thr3ads.net - Secure testing commits - [Secure-testing-commits] r16289

If this information is useful, please help other people find it:
Share via:
Joey Hess
2011-Mar-02 21:16 UTC
[Secure-testing-commits] r16289 - data/CVE

Author: joeyh
Date: 2011-03-02 21:15:43 +0000 (Wed, 02 Mar 2011)
New Revision: 16289

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-03-02 20:58:03 UTC (rev 16288)
+++ data/CVE/list	2011-03-02 21:15:43 UTC (rev 16289)
@@ -1,3 +1,57 @@
+CVE-2011-1125 (Google Chrome before 9.0.597.107 does not properly perform
layout, ...)
+	TODO: check
+CVE-2011-1124 (Use-after-free vulnerability in Google Chrome before 9.0.597.107
...)
+	TODO: check
+CVE-2011-1123 (Google Chrome before 9.0.597.107 does not properly restrict
access to ...)
+	TODO: check
+CVE-2011-1122 (The WebGL implementation in Google Chrome before 9.0.597.107
allows ...)
+	TODO: check
+CVE-2011-1121 (Integer overflow in Google Chrome before 9.0.597.107 allows
remote ...)
+	TODO: check
+CVE-2011-1120 (The WebGL implementation in Google Chrome before 9.0.597.107
allows ...)
+	TODO: check
+CVE-2011-1119 (Google Chrome before 9.0.597.107 does not properly determine
device ...)
+	TODO: check
+CVE-2011-1118 (Google Chrome before 9.0.597.107 does not properly handle
TEXTAREA ...)
+	TODO: check
+CVE-2011-1117 (Google Chrome before 9.0.597.107 does not properly handle XHTML
...)
+	TODO: check
+CVE-2011-1116 (Google Chrome before 9.0.597.107 does not properly handle SVG
...)
+	TODO: check
+CVE-2011-1115 (Google Chrome before 9.0.597.107 does not properly render
tables, ...)
+	TODO: check
+CVE-2011-1114 (Google Chrome before 9.0.597.107 does not properly handle
tables, ...)
+	TODO: check
+CVE-2011-1113 (Google Chrome before 9.0.597.107 on 64-bit Linux platforms does
not ...)
+	TODO: check
+CVE-2011-1112 (Google Chrome before 9.0.597.107 does not properly perform SVG
...)
+	TODO: check
+CVE-2011-1111 (Google Chrome before 9.0.597.107 does not properly implement
forms ...)
+	TODO: check
+CVE-2011-1110 (Google Chrome before 9.0.597.107 does not properly implement key
frame ...)
+	TODO: check
+CVE-2011-1109 (Google Chrome before 9.0.597.107 does not properly process nodes
in ...)
+	TODO: check
+CVE-2011-1108 (Google Chrome before 9.0.597.107 does not properly implement
...)
+	TODO: check
+CVE-2011-1107 (Unspecified vulnerability in Google Chrome before 9.0.597.107
allows ...)
+	TODO: check
+CVE-2011-1106 (Cross-site scripting (XSS) vulnerability in stcenter.nsf in the
server ...)
+	TODO: check
+CVE-2010-4753 (Cross-site scripting (XSS) vulnerability in LightNEasy.php in
...)
+	TODO: check
+CVE-2010-4752 (SQL injection vulnerability in LightNEasy.php in LightNEasy
3.2.1, ...)
+	TODO: check
+CVE-2010-4751 (SQL injection vulnerability in LightNEasy.php in LightNEasy
3.2.1, ...)
+	TODO: check
+CVE-2010-4750 (Cross-site request forgery (CSRF) vulnerability in ...)
+	TODO: check
+CVE-2010-4749 (Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS
...)
+	TODO: check
+CVE-2010-4748 (Cross-site scripting (XSS) vulnerability in pmwiki.php in PmWiki
...)
+	TODO: check
+CVE-2010-4747 (Cross-site scripting (XSS) vulnerability in ...)
+	TODO: check
 CVE-2011-XXXX [polarssl d-h man in the middle]
 	- polarssl <unfixed> (bug #616114)
 	NOTE: https://lists.ubuntu.com/archives/ubuntu-motu/2011-February/007026.html
@@ -247,8 +301,7 @@
 	- linux-2.6 <unfixed>
 CVE-2011-1018 (logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute
...)
 	- logwatch <unfixed> (bug #615995)
-CVE-2011-1017
-	RESERVED
+CVE-2011-1017 (Heap-based buffer overflow in the ldm_frag_add function in ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1016 (The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do
not ...)
 	- linux-2.6 <unfixed>
@@ -268,13 +321,11 @@
 CVE-2011-1013 [drm_modeset_ctl signedness issue]
 	RESERVED
 	- linux-2.6 <unfixed>
-CVE-2011-1012
-	RESERVED
+CVE-2011-1012 (The ldm_parse_vmdb function in fs/partitions/ldm.c in the Linux
kernel ...)
 	- linux-2.6 <unfixed>
 CVE-2011-1011 (The seunshare_mount function in sandbox/seunshare.c in seunshare
in ...)
 	NOT-FOR-US: seunshare
-CVE-2011-1010
-	RESERVED
+CVE-2011-1010 (Buffer overflow in the mac_partition function in
fs/partitions/mac.c ...)
 	- linux-2.6 2.6.37-2
 CVE-2011-1009
 	RESERVED
@@ -1039,9 +1090,9 @@
 CVE-2011-0720 (Unspecified vulnerability in Plone 2.5 through 4.0 allows remote
...)
 	- plone3 <removed>
 	TODO: check
-CVE-2011-0719
-	RESERVED
+CVE-2011-0719 (Samba 3.x before 3.3.15, 3.4.x before 3.4.12, and 3.5.x before
3.5.7 ...)
 	{DSA-2175-1}
+	TODO: check
 CVE-2011-0718 (Red Hat Network (RHN) Satellite Server 5.4 does not use a time
delay ...)
 	NOT-FOR-US: Red Hat Network Satellite/Spacewalk
 CVE-2011-0717 (Session fixation vulnerability in Red Hat Network (RHN)
Satellite ...)
@@ -1062,8 +1113,7 @@
 	NOTE: http://anonsvn.wireshark.org/viewvc?view=rev&revision=35953
 CVE-2011-0712 (Multiple buffer overflows in the caiaq Native Instruments USB
audio ...)
 	- linux-2.6 2.6.37-2
-CVE-2011-0711
-	RESERVED
+CVE-2011-0711 (The xfs_fs_geometry function in fs/xfs/xfs_fsops.c in the Linux
kernel ...)
 	- linux-2.6 <unfixed> (low)
 CVE-2011-0710 (The task_show_regs function in arch/s390/kernel/traps.c in the
Linux ...)
 	- linux-2.6 2.6.37-2 (low)
@@ -1730,8 +1780,8 @@
 	RESERVED
 CVE-2011-0455
 	RESERVED
-CVE-2011-0454
-	RESERVED
+CVE-2011-0454 (Buffer overflow in the PPP Access Concentrator (PPPAC) on the
SEIL/x86 ...)
+	TODO: check
 CVE-2011-0453 (F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not
...)
 	NOT-FOR-US: F-Secure Internet Gatekeeper
 CVE-2011-0452 (Untrusted search path vulnerability in the script function in
...)
@@ -1779,15 +1829,19 @@
 	RESERVED
 CVE-2011-0437
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1
 CVE-2011-0436 [new users'' unencrypted passwords emailed to admin]
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1 (bug #614302)
 CVE-2011-0435
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1
 CVE-2011-0434
 	RESERVED
+	{DSA-2179-1}
 	- dtc 0.32.10-1
 CVE-2011-0433 [linetoken() buffer overflow]
 	RESERVED
@@ -1798,6 +1852,7 @@
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=640923
 CVE-2011-0432
 	RESERVED
+	{DSA-2177-1}
 	- pywebdav 0.9.4-3
 CVE-2011-0431 (The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the
kernel ...)
 	{DSA-2168-1}
@@ -2386,8 +2441,8 @@
 	RESERVED
 CVE-2011-0279
 	RESERVED
-CVE-2011-0278
-	RESERVED
+CVE-2011-0278 (Unspecified vulnerability in HP Web Jetadmin 10.2 Service
Release 3 ...)
+	TODO: check
 CVE-2011-0277 (Cross-site request forgery (CSRF) vulnerability in HP Power
Manager ...)
 	NOT-FOR-US: HP Power Manager
 CVE-2011-0276 (HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and
5.41 ...)
@@ -2840,6 +2895,7 @@
 	RESERVED
 CVE-2011-0064 [NULL pointer dereference in hb_buffer_add_glyph]
 	RESERVED
+	{DSA-2178-1}
 	- pango1.0 <unfixed>
 CVE-2011-0063
 	RESERVED
Secure testing commits - Mar 2011 - r16289 - data/CVE

[Secure-testing-commits] r16289 - data/CVE
