Author: joeyh
Date: 2010-10-01 21:16:58 +0000 (Fri, 01 Oct 2010)
New Revision: 15410
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-10-01 16:45:49 UTC (rev 15409)
+++ data/CVE/list 2010-10-01 21:16:58 UTC (rev 15410)
@@ -1,3 +1,83 @@
+CVE-2010-3728
+ RESERVED
+CVE-2010-3727
+ RESERVED
+CVE-2010-3726
+ RESERVED
+CVE-2010-3725
+ RESERVED
+CVE-2010-3724
+ RESERVED
+CVE-2010-3723
+ RESERVED
+CVE-2010-3722
+ RESERVED
+CVE-2010-3721
+ RESERVED
+CVE-2010-3720
+ RESERVED
+CVE-2010-3719
+ RESERVED
+CVE-2010-3718
+ RESERVED
+CVE-2010-3717
+ RESERVED
+CVE-2010-3716
+ RESERVED
+CVE-2010-3715
+ RESERVED
+CVE-2010-3714
+ RESERVED
+CVE-2010-3713
+ RESERVED
+CVE-2010-3712
+ RESERVED
+CVE-2010-3711
+ RESERVED
+CVE-2010-3710
+ RESERVED
+CVE-2010-3709
+ RESERVED
+CVE-2010-3708
+ RESERVED
+CVE-2010-3707
+ RESERVED
+CVE-2010-3706
+ RESERVED
+CVE-2010-3705
+ RESERVED
+CVE-2010-3704
+ RESERVED
+CVE-2010-3703
+ RESERVED
+CVE-2010-3702
+ RESERVED
+CVE-2010-3701
+ RESERVED
+CVE-2010-3700
+ RESERVED
+CVE-2010-3699
+ RESERVED
+CVE-2010-3698
+ RESERVED
+CVE-2010-3697
+ RESERVED
+CVE-2010-3696
+ RESERVED
+CVE-2010-3695
+ RESERVED
+CVE-2010-3694
+ RESERVED
+CVE-2010-3693
+ RESERVED
+CVE-2010-3692
+ RESERVED
+CVE-2010-3691
+ RESERVED
+CVE-2010-3690
+ RESERVED
+CVE-2010-3689
+ RESERVED
CVE-2010-3687 (Unspecified vulnerability in the powermail extension 1.5.3 and
earlier ...)
TODO: check
CVE-2010-3686 (The OpenID module in Drupal 6.x before 6.18, and the OpenID
module 5.x ...)
@@ -621,8 +701,7 @@
- pam <unfixed>
TODO: check
NOTE: 20100924164823.GA21584 at openwall.com
-CVE-2010-3434 [clamav pdf]
- RESERVED
+CVE-2010-3434 (Buffer overflow in the find_stream_bounds function in pdf.c in
...)
- clamav 0.96.3+dfsg-1
[lenny] - clamav <end-of-life>
NOTE: libclamav/pdf.c: Add missing boundscheck to pdf code (bb #2226)
@@ -641,8 +720,7 @@
- pam <unfixed>
TODO: check
NOTE: 20100924164823.GA21584 at openwall.com
-CVE-2010-3429
- RESERVED
+CVE-2010-3429 (flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in
...)
- ffmpeg <unfixed> (bug #598590)
- ffmpeg-debian <removed>
NOTE: http://www.ocert.org/advisories/ocert-2010-004.html
@@ -927,7 +1005,7 @@
RESERVED
CVE-2010-3333
RESERVED
-CVE-2010-3332 (Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.5, 3.5
SP1, ...)
+CVE-2010-3332 (Microsoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1,
...)
NOT-FOR-US: Microsoft .NET Framework
CVE-2010-3331
RESERVED
@@ -1018,15 +1096,12 @@
- rails <unfixed>
TODO: check
NOTE: http://usenix.org/events/woot10/tech/full_papers/Rizzo.pdf
-CVE-2010-3298 [net/usb/hso.c: reading uninitialized memory]
- RESERVED
+CVE-2010-3298 (The hso_get_count function in drivers/net/usb/hso.c in the Linux
...)
- linux-2.6 2.6.32-24
[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.27)
-CVE-2010-3297 [net/eql.c: reading uninitialized stack memory]
- RESERVED
+CVE-2010-3297 (The eql_g_master_cfg function in drivers/net/eql.c in the Linux
kernel ...)
- linux-2.6 2.6.32-24
-CVE-2010-3296 [cxgb3/cxgb3_main.c reading uninitialized stack memory]
- RESERVED
+CVE-2010-3296 (The cxgb_extension_ioctl function in
drivers/net/cxgb3/cxgb3_main.c in ...)
- linux-2.6 2.6.32-24
CVE-2010-3295 [drivers/net/tulip/de4x5.c: reading uninitialized stack memory]
RESERVED
@@ -1623,8 +1698,8 @@
CVE-2010-3080 (Double free vulnerability in the snd_seq_oss_open function in
...)
{DSA-2110-1}
- linux-2.6 <unfixed>
-CVE-2010-3079
- RESERVED
+CVE-2010-3079 (kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when
...)
+ TODO: check
CVE-2010-3078 (The xfs_ioc_fsgetxattr function in fs/xfs/linux-2.6/xfs_ioctl.c
in the ...)
{DSA-2110-1}
- linux-2.6 2.6.32-24
@@ -1939,8 +2014,7 @@
CVE-2010-2944 (The authenticate function in LDAPUserFolder/LDAPUserFolder.py in
...)
{DSA-2096-1}
- zope-ldapuserfolder <removed> (high; bug #593466)
-CVE-2010-2943 [xfs infoleak]
- RESERVED
+CVE-2010-2943 (The xfs implementation in the Linux kernel before 2.6.35 does
not look ...)
- linux-2.6 <unfixed>
CVE-2010-2942 (The actions implementation in the network queueing functionality
in ...)
- linux-2.6 <unfixed>
@@ -3055,12 +3129,10 @@
CVE-2010-2539 (Buffer overflow in the msTmpFile function in maputil.c in
mapserv in ...)
{DSA-2079-1}
- mapserver 5.6.4-1
-CVE-2010-2538 [btrfs issue]
- RESERVED
+CVE-2010-2538 (Integer overflow in the btrfs_ioctl_clone function in
fs/btrfs/ioctl.c ...)
- linux-2.6 <unfixed>
[lenny] - linux-2.6 <not-affected> (brtfs introduced in 2.6.29)
-CVE-2010-2537 [btrfs issue]
- RESERVED
+CVE-2010-2537 (The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux
kernel ...)
- linux-2.6 2.6.32-19
[lenny] - linux-2.6 <not-affected> (brtfs introduced in 2.6.29)
CVE-2010-2536 (Multiple cross-site scripting (XSS) vulnerabilities in rekonq
0.5 and ...)