Author: jmm Date: 2011-05-10 20:12:44 +0000 (Tue, 10 May 2011) New Revision: 16656 Modified: data/CVE/list Log: new mojo issues sync from kernel-sec repo NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-05-10 19:56:45 UTC (rev 16655) +++ data/CVE/list 2011-05-10 20:12:44 UTC (rev 16656) @@ -74,7 +74,7 @@ CVE-2011-1842 (dbus_backend/lsd.py in the D-Bus backend in language-selector before ...) TODO: check CVE-2011-1841 (Cross-site scripting (XSS) vulnerability in the link_to helper in ...) - TODO: check + - libmojolicious-perl 1.12-1 CVE-2011-1840 RESERVED CVE-2011-1839 (IBM Rational Build Forge 7.1.0 uses the HTTP GET method during ...) @@ -102,9 +102,9 @@ CVE-2011-1828 RESERVED CVE-2010-4803 (Mojolicious before 0.999927 does not properly implement HMAC-MD5 ...) - TODO: check + - libmojolicious-perl 0.999929-1 CVE-2010-4802 (Commands.pm in Mojolicious before 0.999928 does not properly perform ...) - TODO: check + - libmojolicious-perl 0.999929-1 CVE-2009-5074 (Unspecified vulnerability in the MojoX::Dispatcher::Static ...) TODO: check CVE-2011-XXXX [spip DoS] @@ -274,6 +274,7 @@ RESERVED CVE-2011-1776 RESERVED + - linux-2.6 <unfixed> (low) CVE-2011-1775 RESERVED NOT-FOR-US: TigerVNC @@ -284,6 +285,7 @@ NOTE: http://www.openwall.com/lists/oss-security/2011/05/09/4 CVE-2011-1773 RESERVED + NOT-FOR-US: virt-v2v CVE-2011-1772 RESERVED CVE-2011-1771 @@ -1871,7 +1873,7 @@ RESERVED - linux-2.6 2.6.38-4 (low) CVE-2011-1169 (Array index error in the asihpi_hpi_ioctl function in ...) - - linux-2.6 <unfixed> + - linux-2.6 2.6.38-2 [lenny] - linux-2.6 <not-affected> (Introduced in 2.6.35) [squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.35) CVE-2011-1168 (Cross-site scripting (XSS) vulnerability in the KHTMLPart::htmlError ...)