622 (SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7
before ...)
+ TODO: check
CVE-2010-1621 (The mysql_uninstall_plugin function in sql/sql_plugin.cc in
MySQL ...)
- mysql-5.1 5.1.46-1
- mysql-dfsg-5.0 <not-affected> (Vulnerable code not present)
@@ -2320,7 +2477,7 @@
RESERVED
- lxr-cvs <unfixed>
TODO: prod maintainer (and find out why we have lxr and lxr-cvs)
-CVE-2010-1447 (PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before
8.1.21, ...)
+CVE-2010-1447 (The Safe (aka Safe.pm) module 2.26, and certain earlier
versions, for ...)
{DSA-2051-1}
- postgresql-8.4 8.4.4-1
- postgresql-8.3 <removed>
@@ -3103,8 +3260,8 @@
{DSA-2051-1}
- postgresql-8.4 8.4.4-1 (low)
- postgresql-8.3 <removed>
-CVE-2010-1168
- RESERVED
+CVE-2010-1168 (The Safe (aka Safe.pm) module before 2.25 for Perl allows ...)
+ TODO: check
CVE-2010-1166 (The fbComposite function in fbpict.c in the Render extension in
the X ...)
- xorg-server <not-affected> (Xorg in Lenny onwards uses Pixman, which
isn''t affected)
NOTE: https://rhn.redhat.com/errata/RHSA-2010-0382.html
@@ -5029,8 +5186,8 @@
NOTE: http://trac.webkit.org/changeset/58796
CVE-2010-0543 (ImageIO in Apple Mac OS X 10.5.8, and 10.6 before 10.6.2, allows
...)
TODO: check
-CVE-2010-0542
- RESERVED
+CVE-2010-0542 (The _WriteProlog function in texttops.c in texttops in the Text
Filter ...)
+ TODO: check
CVE-2010-0541 (Cross-site scripting (XSS) vulnerability in the WEBrick HTTP
server in ...)
TODO: check
CVE-2010-0540 (Cross-site request forgery (CSRF) vulnerability in the web
interface ...)