thr3ads.net - Secure testing commits - [Secure-testing-commits] r15502

If this information is useful, please help other people find it:
Share via:
Joey Hess
2010-Oct-22 21:14 UTC
[Secure-testing-commits] r15502 - data/CVE

Author: joeyh
Date: 2010-10-22 21:14:30 +0000 (Fri, 22 Oct 2010)
New Revision: 15502

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-10-22 18:39:54 UTC (rev 15501)
+++ data/CVE/list	2010-10-22 21:14:30 UTC (rev 15502)
@@ -1,3 +1,59 @@
+CVE-2010-4050 (Opera before 10.63 allows remote attackers to cause a denial of
...)
+	TODO: check
+CVE-2010-4049 (Opera before 10.63 allows remote attackers to cause a denial of
...)
+	TODO: check
+CVE-2010-4048 (Opera before 10.63 allows user-assisted remote web servers to
cause a ...)
+	TODO: check
+CVE-2010-4047 (Opera before 10.63 does not properly select the security context
of ...)
+	TODO: check
+CVE-2010-4046 (Opera before 10.63 does not properly verify the origin of video
...)
+	TODO: check
+CVE-2010-4045 (Opera before 10.63 does not properly restrict web script in ...)
+	TODO: check
+CVE-2010-4044 (Opera before 10.63 does not ensure that the portion of a URL
shown in ...)
+	TODO: check
+CVE-2010-4043 (Opera before 10.63 does not prevent interpretation of a
cross-origin ...)
+	TODO: check
+CVE-2010-4042 (Google Chrome before 7.0.517.41 does not properly handle element
maps, ...)
+	TODO: check
+CVE-2010-4041 (The sandbox implementation in Google Chrome before 7.0.517.41 on
Linux ...)
+	TODO: check
+CVE-2010-4040 (Google Chrome before 7.0.517.41 does not properly handle
animated GIF ...)
+	TODO: check
+CVE-2010-4039 (Google Chrome before 7.0.517.41 on Linux does not properly set
the ...)
+	TODO: check
+CVE-2010-4038 (The Web Sockets implementation in Google Chrome before
7.0.517.41 does ...)
+	TODO: check
+CVE-2010-4037 (Unspecified vulnerability in Google Chrome before 7.0.517.41
allows ...)
+	TODO: check
+CVE-2010-4036 (Google Chrome before 7.0.517.41 does not properly handle the
unloading ...)
+	TODO: check
+CVE-2010-4035 (Google Chrome before 7.0.517.41 does not properly perform
autofill ...)
+	TODO: check
+CVE-2010-4034 (Google Chrome before 7.0.517.41 does not properly handle forms,
which ...)
+	TODO: check
+CVE-2010-4033 (Google Chrome before 7.0.517.41 does not properly implement the
...)
+	TODO: check
+CVE-2010-4032
+	RESERVED
+CVE-2010-4031
+	RESERVED
+CVE-2010-4030
+	RESERVED
+CVE-2010-4029
+	RESERVED
+CVE-2010-4028
+	RESERVED
+CVE-2010-4027
+	RESERVED
+CVE-2010-4026
+	RESERVED
+CVE-2010-4025
+	RESERVED
+CVE-2010-4024
+	RESERVED
+CVE-2010-4023
+	RESERVED
 CVE-2010-4022
 	RESERVED
 CVE-2010-4021
@@ -360,6 +416,7 @@
 	RESERVED
 CVE-2010-3856
 	RESERVED
+	{DSA-2122-1}
 CVE-2010-3855
 	RESERVED
 CVE-2010-3854
@@ -378,6 +435,7 @@
 	RESERVED
 CVE-2010-3847
 	RESERVED
+	{DSA-2122-1}
 	- eglibc <unfixed> (bug #600667)
 	- glibc <removed>
 	NOTE: http://sourceware.org/ml/libc-hacker/2010-10/msg00007.html
@@ -1812,8 +1870,8 @@
 	RESERVED
 	NOTE: assigned to linux-2.6, but claimed not a problem:
http://www.openwall.com/lists/oss-security/2010/09/15/2
 	NOTE: will probably get rejected
-CVE-2010-3291
-	RESERVED
+CVE-2010-3291 (Cross-site scripting (XSS) vulnerability in HP AssetCenter 5.0x
...)
+	TODO: check
 CVE-2010-3290
 	RESERVED
 CVE-2010-3289
@@ -2083,35 +2141,34 @@
 	RESERVED
 CVE-2010-3184
 	RESERVED
-CVE-2010-3183
-	RESERVED
+CVE-2010-3183 (The LookupGetterOrSetter function in Mozilla Firefox before
3.5.14 and ...)
 	[lenny] - xulrunner <not-affected> (bug in optimization added later)
-CVE-2010-3182
-	RESERVED
-CVE-2010-3181
-	RESERVED
-CVE-2010-3180
-	RESERVED
-CVE-2010-3179
-	RESERVED
-CVE-2010-3178
-	RESERVED
-CVE-2010-3177
-	RESERVED
-CVE-2010-3176
-	RESERVED
-CVE-2010-3175
-	RESERVED
-CVE-2010-3174
-	RESERVED
-CVE-2010-3173
-	RESERVED
+CVE-2010-3182 (A certain application-launch script in Mozilla Firefox before
3.5.14 ...)
+	TODO: check
+CVE-2010-3181 (Untrusted search path vulnerability in Mozilla Firefox before
3.5.14 ...)
+	TODO: check
+CVE-2010-3180 (Use-after-free vulnerability in the nsBarProp function in
Mozilla ...)
+	TODO: check
+CVE-2010-3179 (Stack-based buffer overflow in the text-rendering functionality
in ...)
+	TODO: check
+CVE-2010-3178 (Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11,
Thunderbird ...)
+	TODO: check
+CVE-2010-3177 (Multiple cross-site scripting (XSS) vulnerabilities in the
Gopher ...)
+	TODO: check
+CVE-2010-3176 (Multiple unspecified vulnerabilities in the browser engine in
Mozilla ...)
+	TODO: check
+CVE-2010-3175 (Multiple unspecified vulnerabilities in the browser engine in
Mozilla ...)
+	TODO: check
+CVE-2010-3174 (Unspecified vulnerability in the browser engine in Mozilla
Firefox ...)
+	TODO: check
+CVE-2010-3173 (The SSL implementation in Mozilla Firefox before 3.5.14 and
3.6.x ...)
+	TODO: check
 CVE-2010-3172
 	RESERVED
 CVE-2010-3171 (The Math.random function in the JavaScript implementation in
Mozilla ...)
 	TODO: check
-CVE-2010-3170
-	RESERVED
+CVE-2010-3170 (Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11,
Thunderbird ...)
+	TODO: check
 CVE-2010-3169 (Multiple unspecified vulnerabilities in the browser engine in
Mozilla ...)
 	{DSA-2106-1}
 	- xulrunner <removed>
Secure testing commits - Oct 2010 - r15502 - data/CVE

[Secure-testing-commits] r15502 - data/CVE
