Author: joeyh
Date: 2011-10-19 21:14:20 +0000 (Wed, 19 Oct 2011)
New Revision: 17458
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-10-19 20:33:53 UTC (rev 17457)
+++ data/CVE/list 2011-10-19 21:14:20 UTC (rev 17458)
@@ -1,3 +1,143 @@
+CVE-2011-4140 (The CSRF protection mechanism in Django through 1.2.7 and 1.3.x
...)
+ TODO: check
+CVE-2011-4139 (Django before 1.2.7 and 1.3.x before 1.3.1 uses a request's
HTTP Host ...)
+ TODO: check
+CVE-2011-4138 (The verify_exists functionality in the URLField implementation
in ...)
+ TODO: check
+CVE-2011-4137 (The verify_exists functionality in the URLField implementation
in ...)
+ TODO: check
+CVE-2011-4136 (django.contrib.sessions in Django before 1.2.7 and 1.3.x before
1.3.1, ...)
+ TODO: check
+CVE-2011-4135
+ RESERVED
+CVE-2011-4134
+ RESERVED
+CVE-2011-4133
+ RESERVED
+CVE-2011-4132
+ RESERVED
+CVE-2011-4131
+ RESERVED
+CVE-2011-4130
+ RESERVED
+CVE-2011-4129
+ RESERVED
+CVE-2011-4128
+ RESERVED
+CVE-2011-4127
+ RESERVED
+CVE-2011-4126
+ RESERVED
+CVE-2011-4125
+ RESERVED
+CVE-2011-4124
+ RESERVED
+CVE-2011-4123
+ RESERVED
+CVE-2011-4122
+ RESERVED
+CVE-2011-4121
+ RESERVED
+CVE-2011-4120
+ RESERVED
+CVE-2011-4119
+ RESERVED
+CVE-2011-4118
+ RESERVED
+CVE-2011-4117
+ RESERVED
+CVE-2011-4116
+ RESERVED
+CVE-2011-4115
+ RESERVED
+CVE-2011-4114
+ RESERVED
+CVE-2011-4113
+ RESERVED
+CVE-2011-4112
+ RESERVED
+CVE-2011-4111
+ RESERVED
+CVE-2011-4110
+ RESERVED
+CVE-2011-4109
+ RESERVED
+CVE-2011-4108
+ RESERVED
+CVE-2011-4107
+ RESERVED
+CVE-2011-4106
+ RESERVED
+CVE-2011-4105
+ RESERVED
+CVE-2011-4104
+ RESERVED
+CVE-2011-4103
+ RESERVED
+CVE-2011-4102
+ RESERVED
+CVE-2011-4101
+ RESERVED
+CVE-2011-4100
+ RESERVED
+CVE-2011-4099
+ RESERVED
+CVE-2011-4098
+ RESERVED
+CVE-2011-4097
+ RESERVED
+CVE-2011-4096
+ RESERVED
+CVE-2011-4095
+ RESERVED
+CVE-2011-4094
+ RESERVED
+CVE-2011-4093
+ RESERVED
+CVE-2011-4092
+ RESERVED
+CVE-2011-4091
+ RESERVED
+CVE-2011-4090
+ RESERVED
+CVE-2011-4089
+ RESERVED
+CVE-2011-4088
+ RESERVED
+CVE-2011-4087
+ RESERVED
+CVE-2011-4086
+ RESERVED
+CVE-2011-4085
+ RESERVED
+CVE-2011-4084
+ RESERVED
+CVE-2011-4083
+ RESERVED
+CVE-2011-4082
+ RESERVED
+CVE-2011-4081
+ RESERVED
+CVE-2011-4080
+ RESERVED
+CVE-2011-4079
+ RESERVED
+CVE-2011-4078
+ RESERVED
+CVE-2011-4077
+ RESERVED
+CVE-2011-4076
+ RESERVED
+CVE-2011-4075
+ RESERVED
+CVE-2011-4074
+ RESERVED
+CVE-2011-4073
+ RESERVED
+CVE-2007-6744
+ RESERVED
+CVE-2006-7246
+ RESERVED
CVE-2011-XXXX [incorrect OPENSSL_assert() in DTLS code]
- openssl <unfixed> (low; bug #645805)
NOTE:
http://rt.openssl.org/Ticket/Display.html?id=2625&user=guest&pass=guest
@@ -1426,8 +1566,8 @@
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 <unfixed>
- openjdk-7 <unfixed>
-CVE-2011-3559
- RESERVED
+CVE-2011-3559 (Unspecified vulnerability in Oracle Communications Server 2.0;
...)
+ TODO: check
CVE-2011-3558
RESERVED
- sun-java6 <unfixed> (bug #645881)
@@ -1502,87 +1642,87 @@
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 <unfixed>
- openjdk-7 <unfixed>
-CVE-2011-3543
- RESERVED
-CVE-2011-3542
- RESERVED
-CVE-2011-3541
- RESERVED
+CVE-2011-3543 (Unspecified vulnerability in Oracle Solaris 11 Express allows
remote ...)
+ TODO: check
+CVE-2011-3542 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express
allows ...)
+ TODO: check
+CVE-2011-3541 (Unspecified vulnerability in the Oracle Outside In Technology
...)
+ TODO: check
CVE-2011-3540
RESERVED
-CVE-2011-3539
- RESERVED
-CVE-2011-3538
- RESERVED
-CVE-2011-3537
- RESERVED
-CVE-2011-3536
- RESERVED
-CVE-2011-3535
- RESERVED
-CVE-2011-3534
- RESERVED
-CVE-2011-3533
- RESERVED
-CVE-2011-3532
- RESERVED
+CVE-2011-3539 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express
allows ...)
+ TODO: check
+CVE-2011-3538 (Unspecified vulnerability in the Sun Ray component in Oracle
...)
+ TODO: check
+CVE-2011-3537 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
+ TODO: check
+CVE-2011-3536 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
+ TODO: check
+CVE-2011-3535 (Unspecified vulnerability in the Solaris component in Oracle
Sun ...)
+ TODO: check
+CVE-2011-3534 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
+ TODO: check
+CVE-2011-3533 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
+ TODO: check
+CVE-2011-3532 (Unspecified vulnerability in the Oracle Agile Product Supplier
...)
+ TODO: check
CVE-2011-3531
RESERVED
-CVE-2011-3530
- RESERVED
-CVE-2011-3529
- RESERVED
-CVE-2011-3528
- RESERVED
-CVE-2011-3527
- RESERVED
-CVE-2011-3526
- RESERVED
-CVE-2011-3525
- RESERVED
+CVE-2011-3530 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
+ TODO: check
+CVE-2011-3529 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
+ TODO: check
+CVE-2011-3528 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
+ TODO: check
+CVE-2011-3527 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
+ TODO: check
+CVE-2011-3526 (Unspecified vulnerability in the Siebel Core - UIF Server
component in ...)
+ TODO: check
+CVE-2011-3525 (Unspecified vulnerability in the Application Express component
in ...)
+ TODO: check
CVE-2011-3524
RESERVED
-CVE-2011-3523
- RESERVED
-CVE-2011-3522
- RESERVED
+CVE-2011-3523 (Unspecified vulnerability in the Oracle Web Services Manager
component ...)
+ TODO: check
+CVE-2011-3522 (Unspecified vulnerability in SysFW 8.0 on certain SPARC T3,
Netra ...)
+ TODO: check
CVE-2011-3521
RESERVED
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 <unfixed>
- openjdk-7 <unfixed>
-CVE-2011-3520
- RESERVED
-CVE-2011-3519
- RESERVED
-CVE-2011-3518
- RESERVED
-CVE-2011-3517
- RESERVED
+CVE-2011-3520 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
+ TODO: check
+CVE-2011-3519 (Unspecified vulnerability in the Oracle Applications Framework
...)
+ TODO: check
+CVE-2011-3518 (Unspecified vulnerability in the Siebel Core - UIF Client
component in ...)
+ TODO: check
+CVE-2011-3517 (Unspecified vulnerability in the Oracle OpenSSO component in
Oracle ...)
+ TODO: check
CVE-2011-3516
RESERVED
- sun-java6 <not-affected> (Windows-specific)
- openjdk-6 <not-affected> (Windows-specific)
-CVE-2011-3515
- RESERVED
+CVE-2011-3515 (Unspecified vulnerability in the Oracle Solaris 10 and 11
Express ...)
+ TODO: check
CVE-2011-3514
RESERVED
-CVE-2011-3513
- RESERVED
-CVE-2011-3512
- RESERVED
-CVE-2011-3511
- RESERVED
-CVE-2011-3510
- RESERVED
+CVE-2011-3513 (Unspecified vulnerability in the Oracle Application Object
Library ...)
+ TODO: check
+CVE-2011-3512 (Unspecified vulnerability in the Core RDBMS component in Oracle
...)
+ TODO: check
+CVE-2011-3511 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
+ TODO: check
+CVE-2011-3510 (Unspecified vulnerability in the Oracle Business Intelligence
...)
+ TODO: check
CVE-2011-3509
RESERVED
-CVE-2011-3508
- RESERVED
-CVE-2011-3507
- RESERVED
-CVE-2011-3506
- RESERVED
+CVE-2011-3508 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
+ TODO: check
+CVE-2011-3507 (Unspecified vulnerability in the Oracle Communications Unified
...)
+ TODO: check
+CVE-2011-3506 (Unspecified vulnerability in the Oracle OpenSSO component in
Oracle ...)
+ TODO: check
CVE-2011-3505
RESERVED
CVE-2011-3504 (The Matroska format decoder in FFmpeg before 0.8.3 does not
properly ...)
@@ -4866,61 +5006,61 @@
RESERVED
CVE-2011-2329 (The rampart_timestamp_token_validate function in ...)
- rampart <unfixed> (bug #631221)
-CVE-2011-2327
- RESERVED
+CVE-2011-2327 (Unspecified vulnerability in the Oracle Communications Unified
...)
+ TODO: check
CVE-2011-2326
RESERVED
CVE-2011-2325
RESERVED
CVE-2011-2324
RESERVED
-CVE-2011-2323
- RESERVED
-CVE-2011-2322
- RESERVED
+CVE-2011-2323 (Unspecified vulnerability in the Health Sciences - Oracle
Thesaurus ...)
+ TODO: check
+CVE-2011-2322 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
+ TODO: check
CVE-2011-2321
RESERVED
-CVE-2011-2320
- RESERVED
-CVE-2011-2319
- RESERVED
-CVE-2011-2318
- RESERVED
+CVE-2011-2320 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
+ TODO: check
+CVE-2011-2319 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
+ TODO: check
+CVE-2011-2318 (Unspecified vulnerability in the Oracle WebLogic Server
component in ...)
+ TODO: check
CVE-2011-2317
RESERVED
-CVE-2011-2316
- RESERVED
-CVE-2011-2315
- RESERVED
-CVE-2011-2314
- RESERVED
-CVE-2011-2313
- RESERVED
-CVE-2011-2312
- RESERVED
-CVE-2011-2311
- RESERVED
-CVE-2011-2310
- RESERVED
-CVE-2011-2309
- RESERVED
-CVE-2011-2308
- RESERVED
+CVE-2011-2316 (Unspecified vulnerability in the Siebel Apps - Marketing
component in ...)
+ TODO: check
+CVE-2011-2315 (Unspecified vulnerability in the PeopleSoft Enterprise
PeopleTools ...)
+ TODO: check
+CVE-2011-2314 (Unspecified vulnerability in the Oracle Containers for J2EE
component ...)
+ TODO: check
+CVE-2011-2313 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
+ TODO: check
+CVE-2011-2312 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
+ TODO: check
+CVE-2011-2311 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
+ TODO: check
+CVE-2011-2310 (Unspecified vulnerability in the Oracle Waveset component in
Oracle ...)
+ TODO: check
+CVE-2011-2309 (Unspecified vulnerability in the Health Sciences - Oracle
Clinical, ...)
+ TODO: check
+CVE-2011-2308 (Unspecified vulnerability in the Oracle Application Object
Library ...)
+ TODO: check
CVE-2011-2307 (Unspecified vulnerability in Oracle SysFW 8.1.0.a in various
Oracle ...)
NOT-FOR-US: Oracle SysFW
-CVE-2011-2306
- RESERVED
+CVE-2011-2306 (Unspecified vulnerability in Oracle Linux 4 and 5 allows remote
...)
+ TODO: check
CVE-2011-2305 (Unspecified vulnerability in Oracle VM VirtualBox 3.0, 3.1,
3.2, and ...)
- virtualbox-ose <not-affected> (Only affects 4.x)
- virtualbox 4.0.10-dfsg-1
-CVE-2011-2304
- RESERVED
-CVE-2011-2303
- RESERVED
-CVE-2011-2302
- RESERVED
-CVE-2011-2301
- RESERVED
+CVE-2011-2304 (Unspecified vulnerability in Oracle Solaris 10 allows remote
attackers ...)
+ TODO: check
+CVE-2011-2303 (Unspecified vulnerability in the Oracle Application Object
Library ...)
+ TODO: check
+CVE-2011-2302 (Unspecified vulnerability in the Oracle Application Object
Library ...)
+ TODO: check
+CVE-2011-2301 (Unspecified vulnerability in the Oracle Text component in
Oracle ...)
+ TODO: check
CVE-2011-2300 (Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows
local ...)
- virtualbox-guest-additions <removed> (bug #635276)
[squeeze] - virtualbox-guest-additions <no-dsa> (Non-free not supported)
@@ -4938,8 +5078,8 @@
NOT-FOR-US: Oracle Solaris
CVE-2011-2293 (Unspecified vulnerability in Oracle Solaris 11 Express allows
local ...)
NOT-FOR-US: Oracle Solaris
-CVE-2011-2292
- RESERVED
+CVE-2011-2292 (Unspecified vulnerability in Oracle Solaris 9 and 11 Express
allows ...)
+ TODO: check
CVE-2011-2291 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
NOT-FOR-US: Oracle Solaris
CVE-2011-2290 (Unspecified vulnerability in Oracle Solaris 10, and 11 Express
allows ...)
@@ -4950,8 +5090,8 @@
NOT-FOR-US: Oracle SysFW
CVE-2011-2287 (Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11
Express ...)
NOT-FOR-US: Oracle Solaris
-CVE-2011-2286
- RESERVED
+CVE-2011-2286 (Unspecified vulnerability in Oracle Solaris 10 and 11 Express
allows ...)
+ TODO: check
CVE-2011-2285 (Unspecified vulnerability in Oracle Solaris 10 allows local
users to ...)
NOT-FOR-US: Oracle Solaris
CVE-2011-2284 (Unspecified vulnerability in the PeopleSoft Enterprise HRMS
component ...)
@@ -5012,8 +5152,8 @@
NOT-FOR-US: Oracle Database Server and Enterprise Manager Grid Control
CVE-2011-2256
RESERVED
-CVE-2011-2255
- RESERVED
+CVE-2011-2255 (Unspecified vulnerability in the Oracle WebLogic Portal
component in ...)
+ TODO: check
CVE-2011-2254
RESERVED
CVE-2011-2253 (Unspecified vulnerability in the Core RDBMS component in Oracle
...)
@@ -5048,8 +5188,8 @@
NOT-FOR-US: Oracle Database Server
CVE-2011-2238 (Unspecified vulnerability in the Database Vault component in
Oracle ...)
NOT-FOR-US: Oracle Database Server
-CVE-2011-2237
- RESERVED
+CVE-2011-2237 (Unspecified vulnerability in the Oracle Web Services Manager
component ...)
+ TODO: check
CVE-2011-2236
RESERVED
CVE-2011-2235
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
