thr3ads.net - Secure testing commits - [Secure-testing-commits] r16365

If this information is useful, please help other people find it:
Share via:
Joey Hess
2011-Mar-11 21:15 UTC
[Secure-testing-commits] r16365 - data/CVE

Author: joeyh
Date: 2011-03-11 21:15:34 +0000 (Fri, 11 Mar 2011)
New Revision: 16365

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-03-11 18:09:53 UTC (rev 16364)
+++ data/CVE/list	2011-03-11 21:15:34 UTC (rev 16365)
@@ -1,3 +1,145 @@
+CVE-2011-1414
+	RESERVED
+CVE-2011-1413 (Google Chrome before 10.0.648.127 on Linux does not properly
mitigate ...)
+	TODO: check
+CVE-2011-1412
+	RESERVED
+CVE-2011-1411
+	RESERVED
+CVE-2011-1410
+	RESERVED
+CVE-2011-1409
+	RESERVED
+CVE-2011-1408
+	RESERVED
+CVE-2011-1407
+	RESERVED
+CVE-2011-1406
+	RESERVED
+CVE-2011-1405
+	RESERVED
+CVE-2011-1404
+	RESERVED
+CVE-2011-1403
+	RESERVED
+CVE-2011-1402
+	RESERVED
+CVE-2011-1401
+	RESERVED
+CVE-2011-1400
+	RESERVED
+CVE-2011-1399
+	RESERVED
+CVE-2011-1398
+	RESERVED
+CVE-2011-1397
+	RESERVED
+CVE-2011-1396
+	RESERVED
+CVE-2011-1395
+	RESERVED
+CVE-2011-1394
+	RESERVED
+CVE-2011-1393
+	RESERVED
+CVE-2011-1392
+	RESERVED
+CVE-2011-1391
+	RESERVED
+CVE-2011-1390
+	RESERVED
+CVE-2011-1389
+	RESERVED
+CVE-2011-1388
+	RESERVED
+CVE-2011-1387
+	RESERVED
+CVE-2011-1386
+	RESERVED
+CVE-2011-1385
+	RESERVED
+CVE-2011-1384
+	RESERVED
+CVE-2011-1383
+	RESERVED
+CVE-2011-1382
+	RESERVED
+CVE-2011-1381
+	RESERVED
+CVE-2011-1380
+	RESERVED
+CVE-2011-1379
+	RESERVED
+CVE-2011-1378
+	RESERVED
+CVE-2011-1377
+	RESERVED
+CVE-2011-1376
+	RESERVED
+CVE-2011-1375
+	RESERVED
+CVE-2011-1374
+	RESERVED
+CVE-2011-1373
+	RESERVED
+CVE-2011-1372
+	RESERVED
+CVE-2011-1371
+	RESERVED
+CVE-2011-1370
+	RESERVED
+CVE-2011-1369
+	RESERVED
+CVE-2011-1368
+	RESERVED
+CVE-2011-1367
+	RESERVED
+CVE-2011-1366
+	RESERVED
+CVE-2011-1365
+	RESERVED
+CVE-2011-1364
+	RESERVED
+CVE-2011-1363
+	RESERVED
+CVE-2011-1362
+	RESERVED
+CVE-2011-1361
+	RESERVED
+CVE-2011-1360
+	RESERVED
+CVE-2011-1359
+	RESERVED
+CVE-2011-1358
+	RESERVED
+CVE-2011-1357
+	RESERVED
+CVE-2011-1356
+	RESERVED
+CVE-2011-1355
+	RESERVED
+CVE-2011-1354
+	RESERVED
+CVE-2011-1353
+	RESERVED
+CVE-2011-1352
+	RESERVED
+CVE-2011-1351
+	RESERVED
+CVE-2011-1350
+	RESERVED
+CVE-2011-1349
+	RESERVED
+CVE-2011-1348
+	RESERVED
+CVE-2011-1347 (Unspecified vulnerability in Microsoft Internet Explorer 8 on
Windows ...)
+	TODO: check
+CVE-2011-1346 (Unspecified vulnerability in Microsoft Internet Explorer 8 on
Windows ...)
+	TODO: check
+CVE-2011-1345 (Unspecified vulnerability in Microsoft Internet Explorer 8 on
Windows ...)
+	TODO: check
+CVE-2011-1344 (Unspecified vulnerability in WebKit, as used in Apple Safari
5.0.4 on ...)
+	TODO: check
 CVE-2011-1343 (SQL injection vulnerability in the Web GUI in IBM Tivoli ...)
 	TODO: check
 CVE-2011-1342
@@ -114,11 +256,9 @@
 	RESERVED
 CVE-2011-1287
 	RESERVED
-CVE-2011-1286
-	RESERVED
+CVE-2011-1286 (Google V8, as used in Google Chrome before 10.0.648.127, allows
remote ...)
 	- libv8 <unfixed> (bug #617418)
-CVE-2011-1285
-	RESERVED
+CVE-2011-1285 (The regular-expression functionality in Google Chrome before
...)
 	- libv8 <unfixed> (bug #617418)
 CVE-2011-1284
 	RESERVED
@@ -284,112 +424,92 @@
 	RESERVED
 CVE-2011-1205
 	RESERVED
-CVE-2011-1204
-	RESERVED
+CVE-2011-1204 (Google Chrome before 10.0.648.127 does not properly handle
attributes, ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <no-dsa> (hard merge)
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/79810
-CVE-2011-1203
-	RESERVED
+CVE-2011-1203 (Google Chrome before 10.0.648.127 does not properly handle SVG
...)
 	{DSA-2189-1}
 	- chromium-browser 10.0.648.127~r76697-1
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/79476
-CVE-2011-1202
-	RESERVED
+CVE-2011-1202 (Unspecified vulnerability in the XSLT implementation in Google
Chrome ...)
 	- libxslt <unfixed> (bug #617413)
 	NOTE:
http://scarybeastsecurity.blogspot.com/2011/03/multi-browser-heap-address-leak-in-xslt.html
 	[squeeze] - libxslt <no-dsa> (minor issue)
 	[lenny] - libxslt <no-dsa> (minor issue)
-CVE-2011-1201
-	RESERVED
+CVE-2011-1201 (The context implementation in WebKit, as used in Google Chrome
before ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/78921
-CVE-2011-1200
-	RESERVED
+CVE-2011-1200 (Google Chrome before 10.0.648.127 does not properly perform a
cast of ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/78744
-CVE-2011-1199
-	RESERVED
+CVE-2011-1199 (Google Chrome before 10.0.648.127 does not properly handle
DataView ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
 	NOTE: https://trac.webkit.org/changeset/78738
-CVE-2011-1198
-	RESERVED
+CVE-2011-1198 (The video functionality in Google Chrome before 10.0.648.127
allows ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- ffmpeg <undetermined>
-CVE-2011-1197
-	RESERVED
+CVE-2011-1197 (Google Chrome before 10.0.648.127 does not properly perform
table ...)
 	{DSA-2189-1}
 	- chromium-browser 10.0.648.127~r76697-1
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/79734
-CVE-2011-1196
-	RESERVED
+CVE-2011-1196 (The OGG container implementation in Google Chrome before
10.0.648.127 ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- ffmpeg <undetermined>
-CVE-2011-1195
-	RESERVED
+CVE-2011-1195 (Use-after-free vulnerability in Google Chrome before
10.0.648.127 ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/78147
-CVE-2011-1194
-	RESERVED
+CVE-2011-1194 (Multiple unspecified vulnerabilities in Google Chrome before
...)
 	- chromium-browser (unimportant)
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/77049
http://trac.webkit.org/changeset/77329
-CVE-2011-1193
-	RESERVED
+CVE-2011-1193 (Google V8, as used in Google Chrome before 10.0.648.127, allows
remote ...)
 	- libv8 <unfixed> (bug #617418)
-CVE-2011-1192
-	RESERVED
+CVE-2011-1192 (Google Chrome before 10.0.648.127 on Linux does not properly
handle ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/76732
-CVE-2011-1191
-	RESERVED
+CVE-2011-1191 (Use-after-free vulnerability in Google Chrome before
10.0.648.127 ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/76652
-CVE-2011-1190
-	RESERVED
+CVE-2011-1190 (The Web Workers implementation in Google Chrome before
10.0.648.127 ...)
 	{DSA-2189-1}
 	- chromium-browser 10.0.648.127~r76697-1
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/77563
-CVE-2011-1189
-	RESERVED
+CVE-2011-1189 (Google Chrome before 10.0.648.127 does not properly perform box
...)
 	{DSA-2189-1}
 	- chromium-browser 10.0.648.127~r76697-1
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/79689
-CVE-2011-1188
-	RESERVED
+CVE-2011-1188 (Google Chrome before 10.0.648.127 does not properly handle
counter ...)
 	{DSA-2189-1}
 	- chromium-browser 10.0.648.127~r76697-1
 	- webkit <undetermined>
 	NOTE: http://trac.webkit.org/changeset/77142
-CVE-2011-1187
-	RESERVED
+CVE-2011-1187 (Google Chrome before 10.0.648.127 allows remote attackers to
bypass ...)
 	- libv8 <unfixed> (bug #617418)
-CVE-2011-1186
-	RESERVED
+CVE-2011-1186 (Google Chrome before 10.0.648.127 on Linux does not properly
handle ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <not-affected>
 	- webkit <not-affected> (chromium specific)
-CVE-2011-1185
-	RESERVED
+CVE-2011-1185 (Google Chrome before 10.0.648.127 does not prevent (1)
navigation and ...)
 	- chromium-browser 10.0.648.127~r76697-1
 	[squeeze] - chromium-browser <no-dsa> (minor issue)
 	- webkit <undetermined>
@@ -471,9 +591,11 @@
 CVE-2011-1147
 	RESERVED
 CVE-2011-1146 [libvirt: several API calls do not honour read-only connection]
+	RESERVED
 	- libvirt <unfixed> (low; bug #617773)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=683650
 CVE-2011-1145 [buffer overflow in unixODBC''s SQLDriverConnect()]
+	RESERVED
 	- unixodbc <unfixed> (low; bug #617655)
 	NOTE: http://seclists.org/oss-sec/2011/q1/446
 CVE-2011-1144 (The installer in PEAR 1.9.2 and earlier allows local users to
...)
@@ -1764,10 +1886,12 @@
 	[lenny] - feh <no-dsa> (Minor issue)
 CVE-2011-0701
 	RESERVED
+	{DSA-2190-1}
 	- wordpress 3.0.5+dfsg-1
 	[lenny] - wordpress <not-affected> (2.x version is not affected)
 CVE-2011-0700
 	RESERVED
+	{DSA-2190-1}
 	- wordpress 3.0.5+dfsg-1
 	[lenny] - wordpress <not-affected> (2.x version is not affected)
 CVE-2011-0699
Secure testing commits - Mar 2011 - r16365 - data/CVE

[Secure-testing-commits] r16365 - data/CVE
