thr3ads.net - Secure testing commits - [Secure-testing-commits] r17502

If this information is useful, please help other people find it:
Share via:
Joey Hess
2011-Oct-26 21:14 UTC
[Secure-testing-commits] r17502 - data/CVE

Author: joeyh
Date: 2011-10-26 21:14:19 +0000 (Wed, 26 Oct 2011)
New Revision: 17502

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2011-10-26 15:36:15 UTC (rev 17501)
+++ data/CVE/list	2011-10-26 21:14:19 UTC (rev 17502)
@@ -1,3 +1,35 @@
+CVE-2011-4196
+	RESERVED
+CVE-2011-4195
+	RESERVED
+CVE-2011-4194
+	RESERVED
+CVE-2011-4193
+	RESERVED
+CVE-2011-4192
+	RESERVED
+CVE-2011-4191
+	RESERVED
+CVE-2011-4190
+	RESERVED
+CVE-2011-4189
+	RESERVED
+CVE-2011-4188
+	RESERVED
+CVE-2011-4187
+	RESERVED
+CVE-2011-4186
+	RESERVED
+CVE-2011-4185
+	RESERVED
+CVE-2011-4184
+	RESERVED
+CVE-2011-4183
+	RESERVED
+CVE-2011-4182
+	RESERVED
+CVE-2011-4181
+	RESERVED
 CVE-2011-4180
 	RESERVED
 CVE-2011-4179
@@ -859,40 +891,40 @@
 	RESERVED
 CVE-2011-3892
 	RESERVED
-CVE-2011-3891
-	RESERVED
-CVE-2011-3890
-	RESERVED
-CVE-2011-3889
-	RESERVED
-CVE-2011-3888
-	RESERVED
-CVE-2011-3887
-	RESERVED
-CVE-2011-3886
-	RESERVED
-CVE-2011-3885
-	RESERVED
-CVE-2011-3884
-	RESERVED
-CVE-2011-3883
-	RESERVED
-CVE-2011-3882
-	RESERVED
-CVE-2011-3881
-	RESERVED
-CVE-2011-3880
-	RESERVED
-CVE-2011-3879
-	RESERVED
-CVE-2011-3878
-	RESERVED
-CVE-2011-3877
-	RESERVED
-CVE-2011-3876
-	RESERVED
-CVE-2011-3875
-	RESERVED
+CVE-2011-3891 (Google Chrome before 15.0.874.102 does not properly restrict
access to ...)
+	TODO: check
+CVE-2011-3890 (Use-after-free vulnerability in Google Chrome before
15.0.874.102 ...)
+	TODO: check
+CVE-2011-3889 (Heap-based buffer overflow in the Web Audio implementation in
Google ...)
+	TODO: check
+CVE-2011-3888 (Use-after-free vulnerability in Google Chrome before
15.0.874.102 ...)
+	TODO: check
+CVE-2011-3887 (Google Chrome before 15.0.874.102 does not properly handle
javascript: ...)
+	TODO: check
+CVE-2011-3886 (Google V8, as used in Google Chrome before 15.0.874.102, allows
remote ...)
+	TODO: check
+CVE-2011-3885 (Use-after-free vulnerability in Google Chrome before
15.0.874.102 ...)
+	TODO: check
+CVE-2011-3884 (Google Chrome before 15.0.874.102 does not properly address
timing ...)
+	TODO: check
+CVE-2011-3883 (Use-after-free vulnerability in Google Chrome before
15.0.874.102 ...)
+	TODO: check
+CVE-2011-3882 (Use-after-free vulnerability in Google Chrome before
15.0.874.102 ...)
+	TODO: check
+CVE-2011-3881 (Google Chrome before 15.0.874.102 allows remote attackers to
bypass ...)
+	TODO: check
+CVE-2011-3880 (Google Chrome before 15.0.874.102 does not prevent use of an
...)
+	TODO: check
+CVE-2011-3879 (Google Chrome before 15.0.874.102 does not prevent redirects to
...)
+	TODO: check
+CVE-2011-3878 (Race condition in Google Chrome before 15.0.874.102 allows
remote ...)
+	TODO: check
+CVE-2011-3877 (Cross-site scripting (XSS) vulnerability in the appcache
internals ...)
+	TODO: check
+CVE-2011-3876 (Google Chrome before 15.0.874.102 does not properly handle
downloading ...)
+	TODO: check
+CVE-2011-3875 (Google Chrome before 15.0.874.102 does not properly handle drag
and ...)
+	TODO: check
 CVE-2011-3874
 	RESERVED
 CVE-2011-3873 (Google Chrome before 14.0.835.202 does not properly implement
shader ...)
@@ -3660,8 +3692,8 @@
 CVE-2011-2846 (Use-after-free vulnerability in Google Chrome before
14.0.835.163 ...)
 	- chromium-browser 14.0.835.163~r101024-1
 	- webkit <undetermined>
-CVE-2011-2845
-	RESERVED
+CVE-2011-2845 (Google Chrome before 15.0.874.102 does not properly handle
history ...)
+	TODO: check
 CVE-2011-2844 (Google Chrome before 14.0.835.163 does not properly process MP3
files, ...)
 	- chromium-browser 14.0.835.163~r101024-1
 	[squeeze] - chromium-browser <not-affected>
@@ -20320,7 +20352,7 @@
 	[lenny] - apache2 <not-affected> (vulnerable code introduced in 2.2.15-2
or -3)
 CVE-2010-1622 (SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7
before ...)
 	- libspring-2.5-java 2.5.6.SEC02-1 (medium)
-CVE-2010-1621 (The mysql_uninstall_plugin function in sql/sql_plugin.cc in
MySQL ...)
+CVE-2010-1621 (The mysql_uninstall_plugin function in sql/sql_plugin.cc in
MySQL 5.1 ...)
 	- mysql-5.1 5.1.46-1
 	- mysql-dfsg-5.0 <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=590190
Secure testing commits - Oct 2011 - r17502 - data/CVE

[Secure-testing-commits] r17502 - data/CVE
