Author: luciano Date: 2011-03-11 10:01:09 +0000 (Fri, 11 Mar 2011) New Revision: 16360 Modified: data/CVE/list Log: CVE-2011-1146:libvirt, CVE-2011-1145:unixodbc Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-03-10 21:15:02 UTC (rev 16359) +++ data/CVE/list 2011-03-11 10:01:09 UTC (rev 16360) @@ -40,14 +40,6 @@ RESERVED CVE-2011-1323 RESERVED -CVE-2011-XXXX [libvirt: several API calls do not honour read-only connection] - TODO: check - NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=683650 -CVE-2011-XXXX [buffer overflow in unixODBC''s SQLDriverConnect()] - - unixodbc <unfixed> (low; bug #617655) - [lenny] - unixodbc <no-dsa> (Minor issue) - [squeeze] - unixodbc <no-dsa> (Minor issue) - NOTE: http://seclists.org/oss-sec/2011/q1/446 CVE-2011-1322 (The SOAP with Attachments API for Java (SAAJ) implementation in the ...) TODO: check CVE-2011-1321 (The AuthCache purge implementation in the Security component in IBM ...) @@ -478,10 +470,14 @@ RESERVED CVE-2011-1147 RESERVED -CVE-2011-1146 - RESERVED -CVE-2011-1145 - RESERVED +CVE-2011-1146 [libvirt: several API calls do not honour read-only connection] + TODO: check (bug #617773) + NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=683650 +CVE-2011-1145 [buffer overflow in unixODBC''s SQLDriverConnect()] + - unixodbc <unfixed> (low; bug #617655) + [lenny] - unixodbc <no-dsa> (Minor issue) + [squeeze] - unixodbc <no-dsa> (Minor issue) + NOTE: http://seclists.org/oss-sec/2011/q1/446 CVE-2011-1144 (The installer in PEAR 1.9.2 and earlier allows local users to ...) TODO: apparenty not in Debian. Raphael, can you confirm? CVE-2011-1143 (epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark ...)