Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorcvebot <cvebot@localhost>2010-10-19 22:15:23 +0000
committercvebot <cvebot@localhost>2010-10-19 22:15:23 +0000
commit0131cc3ce509157efff125373797cc34053be464 (patch)
tree30e697437df2105546f790b96a48f835d02234d4
parentMITRE sync (diff)
downloadsecurity-0131cc3ce509157efff125373797cc34053be464.tar.gz
security-0131cc3ce509157efff125373797cc34053be464.tar.bz2
security-0131cc3ce509157efff125373797cc34053be464.zip
MITRE sync
svn path=/; revision=2175
Diffstat
-rw-r--r--data/CVE/list166
1 files changed, 96 insertions, 70 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 3865a7b..fdd734e 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -60995,6 +60995,18 @@ CVE-2007-6734 (NWFTPD.nlm before 5.08.07 in the FTP server in Novell NetWare 6.5
NOT-FOR-US: novell netware
CVE-2007-6735 (NWFTPD.nlm before 5.08.06 in the FTP server in Novell NetWare does not ...)
NOT-FOR-US: novell netware
+CVE-2007-6736 (Multiple directory traversal vulnerabilities in FTPServer.py in ...)
+ TODO: check
+CVE-2007-6737 (FTPServer.py in pyftpdlib before 0.2.0 does not increment the ...)
+ TODO: check
+CVE-2007-6738 (pyftpdlib before 0.1.1 does not choose a random value for the port ...)
+ TODO: check
+CVE-2007-6739 (FTPServer.py in pyftpdlib before 0.2.0 allows remote attackers to cause ...)
+ TODO: check
+CVE-2007-6740 (The ftp_STOU function in FTPServer.py in pyftpdlib before 0.2.0 does ...)
+ TODO: check
+CVE-2007-6741 (The ftp_PORT function in FTPServer.py in pyftpdlib before 0.2.0 does ...)
+ TODO: check
CVE-2008-0001 (VFS in the Linux kernel before 2.6.22.16, and 2.6.23.x before ...)
BUG: 205980
CVE-2008-0002 (Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context ...)
@@ -75566,6 +75578,12 @@ CVE-2008-7260
RESERVED
CVE-2008-7261 (The Workplace (aka WP) component in IBM FileNet P8 Application Engine ...)
NOT-FOR-US: ibm filenet_p8_application_engine
+CVE-2008-7262 (Multiple directory traversal vulnerabilities in FTPServer.py in ...)
+ TODO: check
+CVE-2008-7263 (ftpserver.py in pyftpdlib before 0.5.0 does not delay its response ...)
+ TODO: check
+CVE-2008-7264 (The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows ...)
+ TODO: check
CVE-2009-0001 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote ...)
NOT-FOR-US: apple quicktime
CVE-2009-0002 (Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote ...)
@@ -85642,6 +85660,14 @@ CVE-2009-5008 (Cisco Secure Desktop (CSD), when used in conjunction with an ...)
TODO: check
CVE-2009-5009 (Double free vulnerability in OpenConnect before 1.40 might allow ...)
TODO: check
+CVE-2009-5010 (Race condition in the FTPHandler class in ftpserver.py in pyftpdlib ...)
+ TODO: check
+CVE-2009-5011 (Race condition in the FTPHandler class in ftpserver.py in pyftpdlib ...)
+ TODO: check
+CVE-2009-5012 (ftpserver.py in pyftpdlib before 0.5.2 does not require the l ...)
+ TODO: check
+CVE-2009-5013 (Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib ...)
+ TODO: check
CVE-2010-0001 (Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 ...)
BUG: 300943
CVE-2010-0002 (The /etc/profile.d/60alias.sh script in the Mandriva bash package for ...)
@@ -91985,10 +92011,10 @@ CVE-2010-3155 (Untrusted search path vulnerability in Adobe ExtendScript Toolkit
NOT-FOR-US: adobe extendedscript_toolkit_cs5
CVE-2010-3156
RESERVED
-CVE-2010-3157
- RESERVED
-CVE-2010-3158
- RESERVED
+CVE-2010-3157 (Untrusted search path vulnerability in XacRett before 50 allows ...)
+ TODO: check
+CVE-2010-3158 (Untrusted search path vulnerability in Lhaplus before 1.58 allows local ...)
+ TODO: check
CVE-2010-3159
RESERVED
CVE-2010-3160
@@ -92659,14 +92685,14 @@ CVE-2010-3490 (Directory traversal vulnerability in page.recordings.php in the S
NOT-FOR-US: freepbx
CVE-2010-3491
RESERVED
-CVE-2010-3492
- RESERVED
-CVE-2010-3493
- RESERVED
-CVE-2010-3494
- RESERVED
-CVE-2010-3495
- RESERVED
+CVE-2010-3492 (The asyncore module in Python before 3.2 does not properly handle ...)
+ TODO: check
+CVE-2010-3493 (Multiple race conditions in smtpd.py in the smtpd module in Python 2.6, ...)
+ TODO: check
+CVE-2010-3494 (Race condition in the FTPHandler class in ftpserver.py in pyftpdlib ...)
+ TODO: check
+CVE-2010-3495 (Race condition in ZEO/StorageServer.py in Zope Object Database (ZODB) ...)
+ TODO: check
CVE-2010-3496
RESERVED
CVE-2010-3497
@@ -92757,8 +92783,8 @@ CVE-2010-3539 (Unspecified vulnerability in the PeopleSoft Enterprise FMS - GL .
TODO: check
CVE-2010-3540 (Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows ...)
TODO: check
-CVE-2010-3541
- RESERVED
+CVE-2010-3541 (Unspecified vulnerability in the Networking component in Oracle Java SE ...)
+ TODO: check
CVE-2010-3542 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and ...)
TODO: check
CVE-2010-3543
@@ -92771,60 +92797,60 @@ CVE-2010-3546 (Unspecified vulnerability in the Sun Java System Identity Manager
TODO: check
CVE-2010-3547 (Unspecified vulnerability in the PeopleSoft FMS ESA - EX component in ...)
TODO: check
-CVE-2010-3548
- RESERVED
-CVE-2010-3549
- RESERVED
-CVE-2010-3550
- RESERVED
-CVE-2010-3551
- RESERVED
-CVE-2010-3552
- RESERVED
-CVE-2010-3553
- RESERVED
-CVE-2010-3554
- RESERVED
-CVE-2010-3555
- RESERVED
-CVE-2010-3556
- RESERVED
-CVE-2010-3557
- RESERVED
-CVE-2010-3558
- RESERVED
-CVE-2010-3559
- RESERVED
-CVE-2010-3560
- RESERVED
-CVE-2010-3561
- RESERVED
-CVE-2010-3562
- RESERVED
-CVE-2010-3563
- RESERVED
+CVE-2010-3548 (Unspecified vulnerability in the JNDI component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3549 (Unspecified vulnerability in the Networking component in Oracle Java SE ...)
+ TODO: check
+CVE-2010-3550 (Unspecified vulnerability in the Java Web Start component in Oracle ...)
+ TODO: check
+CVE-2010-3551 (Unspecified vulnerability in the Networking component in Oracle Java SE ...)
+ TODO: check
+CVE-2010-3552 (Unspecified vulnerability in the New Java Plug-in component in Oracle ...)
+ TODO: check
+CVE-2010-3553 (Unspecified vulnerability in the Swing component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3554 (Unspecified vulnerability in the CORBA component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3555 (Unspecified vulnerability in the Deployment component in Oracle Java SE ...)
+ TODO: check
+CVE-2010-3556 (Unspecified vulnerability in the 2D component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3557 (Unspecified vulnerability in the Swing component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3558 (Unspecified vulnerability in the Java Web Start component in Oracle ...)
+ TODO: check
+CVE-2010-3559 (Unspecified vulnerability in the Sound component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3560 (Unspecified vulnerability in the Networking component in Oracle Java SE ...)
+ TODO: check
+CVE-2010-3561 (Unspecified vulnerability in the CORBA component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3562 (Unspecified vulnerability in the 2D component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3563 (Unspecified vulnerability in the Deployment component in Oracle Java SE ...)
+ TODO: check
CVE-2010-3564 (Unspecified vulnerability in the Oracle Communications Messaging ...)
TODO: check
-CVE-2010-3565
- RESERVED
-CVE-2010-3566
- RESERVED
-CVE-2010-3567
- RESERVED
-CVE-2010-3568
- RESERVED
-CVE-2010-3569
- RESERVED
-CVE-2010-3570
- RESERVED
-CVE-2010-3571
- RESERVED
-CVE-2010-3572
- RESERVED
-CVE-2010-3573
- RESERVED
-CVE-2010-3574
- RESERVED
+CVE-2010-3565 (Unspecified vulnerability in the 2D component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3566 (Unspecified vulnerability in the 2D component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3567 (Unspecified vulnerability in the 2D component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3568 (Unspecified vulnerability in the Java Runtime Environment component in ...)
+ TODO: check
+CVE-2010-3569 (Unspecified vulnerability in the Java Runtime Environment component in ...)
+ TODO: check
+CVE-2010-3570 (Unspecified vulnerability in the Deployment Toolkit component in Oracle ...)
+ TODO: check
+CVE-2010-3571 (Unspecified vulnerability in the 2D component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3572 (Unspecified vulnerability in the Sound component in Oracle Java SE and ...)
+ TODO: check
+CVE-2010-3573 (Unspecified vulnerability in the Networking component in Oracle Java SE ...)
+ TODO: check
+CVE-2010-3574 (Unspecified vulnerability in the Networking component in Oracle Java SE ...)
+ TODO: check
CVE-2010-3575 (Unspecified vulnerability in the Oracle Communications Messaging ...)
TODO: check
CVE-2010-3576 (Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and ...)
@@ -93625,10 +93651,10 @@ CVE-2010-3973
RESERVED
CVE-2010-3974
RESERVED
-CVE-2010-3975
- RESERVED
-CVE-2010-3976
- RESERVED
+CVE-2010-3975 (Untrusted search path vulnerability in Adobe Flash Player 9 allows ...)
+ TODO: check
+CVE-2010-3976 (Untrusted search path vulnerability in Adobe Flash Player 10.1.82.76, ...)
+ TODO: check
CVE-2010-3977
RESERVED
CVE-2010-3978