automatic update

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@10967 e39458fd-73e7-0310-bf30-c45bca0a0e42

4 files changed, 22 insertions, 8 deletions

diff --git a/data/CVE/1999.list b/data/CVE/1999.list
index 32989d2551..a4ecfdbd76 100644
--- a/data/CVE/1999.list
+++ b/data/CVE/1999.list
@@ -1,3 +1,5 @@
+CVE-1999-1593 (Windows Internet Naming Service (WINS) allows remote attackers to ...)
+	TODO: check
 CVE-1999-1592 (Multiple unspecified vulnerabilities in sendmail 5, as installed on ...)
 	- sendmail <not-affected> (Concerns only ancient sendmail V5)
 CVE-1999-1591 (Microsoft Internet Information Services (IIS) server 4.0 SP4, without ...)
diff --git a/data/CVE/2003.list b/data/CVE/2003.list
index 4053e72385..82dfc5f652 100644
--- a/data/CVE/2003.list
+++ b/data/CVE/2003.list
@@ -1,3 +1,7 @@
+CVE-2003-1567 (The undocumented TRACK method in Microsoft Internet Information ...)
+	TODO: check
+CVE-2003-1566 (Microsoft Internet Information Services (IIS) 5.0 does not log ...)
+	TODO: check
 CVE-2003-1564 (libxml2, possibly before 2.5.0, does not properly detect recursion ...)
 	NOT-FOR-US: Old CVE id
 CVE-2003-1563 (Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real ...)
diff --git a/data/CVE/2008.list b/data/CVE/2008.list
index 2981643239..c7868bba24 100644
--- a/data/CVE/2008.list
+++ b/data/CVE/2008.list
@@ -374,7 +374,7 @@ CVE-2008-5720 (Cross-site scripting (XSS) vulnerability in Mayaa before 1.1.23 a
 CVE-2008-5719 (Cross-site scripting (XSS) vulnerability in Hitachi Groupmax Web ...)
 	NOT-FOR-US: Hitachi
 CVE-2008-5718 (The papd daemon in Netatalk before 2.0.4-beta2 allows remote attackers ...)
-	{DTSA-183-1}
+	{DSA-1705-1 DTSA-183-1}
 	- netatalk 2.0.4~beta2-1 (medium; bug #510585)
 CVE-2008-5717 (Cross-site scripting (XSS) vulnerability in Hitachi JP1/Integrated ...)
 	NOT-FOR-US: Hitachi
@@ -2466,10 +2466,10 @@ CVE-2008-4837 (Stack-based buffer overflow in Microsoft Office Word 2000 SP3, 20
 	NOT-FOR-US: Microsoft Office Word
 CVE-2008-4836
 	RESERVED
-CVE-2008-4835
-	RESERVED
-CVE-2008-4834
-	RESERVED
+CVE-2008-4835 (SMB in the Server service in Microsoft Windows 2000 SP4, XP SP2 and ...)
+	TODO: check
+CVE-2008-4834 (Buffer overflow in SMB in the Server service in Microsoft Windows 2000 ...)
+	TODO: check
 CVE-2008-4833
 	RESERVED
 CVE-2008-4832 (rc.sysinit in initscripts 8.12-8.21 and 8.56.15-0.1 on rPath allows ...)
@@ -4180,7 +4180,7 @@ CVE-2008-4201 (Heap-based buffer overflow in the decodeMP4file function ...)
 	NOTE: http://www.audiocoding.com/patch/main_overflow.diff
 CVE-2008-4115 (TalkBack 2.3.6 allows remote attackers to obtain configuration ...)
 	NOT-FOR-US: TalkBack
-CVE-2008-4114 (srv.sys in Microsoft Windows Vista SP1 allows remote attackers to ...)
+CVE-2008-4114 (srv.sys in the Server service in Microsoft Windows 2000 SP4, XP SP2 ...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2008-4113 (The sctp_getsockopt_hmac_ident function in net/sctp/socket.c in the ...)
 	{DSA-1655-1}
diff --git a/data/CVE/2009.list b/data/CVE/2009.list
index e1f9c452c1..b27a72570a 100644
--- a/data/CVE/2009.list
+++ b/data/CVE/2009.list
@@ -1,3 +1,11 @@
+CVE-2009-0121 (SQL injection vulnerability in frontpage.php in Goople CMS 1.8.2 ...)
+	TODO: check
+CVE-2009-0120 (The IBM WebSphere DataPower XML Security Gateway XS40 with firmware ...)
+	TODO: check
+CVE-2009-0119 (Buffer overflow in Microsoft Windows XP SP3 allows remote attackers to ...)
+	TODO: check
+CVE-2009-0118
+	RESERVED
 CVE-2009-0117
 	RESERVED
 CVE-2009-0116
@@ -161,8 +169,8 @@ CVE-2009-0043 (The smmsnmpd service in CA Service Metric Analysis r11.0 through
 	NOT-FOR-US: CA Service Metric Analysis r11.0 through r11.1 SP1 and Service
 CVE-2009-0042
 	RESERVED
-CVE-2009-0041
-	RESERVED
+CVE-2009-0041 (IAX2 in Asterisk Open Source 1.2.x before 1.2.31, 1.4.x before ...)
+	TODO: check
 CVE-2009-0040
 	RESERVED
 CVE-2009-0039