thr3ads.net - Secure testing commits - [Secure-testing-commits] r15364

If this information is useful, please help other people find it:
Share via:
Joey Hess
2010-Sep-22 21:15 UTC
[Secure-testing-commits] r15364 - data/CVE

Author: joeyh
Date: 2010-09-22 21:15:01 +0000 (Wed, 22 Sep 2010)
New Revision: 15364

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-09-21 21:14:36 UTC (rev 15363)
+++ data/CVE/list	2010-09-22 21:15:01 UTC (rev 15364)
@@ -1,3 +1,7 @@
+CVE-2010-3478
+	RESERVED
+CVE-2010-3477 (The tcf_act_police_dump function in net/sched/act_police.c in
the ...)
+	TODO: check
 CVE-2010-3600
 	RESERVED
 CVE-2010-3599
@@ -1186,16 +1190,13 @@
 CVE-2010-3095 [mailscanner incomplete fix for CVE-2008-5313]
 	RESERVED
 	- mailscanner <unfixed> (bug #596403)
-CVE-2010-3094 [drupal Actions cross site scripting]
-	RESERVED
+CVE-2010-3094 (Multiple cross-site scripting (XSS) vulnerabilities in Drupal
6.x ...)
 	{DSA-2113-1}
 	- drupal6 6.18-1 (low; bug #592716)
-CVE-2010-3093 [drupal Comment unpublishing bypass]
-	RESERVED
+CVE-2010-3093 (The comment module in Drupal 5.x before 5.23 and 6.x before 6.18
...)
 	{DSA-2113-1}
 	- drupal6 6.18-1 (low; bug #592716)
-CVE-2010-3092 [drupal File download access bypass]
-	RESERVED
+CVE-2010-3092 (The upload module in Drupal 5.x before 5.23 and 6.x before 6.18
does ...)
 	{DSA-2113-1}
 	- drupal6 6.18-1 (low; bug #592716)
 CVE-2010-3091 [drupal OpenID authentication bypass]
@@ -1230,13 +1231,12 @@
 	{DSA-2110-1}
 	- linux-2.6 2.6.32-23 (high)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-3081
-CVE-2010-3080
-	RESERVED
+CVE-2010-3080 (Double free vulnerability in the snd_seq_oss_open function in
...)
 	{DSA-2110-1}
+	TODO: check
 CVE-2010-3079
 	RESERVED
-CVE-2010-3078 [linux: xfs: XFS_IOC_FSGETXATTR ioctl memory leak]
-	RESERVED
+CVE-2010-3078 (The xfs_ioc_fsgetxattr function in fs/xfs/linux-2.6/xfs_ioctl.c
in the ...)
 	{DSA-2110-1}
 	- linux-2.6 <unfixed>
 	NOTE: see RH''s bugzilla
@@ -1271,8 +1271,8 @@
 	- samba 2:3.5.5~dfsg-1 (bug #596891)
 CVE-2010-3068
 	RESERVED
-CVE-2010-3067
-	RESERVED
+CVE-2010-3067 (Integer overflow in the do_io_submit function in fs/aio.c in the
Linux ...)
+	TODO: check
 CVE-2010-3066
 	RESERVED
 CVE-2010-3064 (Stack-based buffer overflow in the php_mysqlnd_auth_write
function in ...)
@@ -1560,8 +1560,7 @@
 CVE-2010-2943 [xfs infoleak]
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2010-2942 [linux-2.6 net sched infoleak]
-	RESERVED
+CVE-2010-2942 (The actions implementation in the network queueing functionality
in ...)
 	- linux-2.6 <unfixed>
 	[lenny] - linux-2.6 2.6.26-25
 CVE-2010-2941
@@ -4522,8 +4521,8 @@
 	RESERVED
 CVE-2010-1821
 	RESERVED
-CVE-2010-1820
-	RESERVED
+CVE-2010-1820 (Apple Filing Protocol (AFP) Server in Apple Mac OS X 10.6.x
through ...)
+	TODO: check
 CVE-2010-1819
 	RESERVED
 CVE-2010-1818 (The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple
...)
@@ -7780,8 +7779,8 @@
 	RESERVED
 CVE-2010-0782
 	RESERVED
-CVE-2010-0781
-	RESERVED
+CVE-2010-0781 (Unspecified vulnerability in the administrative console in IBM
...)
+	TODO: check
 CVE-2010-0780
 	RESERVED
 CVE-2010-0779 (Cross-site scripting (XSS) vulnerability in the Administration
Console ...)
Secure testing commits - Sep 2010 - r15364 - data/CVE

[Secure-testing-commits] r15364 - data/CVE
