thr3ads.net - Secure testing commits - [Secure-testing-commits] r15639

If this information is useful, please help other people find it:
Share via:
Joey Hess
2010-Dec-01 21:15 UTC
[Secure-testing-commits] r15639 - data/CVE

Author: joeyh
Date: 2010-12-01 21:15:49 +0000 (Wed, 01 Dec 2010)
New Revision: 15639

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-12-01 20:21:39 UTC (rev 15638)
+++ data/CVE/list	2010-12-01 21:15:49 UTC (rev 15639)
@@ -1,7 +1,49 @@
-CVE-2010-XXXX (a malicious Author-level user could gain further access to the
site)
-    NOTE: http://codex.wordpress.org/Version_3.0.2
-    NOTE: http://core.trac.wordpress.org/changeset/16625
-    - wordpress <unfixed> (bug #605603)
+CVE-2010-4354 (The remote-access IPSec VPN implementation on Cisco Adaptive
Security ...)
+	TODO: check
+CVE-2010-4353
+	RESERVED
+CVE-2010-4352
+	RESERVED
+CVE-2010-4351
+	RESERVED
+CVE-2010-4350
+	RESERVED
+CVE-2010-4349
+	RESERVED
+CVE-2010-4348
+	RESERVED
+CVE-2010-4347
+	RESERVED
+CVE-2010-4346
+	RESERVED
+CVE-2010-4345
+	RESERVED
+CVE-2010-4344
+	RESERVED
+CVE-2010-4343
+	RESERVED
+CVE-2010-4342
+	RESERVED
+CVE-2010-4341
+	RESERVED
+CVE-2010-4340
+	RESERVED
+CVE-2010-4339
+	RESERVED
+CVE-2010-4338
+	RESERVED
+CVE-2010-4337
+	RESERVED
+CVE-2010-4336
+	RESERVED
+CVE-2010-4335
+	RESERVED
+CVE-2010-4334
+	RESERVED
+CVE-2010-XXXX
+	NOTE: http://codex.wordpress.org/Version_3.0.2
+	NOTE: http://core.trac.wordpress.org/changeset/16625
+	- wordpress <unfixed> (bug #605603)
 CVE-2010-4333
 	RESERVED
 CVE-2010-4332
@@ -211,8 +253,8 @@
 	RESERVED
 CVE-2010-4249 (The wait_for_unix_gc function in net/unix/garbage.c in the Linux
...)
 	TODO: check
-CVE-2010-4248
-	RESERVED
+CVE-2010-4248 (Race condition in the __exit_signal function in kernel/exit.c in
the ...)
+	TODO: check
 CVE-2010-4247
 	RESERVED
 CVE-2010-4246
@@ -592,20 +634,16 @@
 	NOT-FOR-US: Adobe Shockwave Player
 CVE-2010-4084 (dirapi.dll in Adobe Shockwave Player before 11.5.9.615 allows
...)
 	NOT-FOR-US: Adobe Shockwave Player
-CVE-2010-4083
-	RESERVED
+CVE-2010-4083 (The copy_semid_to_user function in ipc/sem.c in the Linux kernel
...)
 	{DSA-2126-1}
 	- linux-2.6 <unfixed> (low)
-CVE-2010-4082
-	RESERVED
+CVE-2010-4082 (The viafb_ioctl_get_viafb_info function in
drivers/video/via/ioctl.c ...)
 	- linux-2.6 2.6.32-24 (low)
 	[lenny] - linux-2.6 <not-affected> (Vulnerable code not present)
-CVE-2010-4081
-	RESERVED
+CVE-2010-4081 (The snd_hdspm_hwdep_ioctl function in sound/pci/rme9652/hdspm.c
in the ...)
 	{DSA-2126-1}
 	- linux-2.6 2.6.32-27 (low)
-CVE-2010-4080
-	RESERVED
+CVE-2010-4080 (The snd_hdsp_hwdep_ioctl function in sound/pci/rme9652/hdsp.c in
the ...)
 	{DSA-2126-1}
 	- linux-2.6 2.6.32-27 (low)
 CVE-2010-4079 (The ivtvfb_ioctl function in drivers/media/video/ivtv/ivtvfb.c
in the ...)
@@ -786,6 +824,7 @@
 CVE-2010-4009
 	RESERVED
 CVE-2010-4008 (libxml2 before 2.7.8, as used in Google Chrome before
7.0.517.44, ...)
+	{DSA-2128-1}
 	- libxml2 2.7.8.dfsg-1 (bug #602609)
 CVE-2010-4007 (Oracle Mojarra uses an encrypted View State without a Message
...)
 	NOT-FOR-US: Oracle Mojarra
@@ -1140,8 +1179,7 @@
 CVE-2010-3859
 	RESERVED
 	{DSA-2126-1}
-CVE-2010-3858
-	RESERVED
+CVE-2010-3858 (The setup_arg_pages function in fs/exec.c in the Linux kernel
before ...)
 	{DSA-2126-1}
 	- linux-2.6 2.6.32-27
 CVE-2010-3857
@@ -8101,6 +8139,7 @@
 	[lenny] - krb5 <not-affected> (Only affects krb5 >= 1.7)
 CVE-2010-1323 [krb5 checksum handling]
 	RESERVED
+	{DSA-2129-1}
 	- krb5 1.8.3+dfsg-3 (bug #605553)
 CVE-2010-1322 (The merge_authdata function in kdc_authdata.c in the Key
Distribution ...)
 	- krb5 1.8.3+dfsg-2 (bug #599237)
Secure testing commits - Dec 2010 - r15639 - data/CVE

[Secure-testing-commits] r15639 - data/CVE
