Secure testing commits - Dec 2010 - r15650 - data/CVE

Author: joeyh
Date: 2010-12-06 21:15:11 +0000 (Mon, 06 Dec 2010)
New Revision: 15650

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2010-12-06 20:35:17 UTC (rev 15649)
+++ data/CVE/list	2010-12-06 21:15:11 UTC (rev 15650)
@@ -1,3 +1,23 @@
+CVE-2010-4407 (Multiple cross-site scripting (XSS) vulnerabilities in index.php
in ...)
+	TODO: check
+CVE-2010-4406 (Directory traversal vulnerability in gallery.php in Brunetton
...)
+	TODO: check
+CVE-2010-4405 (Cross-site scripting (XSS) vulnerability in the Yannick Gaultier
...)
+	TODO: check
+CVE-2010-4404 (SQL injection vulnerability in the Yannick Gaultier sh404SEF
component ...)
+	TODO: check
+CVE-2010-4403 (The Register Plus plugin 3.5.1 and earlier for WordPress allows
remote ...)
+	TODO: check
+CVE-2010-4402 (Multiple cross-site scripting (XSS) vulnerabilities in
wp-login.php in ...)
+	TODO: check
+CVE-2010-4401 (languages.inc.php in DynPG CMS 4.2.0 allows remote attackers to
obtain ...)
+	TODO: check
+CVE-2010-4400 (SQL injection vulnerability in _rights.php in DynPG CMS 4.2.0
allows ...)
+	TODO: check
+CVE-2010-4399 (Directory traversal vulnerability in languages.inc.php in DynPG
CMS ...)
+	TODO: check
+CVE-2010-4398 (Stack-based buffer overflow in the RtlQueryRegistryValues
function in ...)
+	TODO: check
 CVE-2010-4397
 	RESERVED
 CVE-2010-4396
@@ -345,8 +365,8 @@
 	RESERVED
 CVE-2010-4255
 	RESERVED
-CVE-2010-4254
-	RESERVED
+CVE-2010-4254 (Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10
is ...)
+	TODO: check
 CVE-2010-4253
 	RESERVED
 CVE-2010-4252
@@ -1890,13 +1910,13 @@
 	RESERVED
 CVE-2010-3616
 	RESERVED
-CVE-2010-3615 (ISC BIND 9.7.2-P2 does not check all intended locations for
allow-query ACLs...)
+CVE-2010-3615 (named in ISC BIND 9.7.2-P2 does not check all intended locations
for ...)
 	- bind9 1:9.7.2.dfsg.P3-1 (bug #605876)
 	NOTE: http://ftp.isc.org/isc/bind9/9.7.2-P3/RELEASE-NOTES-BIND-9.7.2-P3.html
-CVE-2010-3614 (ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3, 9.4-ESV
before 9.4-ESV-R4, and 9.6-ESV before 9.6-ESV-R3...)
+CVE-2010-3614 (named in ISC BIND 9.x before 9.6.2-P3, 9.7.x before 9.7.2-P3,
9.4-ESV ...)
 	- bind9 1:9.7.2.dfsg.P3-1 (bug #605876)
 	NOTE: http://ftp.isc.org/isc/bind9/9.7.2-P3/RELEASE-NOTES-BIND-9.7.2-P3.html
-CVE-2010-3613 (ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before 9.6-ESV-R3, and
9.7.x before 9.7.2-P3...)
+CVE-2010-3613 (named in ISC BIND 9.6.2 before 9.6.2-P3, 9.6-ESV before
9.6-ESV-R3, ...)
 	- bind9 1:9.7.2.dfsg.P3-1 (bug #605876)
 	NOTE: http://ftp.isc.org/isc/bind9/9.7.2-P3/RELEASE-NOTES-BIND-9.7.2-P3.html
 CVE-2010-3612