Author: joeyh Date: 2011-10-19 21:14:20 +0000 (Wed, 19 Oct 2011) New Revision: 17458 Modified: data/CVE/list Log: automatic update Modified: data/CVE/list ==================================================================--- data/CVE/list 2011-10-19 20:33:53 UTC (rev 17457) +++ data/CVE/list 2011-10-19 21:14:20 UTC (rev 17458) @@ -1,3 +1,143 @@ +CVE-2011-4140 (The CSRF protection mechanism in Django through 1.2.7 and 1.3.x ...) + TODO: check +CVE-2011-4139 (Django before 1.2.7 and 1.3.x before 1.3.1 uses a request''s HTTP Host ...) + TODO: check +CVE-2011-4138 (The verify_exists functionality in the URLField implementation in ...) + TODO: check +CVE-2011-4137 (The verify_exists functionality in the URLField implementation in ...) + TODO: check +CVE-2011-4136 (django.contrib.sessions in Django before 1.2.7 and 1.3.x before 1.3.1, ...) + TODO: check +CVE-2011-4135 + RESERVED +CVE-2011-4134 + RESERVED +CVE-2011-4133 + RESERVED +CVE-2011-4132 + RESERVED +CVE-2011-4131 + RESERVED +CVE-2011-4130 + RESERVED +CVE-2011-4129 + RESERVED +CVE-2011-4128 + RESERVED +CVE-2011-4127 + RESERVED +CVE-2011-4126 + RESERVED +CVE-2011-4125 + RESERVED +CVE-2011-4124 + RESERVED +CVE-2011-4123 + RESERVED +CVE-2011-4122 + RESERVED +CVE-2011-4121 + RESERVED +CVE-2011-4120 + RESERVED +CVE-2011-4119 + RESERVED +CVE-2011-4118 + RESERVED +CVE-2011-4117 + RESERVED +CVE-2011-4116 + RESERVED +CVE-2011-4115 + RESERVED +CVE-2011-4114 + RESERVED +CVE-2011-4113 + RESERVED +CVE-2011-4112 + RESERVED +CVE-2011-4111 + RESERVED +CVE-2011-4110 + RESERVED +CVE-2011-4109 + RESERVED +CVE-2011-4108 + RESERVED +CVE-2011-4107 + RESERVED +CVE-2011-4106 + RESERVED +CVE-2011-4105 + RESERVED +CVE-2011-4104 + RESERVED +CVE-2011-4103 + RESERVED +CVE-2011-4102 + RESERVED +CVE-2011-4101 + RESERVED +CVE-2011-4100 + RESERVED +CVE-2011-4099 + RESERVED +CVE-2011-4098 + RESERVED +CVE-2011-4097 + RESERVED +CVE-2011-4096 + RESERVED +CVE-2011-4095 + RESERVED +CVE-2011-4094 + RESERVED +CVE-2011-4093 + RESERVED +CVE-2011-4092 + RESERVED +CVE-2011-4091 + RESERVED +CVE-2011-4090 + RESERVED +CVE-2011-4089 + RESERVED +CVE-2011-4088 + RESERVED +CVE-2011-4087 + RESERVED +CVE-2011-4086 + RESERVED +CVE-2011-4085 + RESERVED +CVE-2011-4084 + RESERVED +CVE-2011-4083 + RESERVED +CVE-2011-4082 + RESERVED +CVE-2011-4081 + RESERVED +CVE-2011-4080 + RESERVED +CVE-2011-4079 + RESERVED +CVE-2011-4078 + RESERVED +CVE-2011-4077 + RESERVED +CVE-2011-4076 + RESERVED +CVE-2011-4075 + RESERVED +CVE-2011-4074 + RESERVED +CVE-2011-4073 + RESERVED +CVE-2007-6744 + RESERVED +CVE-2006-7246 + RESERVED CVE-2011-XXXX [incorrect OPENSSL_assert() in DTLS code] - openssl <unfixed> (low; bug #645805) NOTE: http://rt.openssl.org/Ticket/Display.html?id=2625&user=guest&pass=guest @@ -1426,8 +1566,8 @@ - sun-java6 <unfixed> (bug #645881) - openjdk-6 <unfixed> - openjdk-7 <unfixed> -CVE-2011-3559 - RESERVED +CVE-2011-3559 (Unspecified vulnerability in Oracle Communications Server 2.0; ...) + TODO: check CVE-2011-3558 RESERVED - sun-java6 <unfixed> (bug #645881) @@ -1502,87 +1642,87 @@ - sun-java6 <unfixed> (bug #645881) - openjdk-6 <unfixed> - openjdk-7 <unfixed> -CVE-2011-3543 - RESERVED -CVE-2011-3542 - RESERVED -CVE-2011-3541 - RESERVED +CVE-2011-3543 (Unspecified vulnerability in Oracle Solaris 11 Express allows remote ...) + TODO: check +CVE-2011-3542 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows ...) + TODO: check +CVE-2011-3541 (Unspecified vulnerability in the Oracle Outside In Technology ...) + TODO: check CVE-2011-3540 RESERVED -CVE-2011-3539 - RESERVED -CVE-2011-3538 - RESERVED -CVE-2011-3537 - RESERVED -CVE-2011-3536 - RESERVED -CVE-2011-3535 - RESERVED -CVE-2011-3534 - RESERVED -CVE-2011-3533 - RESERVED -CVE-2011-3532 - RESERVED +CVE-2011-3539 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows ...) + TODO: check +CVE-2011-3538 (Unspecified vulnerability in the Sun Ray component in Oracle ...) + TODO: check +CVE-2011-3537 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express ...) + TODO: check +CVE-2011-3536 (Unspecified vulnerability in Oracle Solaris 10 allows local users to ...) + TODO: check +CVE-2011-3535 (Unspecified vulnerability in the Solaris component in Oracle Sun ...) + TODO: check +CVE-2011-3534 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express ...) + TODO: check +CVE-2011-3533 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2011-3532 (Unspecified vulnerability in the Oracle Agile Product Supplier ...) + TODO: check CVE-2011-3531 RESERVED -CVE-2011-3530 - RESERVED -CVE-2011-3529 - RESERVED -CVE-2011-3528 - RESERVED -CVE-2011-3527 - RESERVED -CVE-2011-3526 - RESERVED -CVE-2011-3525 - RESERVED +CVE-2011-3530 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2011-3529 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2011-3528 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2011-3527 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) + TODO: check +CVE-2011-3526 (Unspecified vulnerability in the Siebel Core - UIF Server component in ...) + TODO: check +CVE-2011-3525 (Unspecified vulnerability in the Application Express component in ...) + TODO: check CVE-2011-3524 RESERVED -CVE-2011-3523 - RESERVED -CVE-2011-3522 - RESERVED +CVE-2011-3523 (Unspecified vulnerability in the Oracle Web Services Manager component ...) + TODO: check +CVE-2011-3522 (Unspecified vulnerability in SysFW 8.0 on certain SPARC T3, Netra ...) + TODO: check CVE-2011-3521 RESERVED - sun-java6 <unfixed> (bug #645881) - openjdk-6 <unfixed> - openjdk-7 <unfixed> -CVE-2011-3520 - RESERVED -CVE-2011-3519 - RESERVED -CVE-2011-3518 - RESERVED -CVE-2011-3517 - RESERVED +CVE-2011-3520 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) + TODO: check +CVE-2011-3519 (Unspecified vulnerability in the Oracle Applications Framework ...) + TODO: check +CVE-2011-3518 (Unspecified vulnerability in the Siebel Core - UIF Client component in ...) + TODO: check +CVE-2011-3517 (Unspecified vulnerability in the Oracle OpenSSO component in Oracle ...) + TODO: check CVE-2011-3516 RESERVED - sun-java6 <not-affected> (Windows-specific) - openjdk-6 <not-affected> (Windows-specific) -CVE-2011-3515 - RESERVED +CVE-2011-3515 (Unspecified vulnerability in the Oracle Solaris 10 and 11 Express ...) + TODO: check CVE-2011-3514 RESERVED -CVE-2011-3513 - RESERVED -CVE-2011-3512 - RESERVED -CVE-2011-3511 - RESERVED -CVE-2011-3510 - RESERVED +CVE-2011-3513 (Unspecified vulnerability in the Oracle Application Object Library ...) + TODO: check +CVE-2011-3512 (Unspecified vulnerability in the Core RDBMS component in Oracle ...) + TODO: check +CVE-2011-3511 (Unspecified vulnerability in the Database Vault component in Oracle ...) + TODO: check +CVE-2011-3510 (Unspecified vulnerability in the Oracle Business Intelligence ...) + TODO: check CVE-2011-3509 RESERVED -CVE-2011-3508 - RESERVED -CVE-2011-3507 - RESERVED -CVE-2011-3506 - RESERVED +CVE-2011-3508 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express ...) + TODO: check +CVE-2011-3507 (Unspecified vulnerability in the Oracle Communications Unified ...) + TODO: check +CVE-2011-3506 (Unspecified vulnerability in the Oracle OpenSSO component in Oracle ...) + TODO: check CVE-2011-3505 RESERVED CVE-2011-3504 (The Matroska format decoder in FFmpeg before 0.8.3 does not properly ...) @@ -4866,61 +5006,61 @@ RESERVED CVE-2011-2329 (The rampart_timestamp_token_validate function in ...) - rampart <unfixed> (bug #631221) -CVE-2011-2327 - RESERVED +CVE-2011-2327 (Unspecified vulnerability in the Oracle Communications Unified ...) + TODO: check CVE-2011-2326 RESERVED CVE-2011-2325 RESERVED CVE-2011-2324 RESERVED -CVE-2011-2323 - RESERVED -CVE-2011-2322 - RESERVED +CVE-2011-2323 (Unspecified vulnerability in the Health Sciences - Oracle Thesaurus ...) + TODO: check +CVE-2011-2322 (Unspecified vulnerability in the Database Vault component in Oracle ...) + TODO: check CVE-2011-2321 RESERVED -CVE-2011-2320 - RESERVED -CVE-2011-2319 - RESERVED -CVE-2011-2318 - RESERVED +CVE-2011-2320 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) + TODO: check +CVE-2011-2319 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) + TODO: check +CVE-2011-2318 (Unspecified vulnerability in the Oracle WebLogic Server component in ...) + TODO: check CVE-2011-2317 RESERVED -CVE-2011-2316 - RESERVED -CVE-2011-2315 - RESERVED -CVE-2011-2314 - RESERVED -CVE-2011-2313 - RESERVED -CVE-2011-2312 - RESERVED -CVE-2011-2311 - RESERVED -CVE-2011-2310 - RESERVED -CVE-2011-2309 - RESERVED -CVE-2011-2308 - RESERVED +CVE-2011-2316 (Unspecified vulnerability in the Siebel Apps - Marketing component in ...) + TODO: check +CVE-2011-2315 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...) + TODO: check +CVE-2011-2314 (Unspecified vulnerability in the Oracle Containers for J2EE component ...) + TODO: check +CVE-2011-2313 (Unspecified vulnerability in Oracle Solaris 10 allows local users to ...) + TODO: check +CVE-2011-2312 (Unspecified vulnerability in Oracle Solaris 10 allows local users to ...) + TODO: check +CVE-2011-2311 (Unspecified vulnerability in Oracle Solaris 10 allows local users to ...) + TODO: check +CVE-2011-2310 (Unspecified vulnerability in the Oracle Waveset component in Oracle ...) + TODO: check +CVE-2011-2309 (Unspecified vulnerability in the Health Sciences - Oracle Clinical, ...) + TODO: check +CVE-2011-2308 (Unspecified vulnerability in the Oracle Application Object Library ...) + TODO: check CVE-2011-2307 (Unspecified vulnerability in Oracle SysFW 8.1.0.a in various Oracle ...) NOT-FOR-US: Oracle SysFW -CVE-2011-2306 - RESERVED +CVE-2011-2306 (Unspecified vulnerability in Oracle Linux 4 and 5 allows remote ...) + TODO: check CVE-2011-2305 (Unspecified vulnerability in Oracle VM VirtualBox 3.0, 3.1, 3.2, and ...) - virtualbox-ose <not-affected> (Only affects 4.x) - virtualbox 4.0.10-dfsg-1 -CVE-2011-2304 - RESERVED -CVE-2011-2303 - RESERVED -CVE-2011-2302 - RESERVED -CVE-2011-2301 - RESERVED +CVE-2011-2304 (Unspecified vulnerability in Oracle Solaris 10 allows remote attackers ...) + TODO: check +CVE-2011-2303 (Unspecified vulnerability in the Oracle Application Object Library ...) + TODO: check +CVE-2011-2302 (Unspecified vulnerability in the Oracle Application Object Library ...) + TODO: check +CVE-2011-2301 (Unspecified vulnerability in the Oracle Text component in Oracle ...) + TODO: check CVE-2011-2300 (Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows local ...) - virtualbox-guest-additions <removed> (bug #635276) [squeeze] - virtualbox-guest-additions <no-dsa> (Non-free not supported) @@ -4938,8 +5078,8 @@ NOT-FOR-US: Oracle Solaris CVE-2011-2293 (Unspecified vulnerability in Oracle Solaris 11 Express allows local ...) NOT-FOR-US: Oracle Solaris -CVE-2011-2292 - RESERVED +CVE-2011-2292 (Unspecified vulnerability in Oracle Solaris 9 and 11 Express allows ...) + TODO: check CVE-2011-2291 (Unspecified vulnerability in Oracle Solaris 10 allows local users to ...) NOT-FOR-US: Oracle Solaris CVE-2011-2290 (Unspecified vulnerability in Oracle Solaris 10, and 11 Express allows ...) @@ -4950,8 +5090,8 @@ NOT-FOR-US: Oracle SysFW CVE-2011-2287 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express ...) NOT-FOR-US: Oracle Solaris -CVE-2011-2286 - RESERVED +CVE-2011-2286 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows ...) + TODO: check CVE-2011-2285 (Unspecified vulnerability in Oracle Solaris 10 allows local users to ...) NOT-FOR-US: Oracle Solaris CVE-2011-2284 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS component ...) @@ -5012,8 +5152,8 @@ NOT-FOR-US: Oracle Database Server and Enterprise Manager Grid Control CVE-2011-2256 RESERVED -CVE-2011-2255 - RESERVED +CVE-2011-2255 (Unspecified vulnerability in the Oracle WebLogic Portal component in ...) + TODO: check CVE-2011-2254 RESERVED CVE-2011-2253 (Unspecified vulnerability in the Core RDBMS component in Oracle ...) @@ -5048,8 +5188,8 @@ NOT-FOR-US: Oracle Database Server CVE-2011-2238 (Unspecified vulnerability in the Database Vault component in Oracle ...) NOT-FOR-US: Oracle Database Server -CVE-2011-2237 - RESERVED +CVE-2011-2237 (Unspecified vulnerability in the Oracle Web Services Manager component ...) + TODO: check CVE-2011-2236 RESERVED CVE-2011-2235