Author: jmm Date: 2011-05-26 19:29:11 +0000 (Thu, 26 May 2011) New Revision: 16717 Modified: data/CVE/list Log: liferay ITP new chrome issues Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-05-26 06:12:14 UTC (rev 16716) +++ data/CVE/list 2011-05-26 19:29:11 UTC (rev 16717) @@ -856,18 +856,26 @@ RESERVED CVE-2011-1807 RESERVED + - chromium-browser 11.0.696.71~r86024-1 + - webkit <undetermined> CVE-2011-1806 RESERVED + - chromium-browser 11.0.696.71~r86024-1 + - webkit <undetermined> CVE-2011-1805 RESERVED CVE-2011-1804 RESERVED + - chromium-browser 11.0.696.71~r86024-1 + - webkit <undetermined> CVE-2011-1803 RESERVED CVE-2011-1802 RESERVED CVE-2011-1801 RESERVED + - webkit <undetermined> + - chromium-browser 11.0.696.71~r86024-1 CVE-2011-1800 (Multiple integer overflows in the SVG Filters implementation in ...) - chromium-browser 11.0.696.68~r84545-1 - webkit <undetermined> @@ -1431,9 +1439,9 @@ NOTE: https://github.com/sitaramc/gitolite/commit/4ce00aef84d1ff7c35f7adbbb99a6241cfda00cc [squeeze] - gitolite 1.5.4-2+squeeze1 CVE-2011-1571 (Unspecified vulnerability in the XSL Content portlet in Liferay Portal ...) - TODO: check + - liferay-portal <itp> (bug #569819) CVE-2011-1570 (Cross-site scripting (XSS) vulnerability in Liferay Portal Community ...) - TODO: check + - liferay-portal <itp> (bug #569819) CVE-2011-1569 (download.aspx in Douran Portal 3.9.7.8 allows remote attackers to ...) NOT-FOR-US: Douran Portal CVE-2011-1568 (Format string vulnerability in the logText function in shmemmgr9.dll ...) @@ -1633,11 +1641,11 @@ CVE-2011-1505 (Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.27 ...) NOT-FOR-US: IBM Lotus Quickr CVE-2011-1504 (Cross-site scripting (XSS) vulnerability in Liferay Portal Community ...) - TODO: check + - liferay-portal <itp> (bug #569819) CVE-2011-1503 (The XSL Content portlet in Liferay Portal Community Edition (CE) 5.x ...) - TODO: check + - liferay-portal <itp> (bug #569819) CVE-2011-1502 (Liferay Portal Community Edition (CE) 6.x before 6.0.6 GA, when Apache ...) - TODO: check + - liferay-portal <itp> (bug #569819) CVE-2011-1501 REJECTED CVE-2011-1500 (PreferencesPithosDialog.py in Pithos 0.3.7 does not properly restrict ...) @@ -21643,7 +21651,7 @@ CVE-2009-3743 (Off-by-one error in the Ins_MINDEX function in the TrueType bytecode ...) - ghostscript 8.71~dfsg-1 CVE-2009-3742 (Cross-site scripting (XSS) vulnerability in Liferay Portal before ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2009-3741 RESERVED CVE-2009-3740 @@ -47755,7 +47763,7 @@ CVE-2008-0565 (SQL injection vulnerability in vote.php in DeltaScripts PHP Links 1.3 ...) NOT-FOR-US: DeltaScripts PHP Links CVE-2008-0563 (Cross-site request forgery (CSRF) vulnerability in ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2008-0562 (SQL injection vulnerability in index.php in the Restaurant ...) NOT-FOR-US: Restaurant component for Mambo and Joomla! CVE-2008-0561 (SQL injection vulnerability in index.php in the Arthur Konze ...) @@ -48719,15 +48727,15 @@ CVE-2008-0183 RESERVED CVE-2008-0182 (Cross-site request forgery (CSRF) vulnerability in the Admin portlet ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2008-0181 (Cross-site scripting (XSS) vulnerability in the Admin portlet in ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2008-0180 (Cross-site scripting (XSS) vulnerability in ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2008-0179 (Cross-site scripting (XSS) vulnerability in ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2008-0178 (Cross-site scripting (XSS) vulnerability in the Enterprise Admin ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2008-0177 (The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME ...) - kfreebsd-7 <not-affected> (see bug #483152) - kfreebsd-6 <not-affected> (see bug #483152) @@ -50370,7 +50378,7 @@ CVE-2007-6174 (PHPDevShell before 0.7.0 allows remote authenticated users to gain ...) NOT-FOR-US: PHPDevShell CVE-2007-6173 (Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay ...) - NOT-FOR-US: Liferay + - liferay-portal <itp> (bug #569819) CVE-2007-6172 (Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote ...) NOT-FOR-US: wpQuiz CVE-2007-6169 (SQL injection vulnerability in admin/index2.asp in GOUAE DWD Realty ...) @@ -50618,7 +50626,7 @@ CVE-2007-6056 (frame.html in Aida-Web (Aida Web) allows remote attackers to bypass a ...) NOT-FOR-US: Aida-Web CVE-2007-6055 (Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay ...) - NOT-FOR-US: Liferay Portal + - liferay-portal <itp> (bug #569819) CVE-2007-6054 (Cross-site scripting (XSS) vulnerability in the login page in the ...) NOT-FOR-US: Aruba 800 Mobility Controller CVE-2007-6053 (IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large ...)