thr3ads.net - Secure testing commits - [Secure-testing-commits] r16275

If this information is useful, please help other people find it:
Share via:

Joey Hess

2011-Mar-01 21:15 UTC

[Secure-testing-commits] r16275 - data/CVE

Author: joeyh
Date: 2011-03-01 21:15:18 +0000 (Tue, 01 Mar 2011)
New Revision: 16275

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-03-01 15:40:35 UTC (rev 16274)
+++ data/CVE/list	2011-03-01 21:15:18 UTC (rev 16275)
@@ -1,3 +1,7 @@
+CVE-2011-1105 (Multiple cross-site scripting (XSS) vulnerabilities in Mutare
EVM ...)
+	TODO: check
+CVE-2011-1104 (Multiple cross-site request forgery (CSRF) vulnerabilities in
Mutare ...)
+	TODO: check
 CVE-2011-1103 (The WebReporting module in F-Secure Policy Manager 7.x, 8.00
before ...)
 	NOT-FOR-US: F-Secure Policy Manager
 CVE-2011-1102 (Cross-site scripting (XSS) vulnerability in the WebReporting
module in ...)
@@ -227,8 +231,7 @@
 	- linux-2.6 2.6.37-1
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.33)
 	[lenny] - linux-2.6 <not-affected> (Introduced in 2.6.33)
-CVE-2011-1020
-	RESERVED
+CVE-2011-1020 (The proc filesystem implementation in the Linux kernel 2.6.37
and ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1019
 	RESERVED
@@ -240,8 +243,7 @@
 CVE-2011-1017
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2011-1016
-	RESERVED
+CVE-2011-1016 (The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do
not ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1015 [path traversal in CGIHTTPServer]
 	RESERVED
@@ -269,12 +271,10 @@
 	- linux-2.6 2.6.37-2
 CVE-2011-1009
 	RESERVED
-CVE-2011-1008 [Scrip''s TicketObj info leak]
-	RESERVED
+CVE-2011-1008 (Scrips_Overlay.pm in Best Practical Solutions RT before 3.8.9
does not ...)
 	- request-tracker3.6 <removed>
 	- request-tracker3.8 <unfixed>
-CVE-2011-1007 [login page back button attack]
-	RESERVED
+CVE-2011-1007 (Best Practical Solutions RT before 3.8.9 does not perform
certain ...)
 	- request-tracker3.6 <removed>
 	- request-tracker3.8 <unfixed>
 CVE-2011-1006
@@ -512,8 +512,8 @@
 	RESERVED
 CVE-2011-0926 (A certain ActiveX control in CSDWebInstaller.ocx in Cisco Secure
...)
 	NOT-FOR-US: Cisco Secure Desktop
-CVE-2011-0925
-	RESERVED
+CVE-2011-0925 (The CSDWebInstallerCtrl ActiveX control in CSDWebInstaller.ocx
in ...)
+	TODO: check
 CVE-2011-0924 (The client in HP Data Protector does not verify the contents of
files ...)
 	NOT-FOR-US: HP Data Protector
 CVE-2011-0923 (The client in HP Data Protector does not properly validate
EXEC_CMD ...)

Secure testing commits - Mar 2011 - r16275 - data/CVE

[Secure-testing-commits] r16275 - data/CVE