automatic update

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54469 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: security tracker role <sectracker@debian.org> 2017-08-09 09:10:20 +0000
committer: security tracker role <sectracker@debian.org> 2017-08-09 09:10:20 +0000
commit: ff115829499e5f44ee7cf671ac575664de9eb4a1 (patch)
tree: f60851f46e3c106af6655a054e7c92d7f4fcb434 /data/CVE/2010.list
parent: 0c779806d244dddab944536be80d6b6a556f3685 (diff)
1 files changed, 3 insertions, 4 deletions
diff --git a/data/CVE/2010.list b/data/CVE/2010.list
index b732c73a95..5cf34b6919 100644
--- a/data/CVE/2010.list
+++ b/data/CVE/2010.list
@@ -3622,8 +3622,7 @@ CVE-2010-3842 (Absolute path traversal vulnerability in curl 7.20.0 through 7.21
 	- curl <not-affected> (Doesn't affect POSIX systems)
 CVE-2010-3841 (Multiple cross-site scripting (XSS) vulnerabilities in lib/TWiki.pm in ...)
 	NOT-FOR-US: TWiki
-CVE-2010-3845
-	RESERVED
+CVE-2010-3845 (libapache-authenhook-perl 2.00-04 stores usernames and passwords in ...)
 	- libapache-authenhook-perl 2.00-04+pristine-2 (low; bug #599712)
 	[lenny] - libapache-authenhook-perl 2.00-04+pristine-1+lenny1
 CVE-2010-4237
@@ -7848,8 +7847,8 @@ CVE-2010-2247 [makepasswd: insecure passwords generated with default settings]
 CVE-2010-2246 (feh before 1.8, when the --wget-timestamp option is enabled, might ...)
 	- feh 1.8-1 (low; bug #587205)
 	[lenny] - feh <no-dsa> (Minor issue)
-CVE-2010-2245
-	RESERVED
+CVE-2010-2245 (XML External Entity (XXE) vulnerability in Apache Wink 1.1.1 and ...)
+	TODO: check
 CVE-2010-2244 (The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in ...)
 	{DSA-2086-1}
 	- avahi 0.6.26-1
author	security tracker role <sectracker@debian.org>	2017-08-09 09:10:20 +0000
committer	security tracker role <sectracker@debian.org>	2017-08-09 09:10:20 +0000
commit	ff115829499e5f44ee7cf671ac575664de9eb4a1 (patch)
tree	f60851f46e3c106af6655a054e7c92d7f4fcb434 /data/CVE/2010.list
parent	0c779806d244dddab944536be80d6b6a556f3685 (diff)