Author: geissert Date: 2011-01-04 22:30:56 +0000 (Tue, 04 Jan 2011) New Revision: 15788 Modified: data/CVE/list Log: new gimp, subversion, linux, and wireshark issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-01-04 22:22:43 UTC (rev 15787) +++ data/CVE/list 2011-01-04 22:30:56 UTC (rev 15788) @@ -109,8 +109,14 @@ RESERVED CVE-2010-4620 RESERVED -CVE-2010-XXXX +CVE-2010-4543 [heap overflow read_channel_data() in file-psp.c] - gimp <unfixed> (bug #608497) +CVE-2010-4542 [GFIG plugin stack buffer overflow] + - gimp <unfixed> (bug #608497) +CVE-2010-4541 [SPHERE DESIGNER plugin stack buffer overflow] + - gimp <unfixed> (bug #608497) +CVE-2010-4540 [LIGHTING EFFECTS > LIGHT plugin stack buffer overflow] + - gimp <unfixed> (bug #608497) CVE-2010-4619 (SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka ...) NOT-FOR-US: Mafya Oyun Scrpti CVE-2010-4618 (Cross-site scripting (XSS) vulnerability in the Algis Info ...) @@ -815,18 +821,14 @@ - wordpress 3.0.3-1 (bug #606657) [lenny] - wordpress <not-affected> (vulnerable code not present) NOTE: http://core.trac.wordpress.org/changeset/16803 -CVE-2010-4543 +CVE-2010-4539 [crash in mod_dav_svn when using SVNParentPath] RESERVED -CVE-2010-4542 + - subversion <unfixed> + NOTE: AANLkTi=3tF6zHvTRy-fVSKHE6sbEXJYeq1MrJD7ntdPH at mail.gmail.com +CVE-2010-4538 [ENTTEC dissector overflow] RESERVED -CVE-2010-4541 - RESERVED -CVE-2010-4540 - RESERVED -CVE-2010-4539 - RESERVED -CVE-2010-4538 - RESERVED + - wireshark <unfixed> + TODO: check CVE-2010-4537 RESERVED CVE-2010-4536 (Multiple cross-site scripting (XSS) vulnerabilities in KSES, as used ...) @@ -865,8 +867,9 @@ CVE-2010-4527 RESERVED - linux-2.6 <unfixed> -CVE-2010-4526 +CVE-2010-4526 [sctp: a race between ICMP protocol unreachable and connect()] RESERVED + - linux-2.6 <unfixed> CVE-2010-4525 RESERVED CVE-2010-4524 (Cross-site scripting (XSS) vulnerability in lib/mhtxthtml.pl in ...)