thr3ads.net - Secure testing commits - [Secure-testing-commits] r18265

If this information is useful, please help other people find it:
Share via:
Joey Hess
2012-Jan-23 21:14 UTC
[Secure-testing-commits] r18265 - data/CVE

Author: joeyh
Date: 2012-01-23 21:14:39 +0000 (Mon, 23 Jan 2012)
New Revision: 18265

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-01-23 19:17:40 UTC (rev 18264)
+++ data/CVE/list	2012-01-23 21:14:39 UTC (rev 18265)
@@ -1,5 +1,51 @@
+CVE-2012-0909
+	RESERVED
+CVE-2012-0907 (Directory traversal vulnerability in the web player in NeoAxis
NeoAxis ...)
+	TODO: check
+CVE-2012-0906 (SQL injection vulnerability in the Moviebase addon for
deV!L''z ...)
+	TODO: check
+CVE-2012-0905 (SQL injection vulnerability in deV!L''z Clanportal
(DZCP) Gamebase ...)
+	TODO: check
+CVE-2012-0904 (VLC media player 1.1.11 allows remote attackers to cause a
denial of ...)
+	TODO: check
+CVE-2012-0903 (Multiple cross-site scripting (XSS) vulnerabilities in Zimbra
Desktop ...)
+	TODO: check
+CVE-2012-0902 (AirTies Air 4450 1.1.2.18 allows remote attackers to cause a
denial of ...)
+	TODO: check
+CVE-2012-0901 (Cross-site scripting (XSS) vulnerability in yousaytoo.php in
YouSayToo ...)
+	TODO: check
+CVE-2012-0900 (Multiple cross-site scripting (XSS) vulnerabilities in Beehive
Forum ...)
+	TODO: check
+CVE-2012-0899 (Cross-site scripting (XSS) vulnerability in ...)
+	TODO: check
+CVE-2012-0898 (Directory traversal vulnerability in meb_download.php in the
...)
+	TODO: check
+CVE-2012-0897 (Stack-based buffer overflow in the JPEG2000 plugin in IrfanView
...)
+	TODO: check
+CVE-2012-0896 (Absolute path traversal vulnerability in download.php in the
Count Per ...)
+	TODO: check
+CVE-2012-0895 (Cross-site scripting (XSS) vulnerability in map/map.php in the
Count ...)
+	TODO: check
+CVE-2012-0894
+	RESERVED
+CVE-2012-0893
+	RESERVED
+CVE-2012-0892
+	RESERVED
+CVE-2012-0891
+	RESERVED
+CVE-2012-0890
+	RESERVED
+CVE-2012-0889
+	RESERVED
+CVE-2012-0888
+	RESERVED
+CVE-2012-0887
+	RESERVED
+CVE-2012-0886
+	RESERVED
 CVE-2012-0908
-	{DSA-2387-1}
+	RESERVED
 	- simplesamlphp 1.8.2-1
 	NOTE: http://code.google.com/p/simplesamlphp/issues/detail?id=468
 CVE-2012-0884
@@ -2693,6 +2739,7 @@
 	RESERVED
 	- tahoe-lafs <not-affected> (Only affects 1.9.0, not uploaded to the
archive)
 CVE-2012-0050 (OpenSSL 0.9.8s and 1.0.0f does not properly support DTLS
applications, ...)
+	{DSA-2392-1}
 	- openssl 1.0.0g-1
 	NOTE: http://www.openssl.org/news/secadv_20120118.txt
 CVE-2012-0049
@@ -72540,7 +72587,7 @@
 	NOT-FOR-US: Microsoft ASP .NET Framework
 CVE-2005-4837 (snmp_api.c in snmpd in Net-SNMP 5.2.x before 5.2.2, 5.1.x before
...)
 	- net-snmp 5.2.2-1 (medium)
-CVE-2005-4836 (The HTTP/1.1 connector in Apache Tomcat 4.1.15 and later does
not ...)
+CVE-2005-4836 (The HTTP/1.1 connector in Apache Tomcat 4.1.15 through 4.1.40
does not ...)
 	[sarge] - tomcat4 <no-dsa> (affects deprecated HTTP/1.1 connector only)
 CVE-2007-XXXX [initramfs-tools creates /dev/root world-readable]
 	- initramfs-tools 0.85g (low; bug #417995)
Secure testing commits - Jan 2012 - r18265 - data/CVE

[Secure-testing-commits] r18265 - data/CVE
