Author: joeyh Date: 2011-01-13 21:16:40 +0000 (Thu, 13 Jan 2011) New Revision: 15842 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-01-13 19:48:53 UTC (rev 15841) +++ data/CVE/list 2011-01-13 21:16:40 UTC (rev 15842) @@ -1,3 +1,47 @@ +CVE-2011-0445 (The ASN.1 BER dissector in Wireshark 1.4.0 through 1.4.2 allows remote ...) + TODO: check +CVE-2011-0444 (Buffer overflow in the MAC-LTE dissector ...) + TODO: check +CVE-2011-0443 (SQL injection vulnerability in inc/tinybb-settings.php in tinyBB 1.2, ...) + TODO: check +CVE-2011-0442 + RESERVED +CVE-2011-0441 + RESERVED +CVE-2011-0440 + RESERVED +CVE-2011-0439 + RESERVED +CVE-2011-0438 + RESERVED +CVE-2011-0437 + RESERVED +CVE-2011-0436 + RESERVED +CVE-2011-0435 + RESERVED +CVE-2011-0434 + RESERVED +CVE-2011-0433 + RESERVED +CVE-2011-0432 + RESERVED +CVE-2011-0431 + RESERVED +CVE-2011-0430 + RESERVED +CVE-2011-0429 + RESERVED +CVE-2011-0428 + RESERVED +CVE-2011-0427 + RESERVED +CVE-2011-0426 + RESERVED +CVE-2011-0425 + RESERVED +CVE-2011-0424 + RESERVED CVE-2011-0423 (The PolyVision RoomWizard with firmware 3.2.3 has a default password ...) NOT-FOR-US: PolyVision RoomWizard CVE-2011-0422 @@ -472,11 +516,11 @@ RESERVED CVE-2010-4543 (Heap-based buffer overflow in the read_channel_data function in ...) - gimp <unfixed> (bug #608497) -CVE-2010-4542 (Stack-based buffer overflow in the GFIG plugin in GIMP 2.6.11 allows ...) +CVE-2010-4542 (Stack-based buffer overflow in the gfig_read_parameter_gimp_rgb ...) - gimp <unfixed> (bug #608497) -CVE-2010-4541 (Stack-based buffer overflow in the SPHERE DESIGNER plugin in GIMP ...) +CVE-2010-4541 (Stack-based buffer overflow in the loadit function in ...) - gimp <unfixed> (bug #608497) -CVE-2010-4540 (Stack-based buffer overflow in the "LIGHTING EFFECTS > LIGHT" plugin ...) +CVE-2010-4540 (Stack-based buffer overflow in the load_preset_response function in ...) - gimp <unfixed> (bug #608497) CVE-2010-4619 (SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka ...) NOT-FOR-US: Mafya Oyun Scrpti @@ -1174,7 +1218,7 @@ RESERVED CVE-2011-0027 (Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2, and Windows ...) NOT-FOR-US: Microsoft Data Access Components -CVE-2011-0026 (Buffer overflow in an ODBC API in Microsoft Data Access Components ...) +CVE-2011-0026 (Integer signedness error in the SQLConnectW function in an ODBC API ...) NOT-FOR-US: Microsoft Data Access Components CVE-2010-XXXX [ircd-ratbox password disclosure?] - ircd-ratbox 3.0.6.dfsg-2 @@ -1187,7 +1231,7 @@ CVE-2010-4539 (The walk function in repos.c in the mod_dav_svn module for the Apache ...) - subversion 1.6.12dfsg-4 (bug #608989) NOTE: http://www.openwall.com/lists/oss-security/2011/01/04/8 -CVE-2010-4538 (Buffer overflow in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 ...) +CVE-2010-4538 (Buffer overflow in the sect_enttec_dmx_da function in ...) - wireshark <unfixed> (bug #608990) CVE-2010-4537 RESERVED @@ -2812,8 +2856,8 @@ - vim <not-affected> (Windows-specific) CVE-2010-3913 (CRLF injection vulnerability in TransWARE Active! mail 6 build ...) NOT-FOR-US: TransWARE Active! mail -CVE-2010-3912 - RESERVED +CVE-2010-3912 (The supportconfig script in supportutils in SUSE Linux Enterprise 11 ...) + TODO: check CVE-2010-3911 (Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM ...) NOT-FOR-US: vTiger CRM CVE-2010-3910 (Multiple directory traversal vulnerabilities in the ...) @@ -6452,8 +6496,8 @@ RESERVED CVE-2010-2605 RESERVED -CVE-2010-2604 - RESERVED +CVE-2010-2604 (Multiple buffer overflows in the PDF Distiller in the BlackBerry ...) + TODO: check CVE-2010-2603 (RIM BlackBerry Desktop Software 4.7 through 6.0 for PC, and 1.0 for ...) NOT-FOR-US: RIM BlackBerry Desktop Software CVE-2010-2602 (Multiple buffer overflows in the PDF distiller component in the ...) @@ -6462,8 +6506,8 @@ NOT-FOR-US: BlackBerry Enterprise Server CVE-2010-2600 (Untrusted search path vulnerability in BlackBerry Desktop Software ...) NOT-FOR-US: BlackBerry Desktop Software -CVE-2010-2599 - RESERVED +CVE-2010-2599 (Unspecified vulnerability in Research In Motion (RIM) BlackBerry ...) + TODO: check CVE-2010-2594 (Multiple cross-site request forgery (CSRF) vulnerabilities in the web ...) NOT-FOR-US: InterSect Allience Snare Agent CVE-2010-2593