commit: 7ccb0e33035d00b9f440dea4967689b2eef51100
Author: cvebot <cvebot <AT> localhost>
AuthorDate: Wed Nov 17 17:15:28 2010 +0000
Commit: Pavlos Ratis <dastergon <AT> gentoo <DOT> org>
CommitDate: Wed Nov 17 17:15:28 2010 +0000
URL:
http://git.overlays.gentoo.org/gitweb/?p=proj/security.git;a=commit;h=7ccb0e33
MITRE sync
svn path=/; revision=2208
---
data/CVE/list | 111 +++++++++++++++++++++++++++++++++++++++++++++-------------
1 file changed, 86 insertions(+), 25 deletions(-)
diff --git a/data/CVE/list b/data/CVE/list
index bf5ea9d..a354d17 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -89391,7 +89391,7 @@ CVE-2010-1843 (Networking in Apple Mac OS X 10.6.2
through 10.6.4 allows remote
TODO: check
CVE-2010-1844 (Unspecified vulnerability in Image Capture in Apple Mac OS X
10.6.x ...)
TODO: check
-CVE-2010-1845 (ImageIO in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5
allows remote ...)
+CVE-2010-1845 (ImageIO in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5
allows ...)
TODO: check
CVE-2010-1846 (Heap-based buffer overflow in Image RAW in Apple Mac OS X
10.5.8 and ...)
TODO: check
@@ -93281,13 +93281,13 @@ CVE-2010-3783 (Password Server in Apple Mac OS X
10.5.8 and 10.6.x before 10.6.5
TODO: check
CVE-2010-3784 (The PMPageFormatCreateWithDataRepresentation API in Printing in
Apple ...)
TODO: check
-CVE-2010-3785 (Buffer overflow in QuickLook in Apple Mac OS X 10.5.8 and
10.6.x before ...)
+CVE-2010-3785 (Buffer overflow in QuickLook in Apple Mac OS X 10.5.8 and
10.6.x ...)
TODO: check
CVE-2010-3786 (QuickLook in Apple Mac OS X 10.6.x before 10.6.5 allows remote
...)
TODO: check
-CVE-2010-3787 (Heap-based buffer overflow in QuickTime in Apple Mac OS X
10.6.x before ...)
+CVE-2010-3787 (Heap-based buffer overflow in QuickTime in Apple Mac OS X
10.6.x ...)
TODO: check
-CVE-2010-3788 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses
uninitialized ...)
+CVE-2010-3788 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses ...)
TODO: check
CVE-2010-3789 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote
...)
TODO: check
@@ -93299,13 +93299,13 @@ CVE-2010-3792 (Integer signedness error in QuickTime
in Apple Mac OS X 10.6.x be
TODO: check
CVE-2010-3793 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote
...)
TODO: check
-CVE-2010-3794 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses
uninitialized ...)
+CVE-2010-3794 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses ...)
TODO: check
-CVE-2010-3795 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses
uninitialized ...)
+CVE-2010-3795 (QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses ...)
TODO: check
CVE-2010-3796 (Safari RSS in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5
does not ...)
TODO: check
-CVE-2010-3797 (Cross-site scripting (XSS) vulnerability in Wiki Server in
Apple Mac OS ...)
+CVE-2010-3797 (Cross-site scripting (XSS) vulnerability in Wiki Server in
Apple Mac ...)
TODO: check
CVE-2010-3798 (Heap-based buffer overflow in xar in Apple Mac OS X 10.6.x
before ...)
TODO: check
@@ -93439,18 +93439,18 @@ CVE-2010-3862
RESERVED
CVE-2010-3863 (Apache Shiro before 1.1.0, and JSecurity 0.9.x, does not
canonicalize ...)
TODO: check
-CVE-2010-3864
- RESERVED
+CVE-2010-3864 (Multiple race conditions in ssl/t1_lib.c in OpenSSL 0.9.8f
through ...)
+ TODO: check
CVE-2010-3865
RESERVED
CVE-2010-3866
REJECTED
CVE-2010-3867 (Multiple directory traversal vulnerabilities in the
mod_site_misc ...)
TODO: check
-CVE-2010-3868
- RESERVED
-CVE-2010-3869
- RESERVED
+CVE-2010-3868 (Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag
Certificate ...)
+ TODO: check
+CVE-2010-3869 (Red Hat Certificate System (RHCS) 7.3 and 8 and Dogtag
Certificate ...)
+ TODO: check
CVE-2010-3870 (The utf8_decode function in PHP before 5.3.4 does not properly
handle ...)
TODO: check
CVE-2010-3871 (Cross-site scripting (XSS) vulnerability in ...)
@@ -93668,8 +93668,8 @@ CVE-2010-3976 (Untrusted search path vulnerability in
Adobe Flash Player before
TODO: check
CVE-2010-3977 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
TODO: check
-CVE-2010-3978
- RESERVED
+CVE-2010-3978 (Spree 0.11.x before 0.11.2 and 0.30.x before 0.30.0 exchanges
data ...)
+ TODO: check
CVE-2010-3979 (Dswsbobje in SAP BusinessObjects Enterprise XI 3.2 generates
different ...)
NOT-FOR-US: sap businessobjects
CVE-2010-3980 (Dswsbobje in SAP BusinessObjects Enterprise XI 3.2 does not
limit the ...)
@@ -93728,13 +93728,13 @@ CVE-2010-4006 (Multiple SQL injection vulnerabilities
in search.php in WSN Links
TODO: check
CVE-2010-4007 (Oracle Mojarra uses an encrypted View State without a Message
...)
NOT-FOR-US: oracle mojarra
-CVE-2010-4008 (libxml2 before 2.7.8, as used in Google Chrome before
7.0.517.44, Apple ...)
+CVE-2010-4008 (libxml2 before 2.7.8, as used in Google Chrome before
7.0.517.44, ...)
TODO: check
CVE-2010-4009
RESERVED
-CVE-2010-4010 (Integer signedness error in Apple Type Services (ATS) in Apple
Mac OS X ...)
+CVE-2010-4010 (Integer signedness error in Apple Type Services (ATS) in Apple
Mac OS ...)
TODO: check
-CVE-2010-4011 (Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly
manage memory ...)
+CVE-2010-4011 (Dovecot in Apple Mac OS X 10.6.5 10H574 does not properly
manage ...)
TODO: check
CVE-2010-4012
RESERVED
@@ -93926,8 +93926,8 @@ CVE-2010-4105 (Unspecified vulnerability in HP Insight
Orchestration before 6.2
TODO: check
CVE-2010-4106 (Cross-site request forgery (CSRF) vulnerability in HP Insight
Control ...)
TODO: check
-CVE-2010-4107
- RESERVED
+CVE-2010-4107 (The default configuration of the PJL Access value in the File
System ...)
+ TODO: check
CVE-2010-4108
RESERVED
CVE-2010-4109
@@ -94030,8 +94030,8 @@ CVE-2010-4157
RESERVED
CVE-2010-4158
RESERVED
-CVE-2010-4159
- RESERVED
+CVE-2010-4159 (Untrusted search path vulnerability in metadata/loader.c in
Mono 2.8 ...)
+ TODO: check
CVE-2010-4160
RESERVED
CVE-2010-4161
@@ -94048,8 +94048,8 @@ CVE-2010-4166
RESERVED
CVE-2010-4167
RESERVED
-CVE-2010-4168
- RESERVED
+CVE-2010-4168 (Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before
1.0.5 ...)
+ TODO: check
CVE-2010-4169
RESERVED
CVE-2010-4170
@@ -94113,6 +94113,7 @@ CVE-2010-4198 (Google Chrome before 7.0.517.44 does not
properly handle large te
CVE-2010-4199 (Google Chrome before 7.0.517.44 does not properly perform a
cast of an ...)
TODO: check
CVE-2010-4200 (Google Chrome before 7.0.517.44 reads from invalid memory
locations ...)
+ REJECTED
TODO: check
CVE-2010-4201 (Use-after-free vulnerability in Google Chrome before 7.0.517.44
allows ...)
TODO: check
@@ -94188,9 +94189,69 @@ CVE-2010-4236 (Untrusted search path vulnerability in
estaskwrapper in IBM OmniF
TODO: check
CVE-2010-4237
RESERVED
+CVE-2010-4238
+ RESERVED
+CVE-2010-4239
+ RESERVED
+CVE-2010-4240
+ RESERVED
+CVE-2010-4241
+ RESERVED
+CVE-2010-4242
+ RESERVED
+CVE-2010-4243
+ RESERVED
+CVE-2010-4244
+ RESERVED
+CVE-2010-4245
+ RESERVED
+CVE-2010-4246
+ RESERVED
+CVE-2010-4247
+ RESERVED
+CVE-2010-4248
+ RESERVED
+CVE-2010-4249
+ RESERVED
+CVE-2010-4250
+ RESERVED
+CVE-2010-4251
+ RESERVED
+CVE-2010-4252
+ RESERVED
+CVE-2010-4253
+ RESERVED
+CVE-2010-4254
+ RESERVED
+CVE-2010-4255
+ RESERVED
+CVE-2010-4256
+ RESERVED
+CVE-2010-4257
+ RESERVED
+CVE-2010-4258
+ RESERVED
+CVE-2010-4259
+ RESERVED
+CVE-2010-4260
+ RESERVED
+CVE-2010-4261
+ RESERVED
+CVE-2010-4262
+ RESERVED
+CVE-2010-4263
+ RESERVED
+CVE-2010-4264
+ RESERVED
+CVE-2010-4265
+ RESERVED
+CVE-2010-4266
+ RESERVED
+CVE-2010-4267
+ RESERVED
CVE-2010-4268 (SQL injection vulnerability in the Pulse Infotech Flip Wall ...)
TODO: check
-CVE-2010-4269 (SQL injection vulnerability in managechat.php in Collabtive
0.65 allows ...)
+CVE-2010-4269 (SQL injection vulnerability in managechat.php in Collabtive
0.65 ...)
TODO: check
CVE-2010-4270 (Directory traversal vulnerability in the nBill (com_netinvoice)
...)
TODO: check
