thr3ads.net - Secure testing commits - [Secure-testing-commits] r15833

If this information is useful, please help other people find it:
Share via:
Joey Hess
2011-Jan-12 21:14 UTC
[Secure-testing-commits] r15833 - data/CVE

Author: joeyh
Date: 2011-01-12 21:14:35 +0000 (Wed, 12 Jan 2011)
New Revision: 15833

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-01-12 18:14:49 UTC (rev 15832)
+++ data/CVE/list	2011-01-12 21:14:35 UTC (rev 15833)
@@ -1,3 +1,35 @@
+CVE-2011-0423 (The PolyVision RoomWizard with firmware 3.2.3 has a default
password ...)
+	TODO: check
+CVE-2011-0422
+	RESERVED
+CVE-2011-0421
+	RESERVED
+CVE-2011-0420
+	RESERVED
+CVE-2011-0419
+	RESERVED
+CVE-2011-0418
+	RESERVED
+CVE-2011-0417
+	RESERVED
+CVE-2011-0416
+	RESERVED
+CVE-2011-0415
+	RESERVED
+CVE-2011-0414
+	RESERVED
+CVE-2011-0413
+	RESERVED
+CVE-2011-0412
+	RESERVED
+CVE-2011-0411
+	RESERVED
+CVE-2011-0410
+	RESERVED
+CVE-2011-0409
+	RESERVED
+CVE-2011-0408
+	RESERVED
 CVE-2011-0407 (SQL injection vulnerability in the store function in ...)
 	TODO: check
 CVE-2011-0406 (Heap-based buffer overflow in HistorySvr.exe in WellinTech
KingView ...)
@@ -180,12 +212,12 @@
 	RESERVED
 CVE-2011-0317
 	RESERVED
-CVE-2011-0316
-	RESERVED
-CVE-2011-0315
-	RESERVED
-CVE-2011-0314
-	RESERVED
+CVE-2011-0316 (The Administrative Console component in IBM WebSphere
Application ...)
+	TODO: check
+CVE-2011-0315 (Cross-site scripting (XSS) vulnerability in the Servlet Engine /
Web ...)
+	TODO: check
+CVE-2011-0314 (Heap-based buffer overflow in IBM WebSphere MQ 6.0 before
6.0.2.11 and ...)
+	TODO: check
 CVE-2011-0313
 	RESERVED
 CVE-2011-0312
@@ -1138,10 +1170,10 @@
 	RESERVED
 CVE-2011-0028
 	RESERVED
-CVE-2011-0027
-	RESERVED
-CVE-2011-0026
-	RESERVED
+CVE-2011-0027 (Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2, and
Windows ...)
+	TODO: check
+CVE-2011-0026 (Buffer overflow in an ODBC API in Microsoft Data Access
Components ...)
+	TODO: check
 CVE-2010-XXXX [ircd-ratbox password disclosure?]
 	- ircd-ratbox 3.0.6.dfsg-2
 	TODO: check
@@ -2735,8 +2767,8 @@
 	RESERVED
 CVE-2010-3927
 	RESERVED
-CVE-2010-3926
-	RESERVED
+CVE-2010-3926 (Multiple cross-site scripting (XSS) vulnerabilities in Shop.cgi
in ...)
+	TODO: check
 CVE-2010-3925
 	RESERVED
 CVE-2010-3924
@@ -3447,39 +3479,31 @@
 	NOT-FOR-US: NetArtMEDIA WebSiteAdmin
 CVE-2010-3684 (The FTP authentication module in Synology Disk Station 2.x logs
...)
 	NOT-FOR-US: Synology Disk Station
-CVE-2010-3683
-	RESERVED
+CVE-2010-3683 (MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 sends an OK packet
when a ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
 	[lenny] - mysql-dfsg-5.0 <not-affected> (vulnerable code not present)
-CVE-2010-3682
-	RESERVED
+CVE-2010-3682 (MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
-CVE-2010-3681
-	RESERVED
+CVE-2010-3681 (MySQL 5.1 before 5.1.49 and 5.5 before 5.5.5 allows remote ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
-CVE-2010-3680
-	RESERVED
+CVE-2010-3680 (MySQL 5.1 before 5.1.49 allows remote authenticated users to
cause a ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
-CVE-2010-3679
-	RESERVED
+CVE-2010-3679 (MySQL 5.1 before 5.1.49 allows remote authenticated users to
cause a ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
 	[lenny] - mysql-dfsg-5.0 <not-affected> (vulnerable code not present)
-CVE-2010-3678
-	RESERVED
+CVE-2010-3678 (MySQL 5.1 before 5.1.49 allows remote authenticated users to
cause a ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
 	[lenny] - mysql-dfsg-5.0 <not-affected> (vulnerable code not present)
-CVE-2010-3677
-	RESERVED
+CVE-2010-3677 (MySQL 5.1 before 5.1.49 and 5.0 before 5.0.92 allows remote ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
-CVE-2010-3676
-	RESERVED
+CVE-2010-3676 (storage/innobase/dict/dict0crea.c in mysqld in MySQL 5.1 before
5.1.49 ...)
 	- mysql-5.1 5.1.49-1 (bug #598580)
 	- mysql-dfsg-5.0 <removed>
 	[lenny] - mysql-dfsg-5.0 <not-affected> (vulnerable code not present)
@@ -4902,7 +4926,7 @@
 	NOT-FOR-US: Microsoft Address Book
 CVE-2010-3146 (Untrusted search path vulnerability in Microsoft Office Groove
2007 ...)
 	NOT-FOR-US: Microsoft Office Groove
-CVE-2010-3145 (Untrusted search path vulnerability in the Microsoft Vista
BitLocker ...)
+CVE-2010-3145 (Untrusted search path vulnerability in the BitLocker Drive
Encryption ...)
 	NOT-FOR-US: Microsoft Vista BitLocker
 CVE-2010-3144 (Untrusted search path vulnerability in the Internet Connection
Signup ...)
 	NOT-FOR-US: Microsoft Internet Connection Signup Wizard
@@ -13451,8 +13475,8 @@
 	RESERVED
 CVE-2010-0215 (ActiveCollab before 2.3.2 allows remote authenticated users to
bypass ...)
 	TODO: check
-CVE-2010-0214
-	RESERVED
+CVE-2010-0214 (The administrative interface on the PolyVision RoomWizard with
...)
+	TODO: check
 CVE-2010-0213 (BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has
a ...)
 	- bind9 9.7.1.dfsg.P2
 	[lenny] - bind9 <not-affected> (vulnerability introduced in 9.7.1)
Secure testing commits - Jan 2011 - r15833 - data/CVE

[Secure-testing-commits] r15833 - data/CVE
