Author: joeyh
Date: 2011-12-05 21:14:24 +0000 (Mon, 05 Dec 2011)
New Revision: 17752
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-12-05 20:58:38 UTC (rev 17751)
+++ data/CVE/list 2011-12-05 21:14:24 UTC (rev 17752)
@@ -1,3 +1,19 @@
+CVE-2011-4676
+ RESERVED
+CVE-2011-4675 (The pathname canonicalization functionality in ...)
+ TODO: check
+CVE-2011-4674 (SQL injection vulnerability in popup.php in Zabbix 1.8.3 and
1.8.4, ...)
+ TODO: check
+CVE-2011-4673 (SQL injection vulnerability in modules/sharedaddy.php in the
Jetpack ...)
+ TODO: check
+CVE-2011-4672 (Multiple SQL injection vulnerabilities in Valid tiny-erp 1.6
and ...)
+ TODO: check
+CVE-2011-4671 (SQL injection vulnerability in adrotate/adrotate-out.php in the
...)
+ TODO: check
+CVE-2011-4670 (Multiple cross-site scripting (XSS) vulnerabilities in vTiger
CRM ...)
+ TODO: check
+CVE-2011-4669 (SQL injection vulnerability in wp-users.php in WordPress Users
plugin ...)
+ TODO: check
CVE-2011-XXXX [FFmpeg Libavcodec memory corruption remote code execution]
- libav <unfixed>
- mplayer <unfixed>
@@ -273,8 +289,8 @@
TODO: check
CVE-2011-4544 (Multiple cross-site scripting (XSS) vulnerabilities in
Prestashop ...)
TODO: check
-CVE-2011-4543
- RESERVED
+CVE-2011-4543 (Multiple directory traversal vulnerabilities in osCommerce
3.0.2 allow ...)
+ TODO: check
CVE-2011-4542 (Hastymail2 2.1.1 before RC2 allows remote attackers to execute
...)
- hastymail <removed>
CVE-2011-4541 (Cross-site scripting (XSS) vulnerability in index.php in
Hastymail2 ...)
@@ -749,8 +765,7 @@
RESERVED
{DSA-2355-1}
- clearsilver <unfixed> (bug #649322)
-CVE-2011-4356 [Celery v2.4 - Privilege escalation due improper sanitization]
- RESERVED
+CVE-2011-4356 (Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4
before ...)
- django-celery <itp> (bug #588229)
CVE-2011-4355 [gdb: arbitrary code execution via .debug_gdb_scripts]
RESERVED
@@ -1400,8 +1415,8 @@
RESERVED
CVE-2011-4163
RESERVED
-CVE-2011-4162
- RESERVED
+CVE-2011-4162 (The (1) AddUser, (2) AddUserEx, (3) RemoveUser, (4)
RemoveUserByGuide, ...)
+ TODO: check
CVE-2011-4161 (The default configuration of the HP CM8060 Color MFP with
Edgeline; ...)
TODO: check
CVE-2011-4160 (Unspecified vulnerability in HP Operations Agent 11.00 and
Performance ...)
@@ -1717,10 +1732,10 @@
RESERVED
CVE-2011-4053
RESERVED
-CVE-2011-4052
- RESERVED
-CVE-2011-4051
- RESERVED
+CVE-2011-4052 (Stack-based buffer overflow in CEServer.exe in the CEServer
component ...)
+ TODO: check
+CVE-2011-4051 (CEServer.exe in the CEServer component in the Remote Agent
module in ...)
+ TODO: check
CVE-2011-4050
RESERVED
CVE-2011-4049
@@ -3176,7 +3191,7 @@
CVE-2011-3561 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- sun-java6 <unfixed> (bug #645881)
CVE-2011-3560 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
@@ -3187,34 +3202,34 @@
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
CVE-2011-3557 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
CVE-2011-3556 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
CVE-2011-3555 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- sun-java6 <unfixed> (bug #645881)
CVE-2011-3554 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
CVE-2011-3553 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
CVE-2011-3552 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
CVE-2011-3551 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
@@ -3223,12 +3238,12 @@
CVE-2011-3549 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- sun-java6 <unfixed> (bug #645881)
CVE-2011-3548 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
CVE-2011-3547 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
@@ -3237,7 +3252,7 @@
CVE-2011-3545 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- sun-java6 <unfixed> (bug #645881)
CVE-2011-3544 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
@@ -3286,7 +3301,7 @@
CVE-2011-3522 (Unspecified vulnerability in SysFW 8.0 on certain SPARC T3,
Netra ...)
NOT-FOR-US: SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade
CVE-2011-3521 (Unspecified vulnerability in the Java Runtime Environment
component in ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
@@ -3625,7 +3640,7 @@
[lenny] - masqmail <no-dsa> (no security issue by itself)
[squeeze] - masqmail <no-dsa> (no security issue by itself)
CVE-2011-3389 (The SSL protocol, as used in certain configurations in
Microsoft ...)
- {DSA-2356-1}
+ {DSA-2358-1 DSA-2356-1}
- sun-java6 <unfixed> (bug #645881)
- openjdk-6 6b23~pre11-1
- openjdk-7 7~b147-2.0-1
@@ -6447,8 +6462,8 @@
NOT-FOR-US: HP Data Protector
CVE-2011-2398 (Unspecified vulnerability in the dynamic loader in HP HP-UX
B.11.11, ...)
NOT-FOR-US: HP-UX
-CVE-2011-2397
- RESERVED
+CVE-2011-2397 (The Agent service in Iron Mountain Connected Backup 8.4 allows
remote ...)
+ TODO: check
CVE-2011-2396
RESERVED
CVE-2011-2394
@@ -7683,8 +7698,7 @@
CVE-2011-1933
RESERVED
- libjifty-dbi-perl 0.68-1 (bug #622919)
-CVE-2011-1932 [directory traversal when receiving world data through a
multiplayer game]
- RESERVED
+CVE-2011-1932 (Directory traversal vulnerability in
io/filesystem/filesystem.cc in ...)
- widelands 1:15-3 (low; bug #617960)
[squeeze] - widelands 1:15-3squeeze1
[lenny] - widelands <no-dsa> (Minor issue)
@@ -10907,7 +10921,7 @@
CVE-2011-0872 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
NOT-FOR-US: OpenJDK on Microsoft Windows
CVE-2011-0871 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
- {DSA-2311-1}
+ {DSA-2358-1 DSA-2311-1}
[lenny] - sun-java6 6.26-0lenny1
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
@@ -10915,19 +10929,19 @@
CVE-2011-0870 (Unspecified vulnerability in the Schema Management component in
Oracle ...)
NOT-FOR-US: Oracle Database Server
CVE-2011-0869 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
- {DSA-2311-1}
+ {DSA-2358-1 DSA-2311-1}
[lenny] - sun-java6 6.26-0lenny1
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
- openjdk-6 6b18-1.8.9-0.1 (bug #629852)
CVE-2011-0868 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
- {DSA-2311-1}
+ {DSA-2358-1 DSA-2311-1}
[lenny] - sun-java6 6.26-0lenny1
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
- openjdk-6 6b18-1.8.9-0.1 (bug #629852)
CVE-2011-0867 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
- {DSA-2311-1}
+ {DSA-2358-1 DSA-2311-1}
[lenny] - sun-java6 6.26-0lenny1
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
@@ -10935,14 +10949,14 @@
CVE-2011-0866 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
NOT-FOR-US: Java on Windows
CVE-2011-0865 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
- {DSA-2311-1}
+ {DSA-2358-1 DSA-2311-1}
[lenny] - sun-java6 6.26-0lenny1
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
- sun-java6 6.26-1 (bug #629852)
- openjdk-6 6b18-1.8.9-0.1 (bug #629852)
CVE-2011-0864 (Unspecified vulnerability in the Java Runtime Environment (JRE)
...)
- {DSA-2311-1}
+ {DSA-2358-1 DSA-2311-1}
[lenny] - sun-java6 6.26-0lenny1
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
@@ -10952,7 +10966,7 @@
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
CVE-2011-0862 (Multiple unspecified vulnerabilities in the Java Runtime
Environment ...)
- {DSA-2311-1}
+ {DSA-2358-1 DSA-2311-1}
[lenny] - sun-java6 6.26-0lenny1
[squeeze] - sun-java6 6.26-0squeeze1
- sun-java6 6.26-1 (bug #629852)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
