From 24c3e5243966bd9032026bc407b153f5163465cb Mon Sep 17 00:00:00 2001 From: cvebot Date: Thu, 9 Sep 2010 16:15:46 +0000 Subject: MITRE sync svn path=/; revision=2131 --- data/CVE/list | 60 +++++++++++++++++++++++++++++++---------------------------- 1 file changed, 32 insertions(+), 28 deletions(-) (limited to 'data/CVE') diff --git a/data/CVE/list b/data/CVE/list index d5ccc0b..c948434 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -85405,8 +85405,8 @@ CVE-2009-4893 (Buffer overflow in UnrealIRCd 3.2beta11 through 3.2.8, when ...) BUG: 325547 CVE-2009-4894 (Multiple cross-site scripting (XSS) vulnerabilities in profile.php in ...) NOT-FOR-US: punbb -CVE-2009-4895 - RESERVED +CVE-2009-4895 (Race condition in the tty_fasync function in drivers/char/tty_io.c in ...) + TODO: check CVE-2009-4896 (Multiple directory traversal vulnerabilities in the mlmmj-php-admin ...) BUG: 259968 CVE-2009-4897 (Buffer overflow in gs/psi/iscan.c in Ghostscript 8.64 and earlier ...) @@ -89766,8 +89766,8 @@ CVE-2010-2064 RESERVED CVE-2010-2065 (Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 ...) TODO: check -CVE-2010-2066 - RESERVED +CVE-2010-2066 (The mext_check_arguments function in fs/ext4/move_extent.c in the ...) + TODO: check CVE-2010-2067 (Stack-based buffer overflow in the TIFFFetchSubjectDistance function ...) TODO: check CVE-2010-2068 (mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 ...) @@ -90619,14 +90619,14 @@ CVE-2010-2490 RESERVED CVE-2010-2491 RESERVED -CVE-2010-2492 - RESERVED +CVE-2010-2492 (Buffer overflow in the ecryptfs_uid_hash macro in ...) + TODO: check CVE-2010-2493 (The default configuration of the deployment descriptor (aka web.xml) ...) NOT-FOR-US: redhat jboss_enterprise_soa_platform CVE-2010-2494 (Multiple buffer underflows in the base64 decoder in base64.c in (1) ...) BUG: 327657 -CVE-2010-2495 - RESERVED +CVE-2010-2495 (The pppol2tp_xmit function in drivers/net/pppol2tp.c in the L2TP ...) + TODO: check CVE-2010-2496 RESERVED CVE-2010-2497 (Integer underflow in glyph handling in FreeType before 2.4.0 allows ...) @@ -90683,8 +90683,8 @@ CVE-2010-2522 (The mipv6 daemon in UMIP 0.4 does not verify that netlink message NOT-FOR-US: linux ipv6 umip CVE-2010-2523 (Multiple buffer overflows in ha.c in the mipv6 daemon in UMIP 0.4 ...) NOT-FOR-US: linux ipv6 umip -CVE-2010-2524 - RESERVED +CVE-2010-2524 (The DNS resolution functionality in the CIFS implementation in the ...) + TODO: check CVE-2010-2525 RESERVED CVE-2010-2526 (The cluster logical volume manager daemon (clvmd) in lvm2-cluster in ...) @@ -91231,8 +91231,8 @@ CVE-2010-2796 (Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, NOT-FOR-US: phpCAS CVE-2010-2797 RESERVED -CVE-2010-2798 - RESERVED +CVE-2010-2798 (The gfs2_dirent_find_space function in fs/gfs2/dir.c in the Linux ...) + TODO: check CVE-2010-2799 RESERVED CVE-2010-2800 (The MS-ZIP decompressor in cabextract before 1.3 allows remote ...) @@ -91241,8 +91241,8 @@ CVE-2010-2801 (Integer signedness error in the Quantum decompressor in cabextrac BUG: 329891 CVE-2010-2802 (Cross-site scripting (XSS) vulnerability in MantisBT before 1.2.2 ...) TODO: check -CVE-2010-2803 - RESERVED +CVE-2010-2803 (The drm_ioctl function in drivers/gpu/drm/drm_drv.c in the Direct ...) + TODO: check CVE-2010-2804 RESERVED CVE-2010-2805 (The FT_Stream_EnterFrame function in base/ftstream.c in FreeType ...) @@ -91545,18 +91545,18 @@ CVE-2010-2953 RESERVED CVE-2010-2954 (The irda_bind function in net/irda/af_irda.c in the Linux kernel ...) TODO: check -CVE-2010-2955 - RESERVED +CVE-2010-2955 (The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in ...) + TODO: check CVE-2010-2956 RESERVED CVE-2010-2957 RESERVED -CVE-2010-2958 - RESERVED -CVE-2010-2959 - RESERVED -CVE-2010-2960 - RESERVED +CVE-2010-2958 (Cross-site scripting (XSS) vulnerability in libraries/Error.class.php ...) + TODO: check +CVE-2010-2959 (Integer overflow in net/can/bcm.c in the Controller Area Network (CAN) ...) + TODO: check +CVE-2010-2960 (The keyctl_session_to_parent function in security/keys/keyctl.c in the ...) + TODO: check CVE-2010-2961 RESERVED CVE-2010-2962 @@ -91644,10 +91644,10 @@ CVE-2010-3002 (Unspecified vulnerability in RealNetworks RealPlayer 11.0 through NOT-FOR-US: realnetworks realplayer CVE-2010-3003 RESERVED -CVE-2010-3004 - RESERVED -CVE-2010-3005 - RESERVED +CVE-2010-3004 (Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on ...) + TODO: check +CVE-2010-3005 (Unspecified vulnerability in HP Operations Agent 7.36 and 8.6 on ...) + TODO: check CVE-2010-3006 RESERVED CVE-2010-3007 @@ -92033,8 +92033,8 @@ CVE-2010-3196 (IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows remo NOT-FOR-US: ibm db2 CVE-2010-3197 (IBM DB2 9.7 before FP2 does not perform the expected access control on ...) NOT-FOR-US: ibm db2 -CVE-2010-3198 - RESERVED +CVE-2010-3198 (ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7 allows ...) + TODO: check CVE-2010-3199 RESERVED CVE-2010-3200 @@ -92163,3 +92163,7 @@ CVE-2010-3261 RESERVED CVE-2010-3262 RESERVED +CVE-2010-3263 + RESERVED +CVE-2010-3264 (The engine installer in Novell Identity Manager (aka IDM) 3.6.1 stores ...) + TODO: check -- cgit v1.2.3-65-gdbad