Secure testing commits - Jul 2010 - r14952 - data/CVE

Author: geissert
Date: 2010-07-02 19:57:48 +0000 (Fri, 02 Jul 2010)
New Revision: 14952

Modified:
   data/CVE/list
Log:
some issues CVEified
not-so-new issues: znc, moin


Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-07-02 17:51:39 UTC (rev 14951)
+++ data/CVE/list	2010-07-02 19:57:48 UTC (rev 14952)
@@ -1,8 +1,3 @@
-CVE-2010-XXXX [roundup XSS]
-	- roundup <undetermined>
-	NOTE: http://bugs.gentoo.org/show_bug.cgi?id=326395
-	NOTE:
http://roundup.svn.sourceforge.net/viewvc/roundup?view=revision&revision=4486
-	TODO: check
 CVE-2010-2598 [crasher: ojpeg]
 	RESERVED
 	- tiff <unfixed> (unimportant)
@@ -129,13 +124,6 @@
 	NOT-FOR-US: P8 Content Search Engine
 CVE-2010-2517 (Multiple unspecified vulnerabilities in IBM Rational ClearQuest
before ...)
 	NOT-FOR-US: ClearQuest
-CVE-2010-XXXX [murmur DoS via malformed client query]
-	- qt4-x11 <undetermined> (low; bug #587713)
-	- sqlite3 <undetermined>
-	NOTE: id requested - unclear whether is qt''s or sqlite''s
fault
-	TODO: check
-	NOTE: http://aluigi.altervista.org/adv/mumbleed-adv.txt
-	NOTE: BID 41251, SA40385
 CVE-2010-XXXX [resource consumption in QSslSocketBackendPrivate::transmit()]
 	- qt4-x11 <unfixed> (bug #587711)
 	NOTE: id requested
@@ -219,22 +207,35 @@
 	RESERVED
 CVE-2010-2492
 	RESERVED
-CVE-2010-2491
+CVE-2010-2491 [roundup XSS]
 	RESERVED
-CVE-2010-2490
+	- roundup <undetermined>
+	NOTE: http://bugs.gentoo.org/show_bug.cgi?id=326395
+	NOTE:
http://roundup.svn.sourceforge.net/viewvc/roundup?view=revision&revision=4486
+	TODO: check
+CVE-2010-2490 [murmur DoS via malformed client query]
 	RESERVED
-CVE-2010-2489
+	- qt4-x11 <undetermined> (low; bug #587713)
+	- sqlite3 <undetermined>
+	NOTE: unclear whether is qt''s or sqlite''s fault
+	TODO: check
+CVE-2010-2489 [ruby buffer overflow on Windows]
 	RESERVED
-CVE-2010-2488
+	- ruby1.8 <not-affected> (Windows-specific)
+	- ruby1.9.1 <not-affected> (Windows-specific)
+CVE-2010-2488 [znc null pointer deref]
 	RESERVED
-CVE-2010-2487
+	- znc 0.090-2 (bug #584929)
+CVE-2010-2487 [moin XSS]
 	RESERVED
+	- moin <unfixed> (bug #584809)
 CVE-2010-2486
 	RESERVED
 CVE-2010-2485
 	RESERVED
-CVE-2010-2484
+CVE-2010-2484 [strrchr() interruption]
 	RESERVED
+	- php5 <unfixed> (unimportant)
 CVE-2010-2483 [OOB read in TIFFRGBAImageGet()]
 	RESERVED
 	- tiff <unfixed> (unimportant)