Author: joeyh
Date: 2010-12-20 21:14:34 +0000 (Mon, 20 Dec 2010)
New Revision: 15720
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2010-12-20 19:39:02 UTC (rev 15719)
+++ data/CVE/list 2010-12-20 21:14:34 UTC (rev 15720)
@@ -1,3 +1,9 @@
+CVE-2010-4558 (phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th
and ...)
+ TODO: check
+CVE-2010-4557 (Buffer overflow in the lm_tcp service in Invensys Wonderware
InBatch ...)
+ TODO: check
+CVE-2010-4556 (Stack-based buffer overflow in the SapThemeRepository ActiveX
control ...)
+ TODO: check
CVE-2010-XXXX
- opensc <unfixed> (bug #607427)
CVE-2010-4555
@@ -253,8 +259,8 @@
RESERVED
CVE-2010-4496
RESERVED
-CVE-2010-4495
- RESERVED
+CVE-2010-4495 (Unspecified vulnerability in the ActiveMatrix Runtime component
in ...)
+ TODO: check
CVE-2010-4494 (Double free vulnerability in Google Chrome before 8.0.552.215
allows ...)
- chromium-browser <undetermined>
- webkit <undetermined>
@@ -294,8 +300,7 @@
CVE-2010-4482 (Unspecified vulnerability in Google Chrome before 8.0.552.215
allows ...)
- chromium-browser <undetermined>
- webkit <undetermined>
-CVE-2010-4481 [information disclosure flaw (PMASA-2010-10)]
- RESERVED
+CVE-2010-4481 (phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass
...)
- phpmyadmin <unfixed>
TODO: check
CVE-2010-4480 (error.php in PhpMyAdmin 3.3.8.1, and other versions before ...)
@@ -459,8 +464,7 @@
- cakephp 1.3.2-1.1 (bug #606386)
[lenny] - cakephp <not-affected>
NOTE:
https://github.com/cakephp/cakephp/commit/e431e86aa4301ced4273dc7919b59362cbb353cb
-CVE-2010-4336 [collectd: DoS in RRDtool and RRDCacheD plugins]
- RESERVED
+CVE-2010-4336 (The cu_rrd_create_file function (src/utils_rrdcreate.c) in
collectd ...)
{DSA-2133-1}
- collectd 4.10.1-2.1 (bug #605092; low)
[squeeze] - collectd 4.10.1-1+squeeze2
@@ -822,8 +826,7 @@
CVE-2010-4263 [linux: igb panics when receiving tag vlan packet]
RESERVED
- linux-2.6 <unfixed>
-CVE-2010-4262 [xfig color definition parsing stack buffer overflow]
- RESERVED
+CVE-2010-4262 (Stack-based buffer overflow in Xfig 3.2.4 and 3.2.5 allows
remote ...)
- xfig <unfixed> (bug #606257)
NOTE: details and patch at https://bugzilla.redhat.com/659676
CVE-2010-4261 (Off-by-one error in the icon_cb function in pe_icons.c in
libclamav in ...)
@@ -1201,8 +1204,8 @@
RESERVED
CVE-2010-4116
RESERVED
-CVE-2010-4115
- RESERVED
+CVE-2010-4115 (HP StorageWorks Modular Smart Array P2000 G3 firmware TS100R011,
...)
+ TODO: check
CVE-2010-4114
RESERVED
CVE-2010-4113
@@ -1688,8 +1691,8 @@
RESERVED
CVE-2010-3907
RESERVED
-CVE-2010-3906
- RESERVED
+CVE-2010-3906 (Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and
earlier ...)
+ TODO: check
CVE-2010-3905
RESERVED
- eucalyptus <unfixed>
@@ -2482,8 +2485,7 @@
NOT-FOR-US: PGP Desktop
CVE-2010-3617
RESERVED
-CVE-2010-3616 [DHCP Server Hangs with TCP to Failover Peer Port]
- RESERVED
+CVE-2010-3616 (ISC DHCP server 4.2 before 4.2.0-P2, when configured to use
failover ...)
- iscp-dhcp <unfixed>
- dhcp3 <removed>
- dhcp <removed>
@@ -5311,10 +5313,10 @@
RESERVED
CVE-2010-2604
RESERVED
-CVE-2010-2603
- RESERVED
-CVE-2010-2602
- RESERVED
+CVE-2010-2603 (RIM BlackBerry Desktop Software 4.7 through 6.0 for PC, and 1.0
for ...)
+ TODO: check
+CVE-2010-2602 (Multiple buffer overflows in the PDF distiller component in the
...)
+ TODO: check
CVE-2010-2601 (Multiple buffer overflows in the PDF distiller in the Attachment
...)
NOT-FOR-US: BlackBerry Enterprise Server
CVE-2010-2600 (Untrusted search path vulnerability in BlackBerry Desktop
Software ...)