diff options
author | security tracker role <sectracker@soriano.debian.org> | 2020-01-22 20:10:25 +0000 |
---|---|---|
committer | security tracker role <sectracker@soriano.debian.org> | 2020-01-22 20:10:25 +0000 |
commit | 3708291d97332fa583da542219bfebca9a0d3055 (patch) | |
tree | 7a63b439e8c69c06983aeeef17b2d9e4a53410a4 /data/CVE/2011.list | |
parent | f2be25d22aa2154d2cefccae6cbac2da294db98e (diff) |
automatic update
Diffstat (limited to 'data/CVE/2011.list')
-rw-r--r-- | data/CVE/2011.list | 28 |
1 files changed, 10 insertions, 18 deletions
diff --git a/data/CVE/2011.list b/data/CVE/2011.list index 738de2dcdd..433a86bc65 100644 --- a/data/CVE/2011.list +++ b/data/CVE/2011.list @@ -881,8 +881,8 @@ CVE-2011-4944 (Python 2.6 through 3.2 creates ~/.pypirc with world-readable perm - python2.7 2.7.3~rc2-2 (low; bug #650555) - python2.6 2.6.8-1 (unimportant; bug #615118) NOTE: Negligible impact -CVE-2011-4943 - RESERVED +CVE-2011-4943 (ImpressPages CMS v1.0.12 has Unspecified Remote Code Execution (fixed ...) + TODO: check CVE-2011-4942 (Multiple cross-site scripting (XSS) vulnerabilities in admin/configura ...) NOT-FOR-US: Geeklog CVE-2011-4941 (Unspecified vulnerability in Piwik 1.2 through 1.4 allows remote attac ...) @@ -4195,8 +4195,7 @@ CVE-2011-3623 (Multiple stack-based buffer overflows in VideoLAN VLC media playe CVE-2011-3622 RESERVED NOT-FOR-US: phorum -CVE-2011-3621 - RESERVED +CVE-2011-3621 (A reverse proxy issue exists in FluxBB before 1.4.7 when FORUM_BEHIND_ ...) NOT-FOR-US: fluxbb CVE-2011-3620 (Apache Qpid 0.12 does not properly verify credentials during the joini ...) - qpid-cpp <not-affected> (Red Hat-specific extension, see bug #672124) @@ -4216,20 +4215,15 @@ CVE-2011-3616 (The getSkillname function in the eve module in Conky 1.8.1 and ea [lenny] - conky 1.6.0-2+lenny1 CVE-2011-3615 (Multiple SQL injection vulnerabilities in Simple Machines Forum (SMF) ...) NOT-FOR-US: Simple Machines Forum -CVE-2011-3614 [vanilla plugin access control] - RESERVED +CVE-2011-3614 (An Access Control vulnerability exists in the Facebook, Twitter, and E ...) NOT-FOR-US: Vanilla Forums -CVE-2011-3613 [vanilla forums cookie theft] - RESERVED +CVE-2011-3613 (An issue exists in Vanilla Forums before 2.0.17.9 due to the way cooki ...) NOT-FOR-US: Vanilla Forums -CVE-2011-3612 [HTB22913: Multiple CSRF in UseBB] - RESERVED +CVE-2011-3612 (Cross-Site Request Forgery (CSRF) vulnerability exists in panel.php in ...) NOT-FOR-US: UseBB -CVE-2011-3611 [HTB22914: Local File Inclusion in UseBB] - RESERVED +CVE-2011-3611 (A File Inclusion vulnerability exists in act parameter to admin.php in ...) NOT-FOR-US: UseBB -CVE-2011-3610 [serendipity freetag plugin before 3.30 and probably others] - RESERVED +CVE-2011-3610 (A Cross-site Scripting (XSS) vulnerability exists in the Serendipity f ...) NOT-FOR-US: Serendipity plugin CVE-2011-3609 (A CSRF issue was found in JBoss Application Server 7 before 7.1.0. JBo ...) - jbossas4 <not-affected> (Only builds a few libraries, not the full application server, #581226) @@ -4283,8 +4277,7 @@ CVE-2011-3596 (Polipo before 1.0.4.1 suffers from a DoD vulnerability via specia - polipo 1.0.4.1-1.2 (bug #644289) [squeeze] - polipo <no-dsa> (Minor issue) NOTE: http://seclists.org/fulldisclosure/2011/Oct/10 -CVE-2011-3595 - RESERVED +CVE-2011-3595 (Multiple Cross-site Scripting (XSS) vulnerabilities exist in Joomla! t ...) NOT-FOR-US: Joomla! CVE-2011-3594 (The g_markup_escape_text function in the SILC protocol plug-in in libp ...) - pidgin 2.10.1-1 (unimportant) @@ -4327,8 +4320,7 @@ CVE-2011-3583 (It was found that Typo3 Core versions 4.5.0 - 4.5.5 uses prepared - typo3-src 4.5.6+dfsg1-1 (low; bug #641682) [squeeze] - typo3-src <not-affected> (Only affects 4.5.x) [lenny] - typo3-src <not-affected> (Only affects 4.5.x) -CVE-2011-3582 - RESERVED +CVE-2011-3582 (A Cross-site Request Forgery (CSRF) vulnerability exists in Advanced E ...) NOT-FOR-US: Advanced Electron Forums CVE-2011-3581 (Heap-based buffer overflow in the ldns_rr_new_frm_str_internal functio ...) {DSA-2353-1} |