CVE - CVE Reference Map for Source MLIST

About CVE

Terminology
Documents
FAQs
CVE List

About CVE Identifiers
Search CVE
Search NVD
Updates & RSS Feeds
Request a CVE-ID
CVE In Use

CVE Adoption
CVE-Compatible Products
NVD for CVE Fix Information
More…
News & Events

Calendar
Free Newsletter
Community

CVE Editorial Board
Sponsor
Contact Us

Search the Site

CVE List

About CVE Identifiers
Editorial Policies
Data Sources
Reference Key/Maps
Search Tips
Updates & RSS Feeds
Obtain a CVE Identifier

Items of Interest

Terminology
NVD

CVE Reference Map for Source MLIST

Source	MLIST
Description	generic reference form for miscellaneous mailing lists
Notes	This is used for identifying miscellaneous mailing lists.

This reference map lists the various references for MLIST and provides the associated CVE entries or candidates. It uses data from CVE version 20061101 and candidates that were active as of 2012-02-08.

Note that the list of references may not be complete.

MLIST:20040507 Bug in IO bitmap handling? Probably exploitable (2.6.5)	CVE-2004-2536
MLIST:20040507 Re: Bug in IO bitmap handling? Probably exploitable (2.6.5)	CVE-2004-2536
MLIST:20041026 [Mimedefang] SECURITY: Patch for MIME-tools	CVE-2004-1098
MLIST:20050422 Chora 1.2.3 (final)	CVE-2005-1317
MLIST:20070902 Oops in pwc v4l driver	CVE-2007-5093
MLIST:20070903 Re: Oops in pwc v4l driver	CVE-2007-5093
MLIST:20071021 [Xen-ia64-devel] PATCH: check r2 value for VTi mov rr[r3]=r2	CVE-2007-6207
MLIST:VIM 20070130 Source VERIFY: nsGalPHP RFI	CVE-2007-0573
MLIST:[0day] 20041208 Ability Server 2.25 - 2.34 FTP => 'APPE' Buffer Overflow - PnK:: DCN3T	CVE-2004-1627
MLIST:[ANNOUNCE] 20070907 balsa-2.3.20 released	CVE-2007-5007
MLIST:[AWFFULL] 20070123 Regarding the fixes in 3.7.2	CVE-2007-0510
MLIST:[AWFFULL] 20070505 awffull 3.7.1 bug with search string keywords	CVE-2007-3299
MLIST:[AWFFULL] 20070507 Announcing AWFFull v3.7.4	CVE-2007-3299
MLIST:[Acl-Devel] 20050205 [FIX] Long-standing xattr sharing bug	CVE-2005-2801
MLIST:[Announce] 20080326 GnuPG 1.4.9 released	CVE-2008-1530
MLIST:[Announce] 20090723 ANNOUNCE: strongswan-2.8.11 and strongswan-4.2.17 released	CVE-2009-2661
MLIST:[Announcements] 20071206 MySQL 5.0.51 has been released	CVE-2007-5969
MLIST:[Backup-manager-commits] 20070102 r528 - in backup-manager/trunk: . doc lib man po	CVE-2007-2766
MLIST:[Bug-tar] 20060220 tar 1.15.90 released	CVE-2006-0300
MLIST:[Buildbot-devel] 20090812 [SECURITY ALERT] Cross-site scripting vulnerability	CVE-2009-2959
MLIST:[Buildbot-devel] 20090813 Re: Cross-site scripting vulnerability	CVE-2009-2967
MLIST:[Cache-News] 20040303 Security Alert	CVE-2004-2683
MLIST:[Cache-News] 20040305 Security Alert Correction	CVE-2004-2683
MLIST:[Cache-News] 20040309 Security Alert - %template	CVE-2004-2684
MLIST:[Cache-News] 20040310 Updated Security Alert - %template	CVE-2004-2684
MLIST:[Cache-News] 20070718 Security Alert: User passed parameter values via CSP	CVE-2007-4427
MLIST:[Clamav-announce] 20070530 announcing ClamAV 0.90.3	CVE-2007-3023 CVE-2007-3024 CVE-2007-3025 CVE-2007-3122 CVE-2007-3123
MLIST:[Cyrus-CVS] 20090902 src/sieve by brong	CVE-2009-2632
MLIST:[Dailydave] 20040323 dtlogin advisory	CVE-2004-0368
MLIST:[Dailydave] 20040514 Mozilla bug might even get fixed!	CVE-2004-0478
MLIST:[Dailydave] 20050704 !!! pre-authenticated remote code inclusion vulnerability inside phppgadmin !!!	CVE-2005-2256
MLIST:[Dailydave] 20050714 SPIKE actually scores.	CVE-2005-1218
MLIST:[Dailydave] 20051129 Webmin miniserv.pl format string vulnerability	CVE-2005-3912
MLIST:[Dailydave] 20060105 WMF goes away :<	CVE-2006-0106
MLIST:[Dailydave] 20060203 ProtoVer vs Lotus Domino Server 7.0	CVE-2006-0580
MLIST:[Dailydave] 20060207 ProFTPD bug	CVE-2005-4816
MLIST:[Dailydave] 20060208 Sun Directory Server 5.2 fun	CVE-2006-0647
MLIST:[Dailydave] 20060210 ??? Sun Directory Server 5.2 fun ???	CVE-2006-0647
MLIST:[Dailydave] 20060211 IBM Tivoli Directory Server 0day	CVE-2006-0717
MLIST:[Dailydave] 20060213 eddy 0day	CVE-2006-0710
MLIST:[Dailydave] 20060214 MailSite (WorldMail) fun	CVE-2006-0790
MLIST:[Dailydave] 20060221 word dos 4fun	CVE-2006-0935
MLIST:[Dailydave] 20060226 fun with FreeBSD kernel	CVE-2006-0900
MLIST:[Dailydave] 20060430 Non disclosure from security vendors: Truecrypt exemple	CVE-2006-2183
MLIST:[Dailydave] 20060721 GnuPG 1.4.4 fun	CVE-2006-3746
MLIST:[Dailydave] 20061208 Madwifi SIOCSIWSCAN vulnerability (CVE-2006-6332)	CVE-2006-6332
MLIST:[Dailydave] 20080101 0day RealPlayer exploit demo	CVE-2008-0098
MLIST:[Darklab] 20060131 SAP security/auditing	CVE-2005-4815
MLIST:[Darklab] 20060905 SAP security/auditing	CVE-2005-4815
MLIST:[Darklab] 20060907 Re: SAP security/auditing	CVE-2005-4815
MLIST:[Darklab] 20060908 Re: SAP security/auditing	CVE-2005-4815
MLIST:[Dbmail-dev] 20071216 [DBMail 0000662]: Ability to bypass authentication.	CVE-2007-6714
MLIST:[Dbmail] 20030725 WARNING SECURITY FLAW IN IMAPSERVER	CVE-2003-1523
MLIST:[Debian-audit] 20041229 More temporary filenames/dirs related bugs	CVE-2004-2605
MLIST:[Dovecot-news] 20061119 Security hole #2: Off-by-one buffer overflow with mmap_disable=yes	CVE-2006-5973
MLIST:[Dovecot-news] 20071221 Security hole #4: Specific LDAP + auth cache configuration may mix up user logins	CVE-2007-6598
MLIST:[Dovecot-news] 20071229 v1.0.10 released	CVE-2007-6598
MLIST:[Dovecot-news] 20080309 Security hole #6: Some passdbs allowed users to log in without a valid password	CVE-2008-1218
MLIST:[Dovecot-news] 20080309 v1.0.13 and v1.1.rc3 released	CVE-2008-1218
MLIST:[Dovecot-news] 20080504 v1.0.11 released	CVE-2008-1199
MLIST:[Dovecot-news] 20081005 v1.1.4 released	CVE-2008-4577 CVE-2008-4578
MLIST:[Dovecot-news] 20081030 v1.1.6 released	CVE-2008-4907
MLIST:[Dovecot-news] 20090914 Security holes in CMU Sieve plugin	CVE-2009-2632 CVE-2009-3235
MLIST:[Dovecot-news] 20091119 1.0.rc15 released	CVE-2006-5973
MLIST:[Dovecot] 20050303 hanging imap... and users getting other users' emails!	CVE-2007-5794
MLIST:[Dovecot] 20050409 Authentication and the wrong mailbox?	CVE-2007-5794
MLIST:[Dovecot] 20060208 1.0beta3 released	CVE-2006-0730
MLIST:[Dovecot] 20081117 ManageSieve SECURITY hole: virtual users can edit scripts of other virtual users (all versions)	CVE-2008-5301
MLIST:[Ekiga-list] 20070213 Ekiga 2.0.5 available	CVE-2007-1006
MLIST:[Ethereal-dev] 20040416 Possibly incorrect CVE entry CAN-2004-0367	CVE-2004-0367
MLIST:[Ethereal-users] 20040503 Re: HotSIP sip-messages crasching ethereal	CVE-2004-0504
MLIST:[Evolution-hackers] 20070619 Evolution 2.11.4 , Evolution-Data-Server 1.11.4 , GtkHTML 3.15.4 and Evolution-Exchange 2.11.4 released	CVE-2007-3257
MLIST:[Exim] 20021204 Minor security problem in both Exim 3 and 4	CVE-2002-1381
MLIST:[Exim] 20030814 Minor security bug	CVE-2003-0743
MLIST:[Exim] 20030815 Minor security bug	CVE-2003-0743
MLIST:[Forensics] 20050511 DCO discovery & removal, capabilities of imaging & wiping tools	CVE-2005-1578
MLIST:[FreeNX-kNX] 20050217 Security: Serious bug in authority handling found and fixed	CVE-2005-0579
MLIST:[Ganglia-developers] 20090113 patches for: [Sec] Gmetad server BoF and network overload + [Feature] multiple requests per conn on interactive port	CVE-2009-0241 CVE-2009-0242
MLIST:[Ganglia-developers] 20090123 Re: CVE	CVE-2009-0242
MLIST:[Gnump3d-users] 20051028 New release - security fixes.	CVE-2005-3123 CVE-2005-3424
MLIST:[Gnupg-devel] 20060725 Re: [Dailydave] GnuPG 1.4.4 fun	CVE-2006-3746
MLIST:[Gpsd-announce] 20050127 Announcing release 2.8 of gpsd	CVE-2004-1388
MLIST:[Greasemonkey] 20050718 greasemonkey for secure data over insecure networks / sites	CVE-2005-2455
MLIST:[Horde-announce] 20051113 Horde 2.2.9 (final)	CVE-2005-3570
MLIST:[HostAP] 20050213 wpa_supplicant - new stable releases v0.3.8 and v0.2.7	CVE-2005-0470
MLIST:[IRCServices] 20070324 Regarding Founder Passwords	CVE-2007-3246
MLIST:[IRCServices] 20070324 Services 5.0.60 released	CVE-2007-3246
MLIST:[IRCServices] 20070608 NS REGISTER and LINK	CVE-2007-3245
MLIST:[IRCServices] 20070610 NS REGISTER and LINK	CVE-2007-3245
MLIST:[IRCServices] 20070610 Services 5.1pre3 / 5.0.62 released	CVE-2007-3245
MLIST:[IRCServices] 20071121 Services 5.0.63 released	CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.7 released	CVE-2007-6122
MLIST:[IRCServices] 20071121 Services 5.1.9 released	CVE-2007-6123
MLIST:[ISN] 20070326 Windows weakness can lead to network traffic hijacks	CVE-2007-1692
MLIST:[ISSForum] 20040128 Third party BlackICE advisory	CVE-2004-2125
MLIST:[Info-gnu-radius] 20040915 GNU Radius 1.2.94.	CVE-2004-0849
MLIST:[Ipsec-tools-devel] 20070406 Ipsec-tools 0.6.7 released	CVE-2007-1841
MLIST:[KVIrc] 20100517 Proposal for a stable release of kvirc4	CVE-2010-2451 CVE-2010-2452
MLIST:[Libguestfs] 20101019 CVE-2010-3851libguestfs:missing disk format specifier when adding a disk	CVE-2010-3851
MLIST:[Libguestfs] 20101021 [PATCH 0/2] First part of fix for CVE-2010-3851	CVE-2010-3851
MLIST:[Libguestfs] 20101022 [PATCH 0/8 v2] Complete fix for CVE-2010-3851.	CVE-2010-3851
MLIST:[Logwatch-devel] 20110216 Remote command execution issue with root privileges	CVE-2011-1018
MLIST:[Lurker-users] 20060302 Serious security vulnerabilities found	CVE-2006-1062 CVE-2006-1063 CVE-2006-1064
MLIST:[MPlayer-announce] 20070605 MPlayer 1.0rc1try3 released	CVE-2007-2948
MLIST:[Macsec] 20011229 MacOSX ppp	CVE-2001-1565
MLIST:[Magick-announce] 20070917 ImageMagick 6.3.5-9, important security updates	CVE-2007-4985 CVE-2007-4986 CVE-2007-4987 CVE-2007-4988
MLIST:[Mailman-Announce] 20031231 RELEASED Mailman 2.1.4	CVE-2003-0965
MLIST:[Mailman-Announce] 20040208 RELEASED: Mailman 2.0.14 patch-only release	CVE-2003-0991
MLIST:[Mailman-Announce] 20040515 RELEASED Mailman 2.1.5	CVE-2004-0412
MLIST:[Mailman-Announce] 20060407 Released: Mailman 2.1.8 release candidate	CVE-2006-1712
MLIST:[Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9	CVE-2006-2191 CVE-2006-2941 CVE-2006-3636 CVE-2006-4624
MLIST:[Mailman-Announce] 20080203 Mailman 2.1.10b3 Released (was: Re: Mailman 2.1.10b1 Released)	CVE-2008-0564
MLIST:[Mailman-Users] 20050912 Uncaught runner exception: 'utf8' codeccan'tdecode bytes in position 1-4: invalid data	CVE-2005-3573
MLIST:[MediaWiki-announce] 20060327 MediaWiki 1.5.8, 1.4.15 released [SECURITY]	CVE-2006-1498
MLIST:[MediaWiki-announce] 20060606 MediaWiki 1.6.7 released	CVE-2006-2895
MLIST:[MediaWiki-announce] 20070204 MediaWiki 1.9.2 released	CVE-2007-0788
MLIST:[MediaWiki-announce] 20070910 MediaWiki 1.11.0, 1.10.2, 1.9.4, 1.8.5 released	CVE-2007-4828 CVE-2007-4883
MLIST:[MediaWiki-announce] 20080124 MediaWiki 1.11.1, 1.10.3, 1.9.5 released	CVE-2008-0460
MLIST:[MediaWiki-announce] 20080307 MediaWiki 1.11.2 released (security)	CVE-2008-1318
MLIST:[MediaWiki-announce] 20081002 MediaWiki 1.13.2, 1.12.1 security update	CVE-2008-4408
MLIST:[MediaWiki-announce] 20090207 MediaWiki releases: security update and new major branch	CVE-2009-0737
MLIST:[MediaWiki-announce] 20100303 MediaWiki security update: 1.15.2	CVE-2010-1189 CVE-2010-1190
MLIST:[MediaWiki-announce] 20100528 MediaWiki security update: 1.15.4 and 1.16.0beta3	CVE-2010-1647 CVE-2010-1648
MLIST:[MediaWiki-announce] 20110104 MediaWiki security release 1.16.1	CVE-2011-0003
MLIST:[MediaWiki-announce] 20110201 MediaWiki security release 1.16.2	CVE-2011-0047 CVE-2011-0537
MLIST:[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2	CVE-2007-6612
MLIST:[Mongrel] 20071229 Regarding the 1.1.3 security release	CVE-2007-6612
MLIST:[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2)	CVE-2007-6612
MLIST:[Mono-dev] 20080726 [PATCH] HTML encode attributes that might need encoding	CVE-2008-3422
MLIST:[Monotone-devel] 20060308 [ANNOUNCE] Monotone 0.25.2 -- security fix release	CVE-2006-1166
MLIST:[Nano-devel] 20100407 New prerelease for security tweaks	CVE-2010-1160 CVE-2010-1161
MLIST:[Ntop-dev] 20050331 Minor security issue w/ ntop.init (RedHat Packages directory)	CVE-2005-3387
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.4.4 available	CVE-2007-1507
MLIST:[OpenAFS-announce] 20070319 OpenAFS 1.5.17 release available	CVE-2007-1507
MLIST:[OpenAFS-announce] 20070320 OpenAFS Security Advisory 2007-001: privilege escalation in Unix-based clients	CVE-2007-1507
MLIST:[OpenAFS-announce] 20071220 OpenAFS Security Advisory 2007-003: denial of service in OpenAFS fileserver	CVE-2007-6599
MLIST:[OpenBSD] 20011202 Code that crashes kernel at will + proposed patch	CVE-2001-1559
MLIST:[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs	CVE-2007-5934
MLIST:[Pcsclite-cvs-commit] 20101103 r5370 - /trunk/PCSC/src/atrhandler.c	CVE-2010-4531
MLIST:[Pen-Test] 20051104 Paros 3.2.7 release	CVE-2005-4668
MLIST:[Qemu-devel] 20070428 Qemu crashes on AAM 0	CVE-2007-1366
MLIST:[Qemu-devel] 20070429 Re: Qemu crashes on AAM 0	CVE-2007-1366
MLIST:[Qemu-devel] 20080428 [4277] add format= to drive options (CVE-2008-2004)	CVE-2008-2004
MLIST:[Qt-interest] 20020915 assistant leaves port unfiltered	CVE-2002-1883
MLIST:[Rt-announce] 20080623 Security vulnerability in RT 3.0 and up	CVE-2008-3502
MLIST:[SAP DB Dev] 20030422 Security Alert: Development Tools	CVE-2003-1033
MLIST:[ScryMUD] 20070223 ScryMUD 2.1.11 (stable) has been released.	CVE-2007-1098
MLIST:[Security-announce] 20080107 VMSA-2008-0001 Moderate OpenPegasus PAM Authentication Buffer Overflow and updated service console packages	CVE-2007-3108 CVE-2007-4572 CVE-2007-5116 CVE-2007-5135 CVE-2007-5191 CVE-2007-5360 CVE-2007-5398
MLIST:[Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1	CVE-2005-2090 CVE-2006-7195 CVE-2007-0450 CVE-2007-2788
MLIST:[Security-announce] 20080221 VMSA-2008-0003 Moderate: Updated aacraid driver and samba and python service console updates	CVE-2006-7228 CVE-2007-2052 CVE-2007-4308 CVE-2007-4965 CVE-2007-6015
MLIST:[Security-announce] 20080303 VMSA-2008-0004 Low: Updated e2fsprogs service console package	CVE-2007-5497
MLIST:[Security-announce] 20080328 VMSA-2008-0006 Updated libxml2 service console package	CVE-2007-6284
MLIST:[Security-announce] 20080415 VMSA-2008-0007 Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus	CVE-2006-7228 CVE-2007-1660 CVE-2007-5846 CVE-2008-0003
MLIST:[Security-announce] 20080728 VMSA-2008-00011 Updated ESX service console packages for Samba and vmnix	CVE-2006-4814 CVE-2007-5001 CVE-2007-6151 CVE-2007-6206 CVE-2008-0007 CVE-2008-1105 CVE-2008-1367 CVE-2008-1375 CVE-2008-1669
MLIST:[Security-announce] 20081030 VMSA-2008-0017 Updated ESX packages for libxml2, ucd-snmp, libtiff	CVE-2008-3281
MLIST:[Security-announce] 20081106 VMSA-2008-0018 VMware Hosted products and patches for ESX and ESXi resolve two security issues	CVE-2008-4281 CVE-2008-4915
MLIST:[Security-announce] 20090710 VMSA-2009-0009 ESX Service Console updates for udev, sudo, and curl	CVE-2009-0034 CVE-2009-0037 CVE-2009-1185
MLIST:[Server-cvs] 20070131 protocol/rtsp rtspprot.cpp,1.80,1.81	CVE-2006-6026
MLIST:[Shorewall-announce] 20040628 URGENT: Shorewall Security Vulnerability	CVE-2004-0647
MLIST:[Siteframe-Announce] 20051030 URGENT: additional security vulnerability, release 3.2.2	CVE-2005-4824
MLIST:[Siteframe-Announce] 20060621 WARNING: Security Vulnerability identified in Siteframe 3.x	CVE-2005-1965
MLIST:[Snort-announce] 20011129 Snort 1.8.3 Released	CVE-2001-1558
MLIST:[Snort-devel] 20060531 Snort Uricontent Bypass Vulnerability	CVE-2006-2769
MLIST:[Speex-dev] 20080406 libfishsound 0.9.1 Release	CVE-2008-1686
MLIST:[Swfdec] 20080409 Swfdec 0.6.4 released	CVE-2008-1834
MLIST:[TLS] 20050602 ANNOUNCE: PureTLS 0.9b5	CVE-2005-4839
MLIST:[TYPO3-announce] 20061219 Pre-announcement for important security update	CVE-2006-6690
MLIST:[TYPO3-announce] 20061220 TYPO3 Security Bulletin TYPO3-20061220-1: Remote Command Execution in TYPO3	CVE-2006-6690
MLIST:[Trac] 20051205 SECURITY: Trac 0.9.2 Released	CVE-2005-4065
MLIST:[Uim] 20050928 uim 0.5.0.1 released	CVE-2005-3149
MLIST:[Uim] 20050928 uim-0.4.9.1 released	CVE-2005-3149
MLIST:[Unbound-users] 20091007 Release of unbound 1.3.4	CVE-2009-3602
MLIST:[Users] 20070822 New version: 0.8.3 beta	CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070822 SECURITY: root privilege escalation / trivial reveal of stored passwords	CVE-2007-4500 CVE-2007-4501
MLIST:[Users] 20070823 New version: 0.8.3 beta	CVE-2007-4500 CVE-2007-4501
MLIST:[VIM] 20070821 Recent DB2 Vulnerabilities	CVE-2007-4270 CVE-2007-4271 CVE-2007-4272 CVE-2007-4273 CVE-2007-4275 CVE-2007-4276 CVE-2007-4417 CVE-2007-4418 CVE-2007-4423
MLIST:[VIM] 20070911 MIL 4383	CVE-2007-4817
MLIST:[VIM] 20100203 Re: disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection	CVE-2010-0158
MLIST:[VIM] 20100203 disputed: CVE-2010-0158 JoomlaBamboo (JB) Simpla Admin SQL injection	CVE-2010-0158
MLIST:[VIM] 20101109 osTicket 1.6 - Local File Inclusion	CVE-2010-4634
MLIST:[VOIPSEC] 20070319 Asterisk SDP DOS vulnerability	CVE-2007-1561 CVE-2007-1594
MLIST:[VOIPSEC] 20071216 Trixbox Arbitrary Command Execution Vulnerability	CVE-2007-6424
MLIST:[VOIPSEC] 20071219 Trixbox Arbitrary Command Execution Vulnerability	CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vuln (CVE-2007-6424) - PoC exploit code	CVE-2007-6424
MLIST:[VOIPSEC] 20071219 trixbox vulnerability fluff	CVE-2007-6424
MLIST:[Vortex] 20070530 [ANN] Vortex Library 1.0.3 "Hands open release" is ready!	CVE-2007-3046
MLIST:[Vserver] 20031218 SMP oops 2.4.23 v1.22	CVE-2003-1288
MLIST:[Vserver] 20031219 Re: SMP oops 2.4.23 v1.22	CVE-2003-1288
MLIST:[Vserver] 20031220 Re: SMP oops 2.4.23 v1.22	CVE-2003-1288
MLIST:[Vserver] 20050108 [Advisory] procfs in vserver	CVE-2004-2613
MLIST:[Vserver] 20060428 [SECURITY] ccaps not limited to root inside a guest	CVE-2006-2110
MLIST:[WWW-Mobile-Code] 20030706 can - IIS Version Disclosure	CVE-2003-1306
MLIST:[Wikitech-l] 20060523 MediaWiki 1.6.5 JavaScript Execution Vulnerability # 2	CVE-2006-2611
MLIST:[Xen-devel] 20071029 [PATCH] x86: allow pv guests to disable TSC for applications	CVE-2007-5907
MLIST:[Xen-devel] 20071031 [PATCH, fixed] x86: fix debug register handling	CVE-2007-5906
MLIST:[Xen-devel] 20080521 [PATCH] ioemu: Fix PVFB backend to limit frame buffer size	CVE-2008-1952
MLIST:[Xen-devel] 20090513 [PATCH] linux/i386: hypervisor_callback adjustments	CVE-2009-1758
MLIST:[Xen-devel] 20110509 Re: Xen security advisory CVE-2011-1583 - pv kernel image validation	CVE-2011-1583 CVE-2011-3262
MLIST:[Xen-devel] 20110509 Xen security advisory CVE-2011-1583 - pv kernel image validation	CVE-2011-1583 CVE-2011-3262
MLIST:[Xorg] 20040613 DRI merging	CVE-2006-6730
MLIST:[Zope-Annce] 20060821 Hotfix for Further reST Integration Issue	CVE-2006-4684
MLIST:[Zope-announce] 20060706 Serious security problem with Zope 2	CVE-2006-3458
MLIST:[Zope-dev] 20090706 zope.html with FCKEditor security fix	CVE-2009-2265
MLIST:[Zope] 20080812 Script (Python) insecure ?	CVE-2008-5102
MLIST:[alerts] 20070530 VMS83A_PASRTL-V0100, ECO Kit Release	CVE-2007-2998
MLIST:[alerts] 20070530 VMS83I_PASRTL-V0100, ECO Kit Release	CVE-2007-2998
MLIST:[alerts] 20080820 VMS732_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS821I_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS82A_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS831H1I_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS83A_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[alerts] 20080820 VMS83I_SMGRTL-V0100, ECO Kit Release	CVE-2008-4052
MLIST:[announce] 20061013 ViewVC 1.0.3 released [SECURITY FIXES]	CVE-2006-5442
MLIST:[announce] 20070314 Horde 3.1.4 (final)	CVE-2007-1473 CVE-2007-1474
MLIST:[announce] 20070314 IMP H3 (4.1.4) (final)	CVE-2007-1515
MLIST:[announce] 20070712 MySQL Community Server 5.0.45 has been released!	CVE-2007-2691 CVE-2007-2692 CVE-2007-3780 CVE-2007-3781 CVE-2007-3782
MLIST:[announce] 20080109 Horde 3.1.6 (final)	CVE-2007-6018 CVE-2008-7218
MLIST:[announce] 20080109 Horde Groupware 1.0.3 (final)	CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Kronolith H3 (2.1.7) (final)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Mnemo H3 (2.1.2) (final)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Nag H3 (2.1.4) (final)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080109 Turba H3 (2.1.6) (final)	CVE-2008-7218
MLIST:[announce] 20080110 Horde Groupware Webmail Edition 1.0.4 (final)	CVE-2007-6018 CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Horde 3.2-RC2	CVE-2008-7218
MLIST:[announce] 20080122 Kronolith H3 (2.2-RC2)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Mnemo H3 (2.2-RC2)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Nag H3 (2.2-RC2)	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080122 Turba H3 (2.2-RC2)	CVE-2008-7218
MLIST:[announce] 20080206 Horde Groupware 1.1-RC2	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080206 Horde Groupware Webmail Edition 1.1-RC2	CVE-2008-7218 CVE-2008-7219
MLIST:[announce] 20080215 Horde Groupware 1.0.4 (final)	CVE-2008-0807
MLIST:[announce] 20080215 Horde Groupware Webmail Edition 1.0.5 (final)	CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.1.7) (final)	CVE-2008-0807
MLIST:[announce] 20080215 Turba H3 (2.2-RC3)	CVE-2008-0807
MLIST:[announce] 20080307 Horde Groupware 1.0.5 (final)	CVE-2008-1284
MLIST:[announce] 20080307 Horde Groupware Webmail Edition 1.0.6 (final)	CVE-2008-1284
MLIST:[announce] 20080307 Horde 3.1.7 (final)	CVE-2008-1284
MLIST:[announce] 20080613 Turba H3 (2.2.1) (final)	CVE-2008-6746
MLIST:[announce] 20081210 Turba 2.3.1 (final)	CVE-2008-4182
MLIST:[announce] 20090108 NTP 4.2.4p6 Released	CVE-2009-0021
MLIST:[announce] 20090127 Horde 3.2.4 (final)	CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde 3.3.3 (final)	CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 Horde Groupware 1.1.5 (final)	CVE-2009-0931 CVE-2009-0932
MLIST:[announce] 20090127 IMP 4.2.2 (final)	CVE-2009-0930
MLIST:[announce] 20090127 IMP 4.3.3 (final)	CVE-2009-0930
MLIST:[announce] 20090705 Passwd H3 (3.1.1) (final)	CVE-2009-2360
MLIST:[announce] 20091107 CVE-2009-3555 - apache/mod_ssl vulnerability and mitigation	CVE-2009-3555
MLIST:[announce] 20091208 NTP 4.2.4p8 Released	CVE-2009-3563
MLIST:[announce] 20091215 Horde 3.3.6 (final)	CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20091216 Horde Groupware 1.2.5 (final)	CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20091217 Horde Groupware Webmail Edition 1.2.5 (final)	CVE-2009-3701 CVE-2009-4363
MLIST:[announce] 20100928 DIMP H3 (1.1.5) (final)	CVE-2010-3693
MLIST:[announce] 20100928 Gollem H3 (1.1.2) (final)	CVE-2010-3447
MLIST:[announce] 20100928 Horde 3.3.9 (final)	CVE-2010-3077 CVE-2010-3694
MLIST:[announce] 20100928 Horde Groupware Webmail Edition 1.2.7 (final)	CVE-2010-3693 CVE-2010-3695
MLIST:[announce] 20100928 IMP H3 (4.3.8) (final)	CVE-2010-3695
MLIST:[announce] 20110302 [SECURITY] Tomcat 7 ignores @ServletSecurity annotations	CVE-2011-1088 CVE-2011-1419
MLIST:[announce] 20110824 Advisory: Range header DoS vulnerability Apache HTTPD 1.3/2.x $CVE-2011-3192$	CVE-2011-3192
MLIST:[announce] 20111005 Advisory: mod_proxy reverse proxy exposure (CVE-2011-3368)	CVE-2011-3368
MLIST:[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability	CVE-2011-4858
MLIST:[announce] Horde 3.2.3 (final)	CVE-2008-5917
MLIST:[announce] Horde 3.3.1 (final)	CVE-2008-5917
MLIST:[apache-announce] 20090808 [ANNOUNCE] Apache ODE 1.3.3	CVE-2008-2370
MLIST:[apache-announce] 20100725 [ANNOUNCEMENT] Apache HTTP Server 2.2.16 Released	CVE-2010-1452 CVE-2010-2068
MLIST:[apache-cvs] 20040307 cvs commit: apache-1.3/src/modules/standard mod_access.c	CVE-2003-0993
MLIST:[apache-cvs] 20040307 cvs commit: httpd-2.0/modules/ssl ssl_engine_io.c	CVE-2004-0113
MLIST:[apache-cvs] 20070801 svn commit: r561616 - in /httpd/httpd/trunk: CHANGES	CVE-2007-3847
MLIST:[apache-db-general] 20100519 [ANNOUNCE] Apache Derby 10.6.1.0 released	CVE-2009-4269
MLIST:[apache-http-dev] 20070328 Re: [Fwd: iDefense Final Notice [IDEF1445]]	CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-http-dev] 20070328 [Fwd: iDefense Final Notice [IDEF1445]]	CVE-2007-1741 CVE-2007-1742 CVE-2007-1743
MLIST:[apache-httpd-announce] 20030120 [ANNOUNCE] Apache 2.0.44 Released	CVE-2003-0016
MLIST:[apache-httpd-announce] 20051014 Apache HTTP Server 2.0.55 Released	CVE-2005-2088
MLIST:[apache-httpd-dev] 20020925 CGI bucket needed	CVE-2002-1850
MLIST:[apache-httpd-dev] 20070622 Re: PID table changes (was Re: svn commit: r547987 - in /httpd/httpd/trunk)	CVE-2007-3304
MLIST:[apache-httpd-dev] 20070629 Re: [PATCH] pid safety checks for 2.2.x	CVE-2007-3304
MLIST:[apache-httpd-dev] 20070801 Re: svn commit: r561616 - in /httpd/httpd/trunk: CHANGES modules/proxy/proxy_util.c	CVE-2007-3847
MLIST:[apache-httpd-dev] 20090423 Includes vs IncludesNoExec security issue - help needed	CVE-2009-1195
MLIST:[apache-httpd-dev] 20090628 mod_deflate DoS	CVE-2009-1891
MLIST:[apache-httpd-dev] 20090703 Re: mod_deflate DoS	CVE-2009-1891
MLIST:[apache-modssl] 20040716 [ANNOUNCE] mod_ssl 2.8.19 for Apache 1.3.31	CVE-2004-0700
MLIST:[apache-modssl] 20050902 [ANNOUNCE] mod_ssl 2.8.24-1.3.33	CVE-2005-2700
MLIST:[apache] 20101107 [ANNOUNCE] mod_fcgid 2.3.6 is released	CVE-2010-3872
MLIST:[apr-dev] 20090602 [PATCH] prevent "billion laughs" attack against expat	CVE-2009-1955
MLIST:[archiva-users] 20101129 Apache Archiva CSRF Vulnerability	CVE-2010-3449 CVE-2010-4408
MLIST:[audacity-devel] 20090110 Audacity "String_parse::get_nonspace_quoted()" Buffer Overflow	CVE-2009-0490
MLIST:[automake-patches] 20091128 [PATCH] do not put world-writable directories in distribution tarballs	CVE-2009-4029
MLIST:[automake] 20091208 CVE-2009-4029 Automake security fix for 'make dist*'	CVE-2009-4029
MLIST:[automake] 20091208 GNU Automake 1.10.3 released	CVE-2009-4029
MLIST:[automake] 20091208 GNU Automake 1.11.1 released	CVE-2009-4029
MLIST:[automake] 20091208 Re: CVE-2009-4029 Automake security fix for 'make dist*'	CVE-2009-4029
MLIST:[avahi-tickets] 20061106 [Avahi] #69: Avahi needs to check the originating process of netlink messages	CVE-2006-5461
MLIST:[balsa-list] 20070704 balsa-2.3.17 released	CVE-2007-1558
MLIST:[bcfg-dev] 20110816 Security flaw in 1.1.x; testers wanted	CVE-2011-3211
MLIST:[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1	CVE-2006-2916 CVE-2006-4447
MLIST:[bind-announce] 20061103 Internet Systems Consortium Security Advisory. [revised]	CVE-2006-2937 CVE-2006-2940 CVE-2006-4339
MLIST:[bind-announce] 20070125 Internet Systems Consortium Security Advisory.	CVE-2007-0493 CVE-2007-0494
MLIST:[bind-announce] 20080919 BIND 9.3.5-P2-W2 is now available.	CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.4.2-P2-W2 is now available.	CVE-2008-4163
MLIST:[bind-announce] 20080919 BIND 9.5.0-P2-W2 is now available.	CVE-2008-4163
MLIST:[bind-announce] 20100928 Security Advisory Regarding Unexpected ACL Behavior in BIND 9.7.2	CVE-2010-0218
MLIST:[bk-commits-head] 20050319 [PATCH] Fix crash while reading /proc/net/route	CVE-2005-1041
MLIST:[bk-commits-head] 20050629 [NETLINK]: Missing initializations in dumped data	CVE-2005-4881
MLIST:[bluez-devel] 20050804 Possible security vulnerability in hcid when calling pin helper	CVE-2005-2547
MLIST:[bluez-devel] 20080616 SDP payload processing vulnerability	CVE-2008-2374
MLIST:[bug-anubis] 20040228 Important security update	CVE-2004-0353 CVE-2004-0354
MLIST:[bug-binutils] 20060418 [Bug binutils/2584] New: SIGSEGV in strings tool when the file is crafted.	CVE-2006-2362
MLIST:[bug-coreutils] 20091208 Re: build: distcheck: do not leave a $TMPDIR/coreutils directory behind	CVE-2009-4135
MLIST:[bug-coreutils] 20091209 [PATCH] doc: NEWS: mention the "make distcheck" vulnerability	CVE-2009-4135
MLIST:[bug-ed] 20080821 Version 1.0 of GNU ed released	CVE-2008-3916
MLIST:[bug-gnu-utils] 19990625 Re: bug in gzip: segfault when doing "gzip -t" on a broken file	CVE-2005-2458
MLIST:[bug-gzip] 20091002 gzip-1.3.13 released [major]	CVE-2009-2624
MLIST:[bug-patch] 20101230 Directory traversal vulnerability in patch (or dpkg-source) (fwd)	CVE-2010-4651
MLIST:[bug-wget] 20090922 Release: GNU Wget 1.12	CVE-2009-3490
MLIST:[bug-wget] 20100520 Re: security risk of unexpected download filenames	CVE-2010-2252
MLIST:[bug-wget] 20100520 security risk of unexpected download filenames	CVE-2010-2252
MLIST:[bug-wget] 20100521 Re: security risk of unexpected download filenames	CVE-2010-2252
MLIST:[cacti-announce] 20050701 Cacti 0.8.6f Released	CVE-2005-2148 CVE-2005-2149
MLIST:[cadaver] 20070123 release 0.22.5	CVE-2007-0157
MLIST:[cedet-devel] 20120109 Security flaw in EDE	CVE-2012-0035
MLIST:[cedet-devel] 20120111 CEDET 1.0.1 available online	CVE-2012-0035
MLIST:[cgiirc-general] 20110207 CGI:IRC 0.5.10 released to fix XSS issue (CVE-2011-0050)	CVE-2011-0050
MLIST:[cgit] 20110722 [PATCH] Fix potential XSS vulnerability in rename hint	CVE-2011-2711
MLIST:[cisco-nsp] 20070817 About the posting entitled "Heads up: "sh ip bgp regexp" crashing router"	CVE-2007-4430
MLIST:[cisco-nsp] 20070817 Heads up: "sh ip bgp regexp" crashing router	CVE-2007-4430
MLIST:[clamav-announce] 20081126 announcing ClamAV 0.94.2	CVE-2008-5314
MLIST:[clamav-devel] 20070418 Bug in OLE2 file parser	CVE-2007-2650
MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.55.2.18,1.55.2.19	CVE-2009-4248
MLIST:[client-cvs] 20080117 core rtspprotocol.cpp,1.85,1.86	CVE-2009-4248
MLIST:[client-dev] 20080117 CR: fix for bug 211210	CVE-2009-4248
MLIST:[cluster-devel] 20070619 cluster/cman/daemon daemon.c	CVE-2007-3373 CVE-2007-3374
MLIST:[cluster-devel] 20100525 [PATCH 3/3] GFS2: Fix permissions checking for setflags ioctl()	CVE-2010-1641
MLIST:[commits] 20060504 bk commit into 4.1 tree (bar:1.2474)	CVE-2006-4226
MLIST:[commits] 20060620 bk commit into 5.0 tree (kroki:1.2168) BUG#18630	CVE-2006-4227
MLIST:[commits] 20081124 bzr commit into mysql-6.0-backup branch (ingo.struewing:2744) Bug#39277	CVE-2008-7247
MLIST:[commits] 20091020 bzr commit into mysql-4.1 branch (joro:2709) Bug#47320	CVE-2009-4028
MLIST:[commits] 20091110 bzr commit into mysql-5.0-bugteam branch (joro:2845) Bug#32167	CVE-2009-4030
MLIST:[commits] 20100113 bzr commit into mysql-5.0-bugteam branch (ramil:2838) Bug#50227	CVE-2009-4484
MLIST:[commits] 20100824 Horde branch master updated. 025a1bfbe69622036f8e3a27a6edd39c02dcd4ea	CVE-2010-3447
MLIST:[common-cvs] 20070703 util hxurl.cpp,1.24.4.1,1.24.4.1.4.1	CVE-2010-0416
MLIST:[common-cvs] 20080114 util rlstate.cpp,1.9,1.10	CVE-2010-0417
MLIST:[commons-dev] 20110812 [AANNOUNCE] Apache Commons Daemon 1.0.7 released	CVE-2011-2729
MLIST:[conquest] 20070303 Re: security bugs in conquest	CVE-2007-1371
MLIST:[continuum-users] 20110210 [SECURITY] CVE-2010-3449: Apache Continuum CSRF vulnerability	CVE-2010-3449
MLIST:[continuum-users] 20110210 [SECURITY] CVE-2011-0533: Apache Continuum cross-site scripting vulnerability	CVE-2011-0533
MLIST:[cosmo-dev] 20071207 Chandler Server (Cosmo) 0.10.1 released	CVE-2007-6383
MLIST:[couchdb-dev] 20110128 CVE-2010-3854: Apache CouchDB Cross Site Scripting Issue	CVE-2010-3854
MLIST:[courier-announce] 20080608 courier-authlib 0.60.6 released	CVE-2008-2667
MLIST:[courier-users] 20050824 Re: [SECUNIA] Vulnerability in SqWebMail	CVE-2005-2724
MLIST:[courier-users] 20080314 Re: [courier-users] [Fwd: Re: authmysql vs apostrophe]	CVE-2008-2667
MLIST:[cryptography] 20091105 OpenSSL 0.9.8l released	CVE-2009-3555
MLIST:[cscope-cvs] 20090410 CVS: cscope/src snprintf.c, NONE, 1.1 build.c, 1.14, 1.15 command.c, 1.32, 1.33 dir.c, 1.30, 1.31 display.c, 1.29, 1.30 edit.c, 1.6, 1.7 exec.c, 1.11, 1.12 find.c, 1.20, 1.21 global.h, 1.36, 1.37 main.c, 1.45, 1.46 Makefile.am, 1.12, 1.13 Makefile.in, 1.15, 1.16 vpaccess.c, 1.2, 1.3 vpfopen.c, 1.3, 1.4 vpopen.c, 1.4, 1.5	CVE-2009-0148
MLIST:[curl-users] 20030529 Re: https, redirection and authentication using POST	CVE-2003-1311 CVE-2003-1312
MLIST:[current-users] 20061110 [Security Fix] ptrace insufficient bounds checking	CVE-2006-6014
MLIST:[cvs-all] 20081102 cvs commit: ports/emulators/qemu Makefile ports/emulators/qemu/files patch-CVE-2008-4539 ports/emulators/qemu-devel Makefile ports/emulators/qemu-devel/files patch-CVE-2008-4539	CVE-2008-4539
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/	CVE-2009-1553
MLIST:[cvs] 20090320 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/java/com/sun/enterprise/tools/admingui/handlers/CommonHandlers.java	CVE-2009-1553
MLIST:[cvs] 20090321 CVS update: /woodstock/webui/src/runtime/com/sun/webui/theme/ThemeServlet.java	CVE-2009-1554
MLIST:[cvs] 20090322 CVS update [SJSAS91_FCS_BRANCH]: /glassfish/admin-gui/src/docroot/configuration/	CVE-2009-1553
MLIST:[cxf-users] 20100616 Important - Apache CXF security advisory CVE-2010-2076	CVE-2010-2076
MLIST:[cygwin-announce] 20080805 Updated: Setup.exe updated to version 2.573.2.3	CVE-2008-3323
MLIST:[cygwin-developers] 20071108 Re: cygwin1.dll up to 1.5.22 overflow	CVE-2007-6181
MLIST:[cygwin-developers] 20071120 Re: cygwin1.dll up to 1.5.22 overflow	CVE-2007-6181
MLIST:[cyrus-announce] 20041122 Cyrus IMAPd 2.2.9 Released	CVE-2004-1011 CVE-2004-1012 CVE-2004-1013
MLIST:[cyrus-announce] 20041123 Cyrus IMAPd 2.2.10 Released	CVE-2004-1015
MLIST:[cyrus-announce] 20110908 Cyrus 2.3.17 Released	CVE-2011-3208
MLIST:[cyrus-announce] 20110908 Cyrus 2.4.11 Released	CVE-2011-3208
MLIST:[dailydave] 20060207 Fun with Linux (2.6.12 -> 2.6.15.2)	CVE-2006-0454
MLIST:[dailydave] 20070110 Algorithmic Bugs	CVE-2006-6931
MLIST:[dailydave] 20070130 Vista speach recognition	CVE-2007-0675
MLIST:[dailydave] 20070131 Vista speach recognition	CVE-2007-0675
MLIST:[dailydave] 20070216 Minor Virtualization Vulnerability	CVE-2007-1222
MLIST:[dailydave] 20070227 Wow, free kernel zero day?	CVE-2007-1189
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption	CVE-2007-1922
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero)	CVE-2007-1921
MLIST:[dailydave] 20070406 AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption	CVE-2007-1922
MLIST:[dailydave] 20070706 (no subject)	CVE-2007-3634 CVE-2007-3637
MLIST:[dailydave] 20070708 SquirrelMail GPG Plugin vuln	CVE-2007-3634 CVE-2007-3778
MLIST:[dailydave] 20070709 SquirrelMail GPG Plugin vuln	CVE-2007-3634 CVE-2007-3636 CVE-2007-3778
MLIST:[dailydave] 20080811 A new datapoint for 0day lifetime	CVE-2008-4434
MLIST:[dailydave] 20081002 TCP Resource Exhaustion DoS Attack Speculation	CVE-2008-4609
MLIST:[dailydave] 20081107 All Ur WiFi(WPA) R Belong 2 PacSec	CVE-2008-5230
MLIST:[dailydave] 20090219 SSL MITM fun.	CVE-2009-0652
MLIST:[dailydave] 20090220 SSL MITM fun.	CVE-2009-0652
MLIST:[dailydave] 20100106 0day demos	CVE-2009-4484
MLIST:[dailydave] 20100119 We hold these axioms to be self evident	CVE-2010-0232
MLIST:[dailydave] 20100120 Sun Web Server digest auth overflow	CVE-2010-0387
MLIST:[dailydave] 20100126 New db bugs	CVE-2009-4484
MLIST:[dailydave] 20100304 Perforce	CVE-2010-0929 CVE-2010-0930 CVE-2010-0931 CVE-2010-0932 CVE-2010-0933 CVE-2010-0934 CVE-2010-0935
MLIST:[dailydave] 20100401 0day, it may not be	CVE-2009-4764 CVE-2010-1240 CVE-2010-1241
MLIST:[dailydave] 20100402 0day, it may not be	CVE-2009-0836
MLIST:[dailydave] 20110404 SLAAC Attack - 0day Windows Network Interception Configuration Vulnerability	CVE-2011-1652
MLIST:[dailydave] 20110415 Another Microsoft (and other) IPv6 security issue: sniffer detection	CVE-2010-4562 CVE-2010-4563
MLIST:[dailydave] 20111130 The Vampire Diaries	CVE-2011-4161
MLIST:[dailydave] 20111206 Flash 0day	CVE-2011-4693 CVE-2011-4694 CVE-2011-4695
MLIST:[dailydave] 20120106 Apache Struts	CVE-2012-0392
MLIST:[datatype-cvs] 20080722 image/gif/common gifcodec.cpp, 1.6, 1.7 gifimage.cpp, 1.5, 1.6	CVE-2009-4245
MLIST:[datatype-cvs] 20080909 image/gif/common gifcodec.cpp,1.7,1.8	CVE-2009-4242
MLIST:[datatype-cvs] 20080916 smil/common smlpkt.cpp,1.11,1.12	CVE-2009-4257
MLIST:[dbus] 20070317 D-Bus daemon endianness issue	CVE-2011-2200
MLIST:[dbus] 20080227 [ANNOUNCE] CVE-2008-0595 D-Bus Security Releases - D-Bus 1.0.3 and D-Bus 1.1.20	CVE-2008-0595
MLIST:[dbus] 20081205 [CVE-2008-4311] DBus 1.2.6	CVE-2008-4311
MLIST:[dbus] 20110530 D-Bus daemon big and little endian issue	CVE-2011-2200
MLIST:[dccp] 20070328 [PATCH 1/1] getsockopt: Fix DCCP_SOCKOPT_[SEND,RECV]_CSCOV	CVE-2007-1730
MLIST:[debian-apache] 20050119 Bug#290974: marked as done (apache: Temporary usage bugs that can be used in symlink attacks)	CVE-2004-1387
MLIST:[debian-bugs-dist] 20090810 Bug#540865: libxml2: CVE-2009-2414, CVE-2009-2416 pointer-user-after-free and stack overflow because of function recursion	CVE-2009-2414 CVE-2009-2416
MLIST:[debian-bugs-rc] 20080805 Bug#484305: bicyclerepair: bike.vim imports untrusted python files from cwd	CVE-2008-5983 CVE-2009-0316
MLIST:[debian-bugs-rc] 20090430 Bug#526258: CVE-2009-1339: CSRF Vulnerability with Image Tag	CVE-2009-1339
MLIST:[debian-bugs] 20081112 Bug#493937: [Patch] Prevent loading of Python modules in working directory	CVE-2008-5983
MLIST:[debian-changes] 20100128 Accepted lintian 1.24.2.1+lenny1 (source all)	CVE-2009-4013 CVE-2009-4014 CVE-2009-4015
MLIST:[debian-devel-changes] 20030909 Accepted kdbg 1.2.9-1 (i386 source)	CVE-2003-0644
MLIST:[debian-devel-changes] 20081101 Accepted qemu 0.9.1+svn20081101-1 (source amd64)	CVE-2008-4539
MLIST:[debian-devel-changes] 20100105 Accepted transmission 1.77-1 (source all amd64)	CVE-2010-0012
MLIST:[debian-devel] 20080811 Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-4474 CVE-2008-4475
MLIST:[debian-devel] 20080811 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-5135 CVE-2008-5136 CVE-2008-5137 CVE-2008-5138 CVE-2008-5139 CVE-2008-5140 CVE-2008-5141 CVE-2008-5142 CVE-2008-5143 CVE-2008-5144 CVE-2008-5145 CVE-2008-5366 CVE-2008-5367 CVE-2008-5368 CVE-2008-5369 CVE-2008-5370 CVE-2008-5371 CVE-2008-5372 CVE-2008-5378 CVE-2008-5379 CVE-2008-5380 CVE-2008-6398
MLIST:[debian-devel] 20080812 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-4476 CVE-2008-4477 CVE-2008-6397
MLIST:[debian-devel] 20080813 Re: Possible mass bug filing: The possibility of attack with the help of symlinks in some Debian packages	CVE-2008-5146 CVE-2008-5147 CVE-2008-5148 CVE-2008-5149 CVE-2008-5150 CVE-2008-5151 CVE-2008-5152 CVE-2008-5153 CVE-2008-5154 CVE-2008-5155 CVE-2008-5156 CVE-2008-5157 CVE-2008-5373 CVE-2008-5374 CVE-2008-5375 CVE-2008-5376 CVE-2008-5377
MLIST:[debian-kernel] 20050809 Re: ACL patches in Debian 2.4 series kernel.	CVE-2005-2801
MLIST:[debian-openoffice] 20100212 ./packages/openofficeorg/3.1.1/unstable r1866: merge 1:3.1.1-15+squeeze1	CVE-2010-0136
MLIST:[debian-security-announce] 20071003 [SECURITY] [DSA 1379-1] New quagga packages fix denial of service	CVE-2007-4826
MLIST:[debian-security-tracker] 20110908 Security Fix for mantis stable 1.1.8	CVE-2011-3356 CVE-2011-3357 CVE-2011-3358 CVE-2011-3578
MLIST:[debian-security] 20080219 qemu unchecked block read/write vulnerability	CVE-2008-0928
MLIST:[debian-security] 20110510 Re: World writable pid and lock files.	CVE-2011-1784 CVE-2011-2147
MLIST:[debian-security] 20110510 World writable pid and lock files.	CVE-2011-1784 CVE-2011-2147
MLIST:[debian-security] 20110511 Re: World writable pid and lock files.	CVE-2011-1784
MLIST:[debian-sparc] 20060128 `date -s' on sparc64	CVE-2006-0482
MLIST:[debian-testing-security-announce] 20090211 Security update for Debian Testing - 2009-02-12	CVE-2009-0359
MLIST:[debian-testing-security-announce] 20090213 Security update for Debian Testing - 2009-02-14	CVE-2009-0363
MLIST:[dev-crypto] 20071109 Bouncy Castle Crypto Provider Package version 1.36 now available	CVE-2007-6721
MLIST:[dev] 20070813 Geronimo 2.0 Release suspended due to security issue found before release	CVE-2007-4548
MLIST:[dev] 20090319 [DSECRG] Sun Glassfish Multiple Security Vulnerabilities	CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090411 Re: [DSECRG] Sun Glassfish Multiple Security Vulnerabilities	CVE-2009-1553 CVE-2009-1554
MLIST:[dev] 20090424 Buffer overflow in apr_brigade_vprintf() ?	CVE-2009-1956
MLIST:[dev] 20090424 Re: Buffer overflow in apr_brigade_vprintf() ?	CVE-2009-1956
MLIST:[dev] 20090806 Patch to 1.4.x branch for CVE-2009-2411	CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.5.7 Released	CVE-2009-2411
MLIST:[dev] 20090806 Subversion 1.6.4 Released	CVE-2009-2411
MLIST:[dev] 20100806 Two exploitable OpenOffice.org bugs!	CVE-2010-2935 CVE-2010-2936
MLIST:[dev] 20101104 "svn blame -g" causing svnserve to hang & mem usage to hit 2GB	CVE-2010-4644
MLIST:[dev] 20110303 Subversion 1.6.16 Released	CVE-2011-0715
MLIST:[dev] 20110510 Re: Apache Portable Runtime 1.4.4 [...] Released	CVE-2011-0419
MLIST:[dev] 20110510 Re: fnmatch rewrite in apr, apr 1.4.3	CVE-2011-0419
MLIST:[dev] 20110511 Re: Apache Portable Runtime 1.4.4 [...] Released	CVE-2011-0419
MLIST:[dev] 20110823 Re: DoS with mod_deflate & range requests	CVE-2011-3192
MLIST:[devel] 20090528 [patch] libpurple/protocols/oscar: OOM and die on misparsed ICQWebMessage as ICQSMS	CVE-2009-1889
MLIST:[devel] 20090910 New version available [was: Is there a specific security contact address?]	CVE-2009-2937
MLIST:[dhcp-users] 20101207 nagios check_tcp kills failover, then dhcp failure.	CVE-2010-3616
MLIST:[dhcpcd-discuss] 20110406 [CVE-2011-996] dhcpcd does not strip or escape shell meta characters	CVE-2011-0996
MLIST:[dia-list] 20060329 Vulnerability in xfig import code	CVE-2006-1550
MLIST:[distcc] 20040826 Exploit in distcc ( got compromised ;( )	CVE-2004-2687
MLIST:[distro-pkg-dev] 20090211 changeset in /hg/icedtea6: 2009-02-11 Omair Majid <omajid at redh...	CVE-2009-0794
MLIST:[djabberd] 20110604 CVE-2011-1757: djabberd billion laughs vulnerability	CVE-2011-1757
MLIST:[djabberd] 20110613 Security Release DJabberd 0.85	CVE-2011-2206
MLIST:[dl-ticket-service] 20100311 dl 0.7 released	CVE-2010-0963
MLIST:[dns] 20090225 djbdns misformats some long response packets; patch and example	CVE-2009-0858
MLIST:[dns] 20090304 djbdns<=1.05 lets AXFRed subdomains overwrite domains	CVE-2009-0858
MLIST:[dnsmasq-discuss] 20080720 dnsmasq 2.44 available.	CVE-2008-3350
MLIST:[dokuwiki] 20110614 Hotfix Release "2011-05-25a Rincewind"	CVE-2011-2510
MLIST:[dovecot-cvs] 20070330 dovecot/src/lib-storage/index/mbox mbox-storage.c, 1.145.2.14, 1.145.2.15	CVE-2007-2231
MLIST:[dovecot-news] 20070330 Security hole #3: zlib plugin allows opening any gziped mboxes	CVE-2007-2231
MLIST:[dovecot-news] 20070801 v1.0.3 released	CVE-2007-4211
MLIST:[dovecot-news] 20091120 v1.2.8 released	CVE-2009-3897
MLIST:[dovecot-news] 20100308 v1.2.11 released	CVE-2010-0745
MLIST:[dovecot-news] 20100724 v1.2.13 released	CVE-2010-3304
MLIST:[dovecot] 20100219 segfault - (imap\|pop3)-login during nessus scan	CVE-2010-0433
MLIST:[dovecot] 20100227 Possible CPU Denial-Of-Service attack to dovecot IMAP.	CVE-2010-0745
MLIST:[dovecot] 20101002 ACL handling bugs in v1.2.8+ and v2.0	CVE-2010-3706 CVE-2010-3707 CVE-2010-3779
MLIST:[dovecot] 20101002 v1.2.15 released	CVE-2010-3706 CVE-2010-3707 CVE-2010-3779 CVE-2010-3780
MLIST:[dovecot] 20101002 v2.0.5 released	CVE-2010-3706 CVE-2010-3707
MLIST:[dovecot] 20110511 v1.2.17 released	CVE-2011-1929
MLIST:[dovecot] 20110511 v2.0.13 released	CVE-2011-1929 CVE-2011-2166 CVE-2011-2167
MLIST:[dropbear] 20051211 Dropbear 0.47 (and security fix)	CVE-2005-4178
MLIST:[dtcannounce] 20110303 Fwd: [SECURITY] [DSA 2179-1] dtc security update	CVE-2011-0434 CVE-2011-0435 CVE-2011-0436 CVE-2011-0437
MLIST:[ebd-devel] 20060502 actualización de seguridad	CVE-2006-2349
MLIST:[ecryptfs-devel] 20081222 Re: [PATCH, v5] eCryptfs: check readlink result was not an error before using it	CVE-2009-0269
MLIST:[ekiga-list] 20070917 [ANNOUNCE] Ekiga 2.0.10 released	CVE-2007-4924
MLIST:[elinks-users] 20080204 [ANNOUNCE] ELinks 0.11.4rc0	CVE-2008-7224
MLIST:[emacs-devel] 20071003 temp file hole?	CVE-2007-5377
MLIST:[emacs-devel] 20071004 Re: temp file hole?	CVE-2007-5377
MLIST:[emacs-devel] 20080510 [mwelinder@bogus.example.com: Emacs security bug]	CVE-2008-2142
MLIST:[emacs-devel] 20080905 Vulnerability in Emacs python integration	CVE-2008-3949
MLIST:[emacs-devel] 20120109 Security flaw in EDE; new release plans	CVE-2012-0035
MLIST:[emdros-announce] 20061201 Emdros version 1.2.0.pre231 released	CVE-2006-6395
MLIST:[enomalism] 20081212 ECP 2.1.1 Released	CVE-2008-4990
MLIST:[eoc] 20061213 EoC 1.2.4 -- security problem fixed, please upgrade immediately	CVE-2006-5875
MLIST:[ethereal-dev] 20040318 ethereal radius dissector vulnerability	CVE-2004-0365
MLIST:[ewg] 20101021 [PATCH] security fix in openibd script	CVE-2010-1693
MLIST:[exim-announce] 20020219 Exim 3.35 released	CVE-2002-0274
MLIST:[exim-announce] 20110125 Exim 4.74 Release	CVE-2011-0017
MLIST:[exim-announce] 20110509 Exim 4.76 Release	CVE-2011-1407
MLIST:[exim-announce] 20110512 Exim 4.76 Release: updated impact assessment	CVE-2011-1407
MLIST:[exim-dev] 20100524 Security issues in exim4 local delivery	CVE-2010-2023 CVE-2010-2024
MLIST:[exim-dev] 20101207 Remote root vulnerability in Exim	CVE-2010-4344 CVE-2010-4345
MLIST:[exim-dev] 20101209 Re: [Exim-maintainers] Remote root vulnerability in Exim	CVE-2010-4345
MLIST:[exim-dev] 20101210 Re: Remote root vulnerability in Exim	CVE-2010-4344 CVE-2010-4345
MLIST:[exim] 20050104 2 smallish security issues	CVE-2005-0021 CVE-2005-0022
MLIST:[expat-bugs] 20090117 [ expat-Bugs-1990430 ] Parser crash with specially formatted UTF-8 sequences	CVE-2009-3720
MLIST:[expat-bugs] 20091108 [ expat-Bugs-2894085 ] expat: buffer over-read and crash in big2_toUtf8()	CVE-2009-3560
MLIST:[exploits] 20061201 0-day BlazeHDTV v2.1 Malformed PLF Buffer Overflow Exploit	CVE-2006-6199
MLIST:[fedora-announce-list] 20040311 Re: [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.1	CVE-2003-0989 CVE-2004-0055 CVE-2004-0057
MLIST:[fedora-announce] 20040422 Fedora alert FEDORA-2004-111 (kernel)	CVE-2004-0394
MLIST:[fedora-desktop-list] 20070918 Re: fuse (Was Re: early-gdm redux)	CVE-2007-5159
MLIST:[fedora-devel-list] 20070122 Re: rawhide report: 20070120 changes	CVE-2007-0003
MLIST:[fedora-package-announce] 20070604 [SECURITY] Fedora 7 Update: NetworkManager-0.6.5-3.fc7	CVE-2007-2874
MLIST:[fedora-security-commits] 20080620 fedora-security/audit f10, 1.7, 1.8 f8, 1.225, 1.226 f9, 1.215, 1.216	CVE-2008-2725 CVE-2008-2726
MLIST:[fedora-security-list] 20090612 git daemon DoS	CVE-2009-2108
MLIST:[ffmpeg-cvslog] 20080812 r14714 - trunk/libavformat/utils.c	CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080812 r14715 - trunk/libavformat/avformat.h	CVE-2008-4866
MLIST:[ffmpeg-cvslog] 20080816 r14787 - trunk/libavcodec/utils.c	CVE-2008-4868
MLIST:[ffmpeg-cvslog] 20080823 r14917 - trunk/libavcodec/dca.c	CVE-2008-4867
MLIST:[ffmpeg-devel] 20101229 [PATCH] Fix a couple of errors with bad Vorbis headers	CVE-2011-0480
MLIST:[file] 20070302 file-4.20 is now available	CVE-2007-1536
MLIST:[file] 20090501 file 5.01 is now available	CVE-2009-1515
MLIST:[file] 20090504 file-5.02 is now available	CVE-2009-3930
MLIST:[fishcart] 20050521 Re: Concerned about security	CVE-2005-1486
MLIST:[flex-announce] 20060222 flex 2.5.33 released	CVE-2006-0459
MLIST:[fm-news] 20010713 Newsletter for Friday, July 13th 2001	CVE-2001-1081
MLIST:[fm-news] 20041001 Newsletter for Thursday, September 30th 2004	CVE-2004-2153
MLIST:[fm-news] 20041102 Newsletter for Monday, November 01st 2004	CVE-2004-2217
MLIST:[fm-news] 20041123 Newsletter for Monday, November 22nd 2004	CVE-2004-2485
MLIST:[fm-news] 20051208 Newsletter for Thursday, December 08th 2005	CVE-2005-4132
MLIST:[fm-news] 20060204 Newsletter for Friday, February 03rd 2006	CVE-2006-0751
MLIST:[fm-news] 20080113 Newsletter for Saturday, January 12th 2008	CVE-2008-7189 CVE-2008-7197
MLIST:[fm-news] 20080123 Newsletter for Tuesday, January 22nd 2008	CVE-2008-7198
MLIST:[fm-news] 20080126 Newsletter for Friday, January 25th 2008	CVE-2008-7196 CVE-2008-7202
MLIST:[fm-news] 20080206 Newsletter for Tuesday, February 05th 2008	CVE-2008-7228
MLIST:[focus-sun] 20031022 Information disclosure with SMC webserver on Solaris 9	CVE-2004-1354
MLIST:[foswiki-announce] 20090427 Security Alert CVE-2009-1434: Foswiki Page View Cross-Site Request Forgery (CSRF)	CVE-2009-1434
MLIST:[foswiki-announce] 20101110 [ANNOUNCE] Foswiki Security Alert CVE-2010-4215 - User can alter topic preferences using the "Edit topic preference settings" feature and save them even though he has no privileges to edit the topic.	CVE-2010-4215
MLIST:[freebsd-cvs-src] 20060520 cvs commit: src/sys/posix4 p1003_1b.c	CVE-2006-5483
MLIST:[freebsd-cvs-src] 20060531 cvs commit: src/sys/ufs/ufs ufs_vnops.c	CVE-2006-5482
MLIST:[freebsd-hackers] 20050304 Re: FW:FreeBSD hiding security stuff	CVE-2005-0109
MLIST:[freebsd-security] 19961025 Vadim Kolontsov: BoS: Linux & BSD's lpr exploit	CVE-1999-0032
MLIST:[freebsd-security] 20021109 Security issue in net/cvsup-mirror port	CVE-2002-2382
MLIST:[freebsd-security] 20050304 [Fwd: Re: FW:FreeBSD hiding security stuff]	CVE-2005-0109
MLIST:[freebsd-security] 20060728 Ruby vulnerability?	CVE-2006-3694
MLIST:[freebsd-security] 20060730 Ruby vulnerability?	CVE-2006-3694
MLIST:[freebsd-security] 20061002 FreeBSD Security Advisory FreeBSD-SA-06:22.openssh	CVE-2006-5051
MLIST:[freebsd-security] 20061206 Intel LAN Driver Buffer Overflow Local Privilege Escalation	CVE-2006-6385
MLIST:[freebsd-security] 20070114 MOAB advisories	CVE-2006-5679 CVE-2006-5824 CVE-2007-0229 CVE-2007-0267
MLIST:[freebsd-security] 20111223 Merry Christmas from the FreeBSD Security Team	CVE-2011-4862
MLIST:[freeradius-users] 20090909 Version 1.1.8 has been released	CVE-2009-3111
MLIST:[freetype-devel] 20110708 Re: details on iPhone exploit caused by FreeType?	CVE-2011-0226
MLIST:[freetype-devel] 20110708 details on iPhone exploit caused by FreeType?	CVE-2011-0226
MLIST:[freetype-devel] 20110709 Re: details on iPhone exploit caused by FreeType?	CVE-2011-0226
MLIST:[freetype-devel] 20110711 Re: details on iPhone exploit caused by FreeType?	CVE-2011-0226
MLIST:[freetype] 20100712 FreeType 2.4.0 has been released	CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520 CVE-2010-2527
MLIST:[frox-user] 20050204 Frox 0.7.18 - security fixes.	CVE-2005-2808
MLIST:[frugalware-git] 20081014 kernel2627: ndiswrapper-1.53-6-i686	CVE-2008-4395
MLIST:[ft-devel] 20070427 Bug in fuzzed TTF file	CVE-2007-2754
MLIST:[funsec] 20060110 Another WMF flaw without a Microsoft patch	CVE-2006-0020
MLIST:[funsec] 20060308 DOSing Outlook 2003	CVE-2006-1305
MLIST:[gcc-bugs] 20020506 c/6586: -ftrapv doesn't catch multiplication overflow	CVE-2000-1219
MLIST:[gcc-bugs] 20060417 [Bug c/27180] New: pointer arithmetic overflow handling broken	CVE-2006-1902
MLIST:[gcc-bugs] 20060417 [Bug middle-end/27180] New: pointer arithmetic overflow handling broken	CVE-2006-1902
MLIST:[gcc-patches] 20080306 Re: [PATCH, i386]: Emit cld instruction when stringops are used	CVE-2008-1367
MLIST:[gcc-patches] 20080306 [PATCH, i386]: Emit cld instruction when stringops are used	CVE-2008-1367
MLIST:[gcc-patches] 20080307 Re: [PATCH, i386]: Emit cld instruction when stringops are used	CVE-2008-1367
MLIST:[gdm-list] 20110328 GDM 2.32.1 released	CVE-2011-0727
MLIST:[git-commits-head] 20060311 [PATCH] selinux: tracer SID fix	CVE-2006-1052
MLIST:[git-commits-head] 20080307 x86: clear DF before calling signal handler	CVE-2008-1367
MLIST:[git-commits-head] 20080507 sparc: Fix mmap VA span checking.	CVE-2008-2137
MLIST:[git-commits-head] 20090205 shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM	CVE-2009-0859
MLIST:[git-commits-head] 20091208 net: Automatically allocate per namespace data.	CVE-2011-2189
MLIST:[git] 20080716 [PATCH] Fix buffer overflow in git diff	CVE-2008-3546
MLIST:[git] 20081220 [Security] gitweb local privilege escalation (fix)	CVE-2008-5916
MLIST:[git] 20110305 [ANNOUNCE] CGIT 0.8.3.5	CVE-2011-1027
MLIST:[glbs-security-announce] 20070517 Globus Security Advisory 2007-03: Nexus vulnerability	CVE-2007-2784
MLIST:[gnome-announce] 20020503 Patch for serious bug in 1.0.3	CVE-2002-1765
MLIST:[gnome-networkmanager-list] 20050728 format string bug in nm_info_handler	CVE-2005-2410
MLIST:[gnome-networkmanager-list] 20050729 Re: format string bug in nm_info_handler	CVE-2005-2410
MLIST:[gnupg-announce] 20060215 False positive signature verification in GnuPG	CVE-2006-0455
MLIST:[gnupg-announce] 20060309 [Announce] GnuPG does not detect injection of unsigned data	CVE-2006-0049
MLIST:[gnupg-announce] 20061127 GnuPG 1.4 and 2.0 buffer overflow	CVE-2006-6169
MLIST:[gnupg-announce] 20100723 [Announce] Security Alert for GnuPG 2.0 - Realloc bug in GPGSM	CVE-2010-2547
MLIST:[gnupg-announce] GnuPG: remotely controllable function pointer [CVE-2006-6235]	CVE-2006-6235
MLIST:[gnupg-devel] 20060215 [Announce] False positive signature verification in GnuPG	CVE-2006-0455
MLIST:[gnupg-users] 20070306 [Announce] Multiple Messages Problem in GnuPG and GPGME	CVE-2007-1263 CVE-2007-1264 CVE-2007-1265 CVE-2007-1266 CVE-2007-1267 CVE-2007-1268 CVE-2007-1269
MLIST:[gnutls-dev] 20040802 gnutls 1.0.17	CVE-2004-2531
MLIST:[gnutls-dev] 20050428 GnuTLS 1.2.3 and 1.0.25	CVE-2005-1431
MLIST:[gnutls-dev] 20060209 GnuTLS 1.2.10 - Security release	CVE-2006-0645
MLIST:[gnutls-dev] 20060209 GnuTLS 1.3.4 - Experimental - Security release	CVE-2006-0645
MLIST:[gnutls-dev] 20060209 Libtasn1 0.2.18 - Tiny ASN.1 Library - Security release	CVE-2006-0645
MLIST:[gnutls-dev] 20060812 GnuTLS 1.4.2	CVE-2006-7239
MLIST:[gnutls-dev] 20060812 Re: [Fwd: crash in GNUTLS-1.4.0]	CVE-2006-7239
MLIST:[gnutls-dev] 20060908 Variant of Bleichenbacher's crypto 06 rump session attack	CVE-2006-4790
MLIST:[gnutls-dev] 20060912 Re: Variant of Bleichenbacher's crypto 06 rump session attack	CVE-2006-4790
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1]	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 GnuTLS 2.2.5 - Brown paper bag release	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080519 Re: GnuTLS 2.2.4 - Security release [GNUTLS-SA-2008-1]	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[gnutls-devel] 20080630 Details on the gnutls_handshake local crash problem [GNUTLS-SA-2008-2]	CVE-2008-2377
MLIST:[gnutls-devel] 20080630 GnuTLS 2.4.1	CVE-2008-2377
MLIST:[gnutls-devel] 20081110 Analysis of vulnerability GNUTLS-SA-2008-3 CVE-2008-4989	CVE-2008-4989
MLIST:[gnutls-devel] 20081110 GnuTLS 2.6.1 - Security release [GNUTLS-SA-2008-3]	CVE-2008-4989
MLIST:[gnutls-devel] 20090423 Re: some crashes on using DSA keys	CVE-2009-1415
MLIST:[gnutls-devel] 20090430 All DSA keys generated using GnuTLS 2.6.x are corrupt [GNUTLS-SA-2009-2] [CVE-2009-1416]	CVE-2009-1416
MLIST:[gnutls-devel] 20090430 Certificate expiration not checked by gnutls-cli [GNUTLS-SA-2009-3] [CVE-2009-1417]	CVE-2009-1417
MLIST:[gnutls-devel] 20090430 Double free and free of invalid pointer on certain errors [GNUTLS-SA-2009-1] [CVE-2009-1415]	CVE-2009-1415
MLIST:[gnutls-devel] 20091105 Re: TLS renegotiation MITM	CVE-2009-3555
MLIST:[gnutls-devel] 20111108 Possible buffer overflow on gnutls_session_get_data	CVE-2011-4128
MLIST:[gosa] 20070115 GOsa 2.5.8 released (security fixes!)	CVE-2007-0313
MLIST:[gpa-dev] 20050531 S/MIME signing fails on a SUSE 9.3 system	CVE-2005-2023
MLIST:[gpa-dev] 20050603 Re: S/MIME signing fails on a SUSE 9.3 system	CVE-2005-2023
MLIST:[gs-cvs] 20100106 [gs-commits] rev 10590 - trunk/gs/base	CVE-2010-4054
MLIST:[gtk-devel-list] 20030529 Algorimic Complexity Attack on GLIB 2.2.1	CVE-2012-0039
MLIST:[gtk-devel-list] 20071107 GLib 2.14.3	CVE-2007-1659 CVE-2007-1660 CVE-2007-1661 CVE-2007-1662 CVE-2007-4766 CVE-2007-4767 CVE-2007-4768
MLIST:[havp-devel] 20080715 Infinite loop which causes havp to block completely	CVE-2008-3688
MLIST:[heimdal-discuss] 20060206 Heimdal 0.7.2 and 0.6.6	CVE-2006-0582 CVE-2006-0677
MLIST:[helix-client-dev] 20090828 CR: 249097 - Security fix - urgent CR requested	CVE-2009-4247
MLIST:[help-gnutls] 20090420 Encryption using DSA keys	CVE-2009-1416
MLIST:[horde-announce] 20041026 Horde 2.2.7 (final)	CVE-2004-2741
MLIST:[horde-announce] 20051122 Horde 3.0.7 (final)	CVE-2005-3759
MLIST:[horde-announce] 20051211 Horde 3.0.8 (final)	CVE-2005-4190
MLIST:[horde-announce] 20051211 Kronolith H3 (2.0.6) (final)	CVE-2005-4189
MLIST:[horde-announce] 20051211 Mnemo H3 (2.0.3) (final)	CVE-2005-4192
MLIST:[horde-announce] 20051211 Nag H3 (2.0.4) (final)	CVE-2005-4191
MLIST:[horde-announce] 20051211 Turba H3 (2.0.5) (final)	CVE-2005-4242
MLIST:[horde-announce] 20060817 Horde 3.1.3 (final)	CVE-2006-4256
MLIST:[horde-announce] 20060817 IMP H3 (4.1.3) (final)	CVE-2006-4255
MLIST:[horde-announce] 20061018 Ingo H3 (1.1.2) (final)	CVE-2006-5449
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.0.7) (final)	CVE-2006-6175
MLIST:[horde-announce] 20061129 [SECURITY] Kronolith H3 (2.1.4) (final)	CVE-2006-6175
MLIST:[horde-announce] 20070114 Horde Groupware 1.0 (final)	CVE-2007-0579
MLIST:[horde-announce] 20070114 Horde Groupware Webmail Edition 1.0 (final)	CVE-2007-0579
MLIST:[horde-announce] 20080614 [announce] Horde Groupware Webmail Edition 1.1.1 (final)	CVE-2008-3650
MLIST:[horde-announce] 20080910 Horde 3.1.9 (final)	CVE-2008-3824
MLIST:[horde-announce] 20080910 [SECURITY] Horde 3.2.2 (final)	CVE-2008-3823 CVE-2008-3824
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.1.6 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware 1.2.4 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.1.6 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] Horde Groupware Webmail Edition 1.2.4 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.2.5 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[horde-announce] 20090914 [announce] [SECURITY] Horde 3.3.5 (final)	CVE-2009-3236 CVE-2009-3237
MLIST:[httpclient-users] 20110224 Proxy-Authorization header received on server side	CVE-2011-1498
MLIST:[httpclient-users] 20110224 RE: Proxy-Authorization header received on server side	CVE-2011-1498
MLIST:[httpclient-users] 20110224 Re: Proxy-Authorization header received on server side	CVE-2011-1498
MLIST:[httpd-announce] 20100611 [advisory] httpd Timeout detection flaw (mod_proxy_http) CVE-2010-2068	CVE-2010-2068
MLIST:[httpd-announce] 20110519 Regressions in httpd 2.2.18, apr 1.4.4, and apr-util 1.3.11	CVE-2011-1928
MLIST:[httpd-python-dev] 20040416 Re: possible bug in filter.write()	CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 patch for filterobject.c	CVE-2004-2680
MLIST:[httpd-python-dev] 20040416 possible bug in filter.write()	CVE-2004-2680
MLIST:[hylafax-announce] 20050111 ANOUNCE hylafax-4.2.1 released	CVE-2004-1182
MLIST:[hylafax-users] 20051212 Re: proceedure for hylafax setup for PAM authentiation	CVE-2005-3538
MLIST:[icu-support] 20080122 ICU Patch for bugs in Regular Expressions	CVE-2007-4770 CVE-2007-4771
MLIST:[ietf-openpgp] 20060827 Bleichenbacher's RSA signature forgery based on implementation error	CVE-2006-4339 CVE-2006-4340
MLIST:[imap-uw] 20081031 Security bug in tmail and dmail	CVE-2008-5005
MLIST:[imp] 20050422 IMP 3.2.8 (final)	CVE-2005-1319
MLIST:[info-cyrus] 20050214 Cyrus IMAPd 2.2.11 Released	CVE-2005-0546
MLIST:[interchange-announce] 20040329 Security Problem in Interchange	CVE-2004-0374
MLIST:[interchange-announce] 20050922 Important: Security flaw found in Interchange demo catalog.	CVE-2005-3073
MLIST:[interchange-announce] 20050923 Important: Security flaw found in Interchange demo - Addendum	CVE-2005-3073
MLIST:[ipsec-tools-announce] 20080724 Ipsec-tools 0.7.1 released	CVE-2008-3651
MLIST:[ipsec-tools-announce] 20090422 Ipsec-tools 0.7.2 released	CVE-2009-1632
MLIST:[ipsec-tools-devel] 20050312 potential remote crash in racoon	CVE-2005-0398
MLIST:[ipsec-tools-devel] 20051120 Potential DoS fixed in ipsec-tools	CVE-2005-3732
MLIST:[ipsec-tools-devel] 20080724 Ipsec-tools 0.7.1 released	CVE-2008-3651
MLIST:[ipsec-tools-devel] 20080811 [PATCH] Track and delete orphaned ph1s	CVE-2008-3652
MLIST:[ircd-ratbox] 20070514 IMPORTANT: potential DoS found in ircd-ratbox	CVE-2007-2786
MLIST:[ircd-ratbox] 20100125 ircd-ratbox-2.2.9 released	CVE-2009-4016 CVE-2010-0300
MLIST:[iscsitarget-devel] 20100701 [patch] fix iSNS bounds checking	CVE-2010-2221
MLIST:[isn] 20031215 The mysteriously persistently exploitable program explained.	CVE-2004-2768
MLIST:[jabberd2] 20110531 jabberd-2.2.14 release	CVE-2011-1755
MLIST:[jabberd] 20040919 Jabberd 1.4 critical bug	CVE-2004-1378
MLIST:[java-apache-users] 20000929 jserv wrapper error	CVE-2000-1247
MLIST:[jboss-watch-list] 20070416 [RHSA-2007:0151-01] Low: JBoss Application Server security update	CVE-2007-1354
MLIST:[jenkinsci-advisories] 20111109 Security advisory in Jenkins Core	CVE-2011-4344
MLIST:[karrigell-main] 20050731 SECURITY: python namespace exposure	CVE-2005-2483
MLIST:[karrigell-main] 20050802 Re: SECURITY: python namespace exposure	CVE-2005-2483
MLIST:[kde-announce] 20070309 KTorrent 2.1.2 is out	CVE-2007-1384 CVE-2007-1385
MLIST:[kerberos] 20101222 LDAP handle unavailable: Can't contact LDAP server	CVE-2011-0281
MLIST:[kernel-svn-changes] 20050816 r3920 - in branches/dist/sarge-security: . kernel kernel/i386 kernel/source kernel/source/kernel-source-2.6.8-2.6.8/debian	CVE-2005-0136
MLIST:[kmail-devel] 20050215 [Bug 96020] HTML Allows Spoofing of Emails Content	CVE-2005-0404
MLIST:[kolab-users] 20040420 Possible Kolab LDAP configuration information disclosure	CVE-2004-1997
MLIST:[kronolith] 20050422 Kronolith 1.1.4 (final)	CVE-2005-1314
MLIST:[kronolith] 20080427 Kronolith H3 (2.1.8) (final)	CVE-2008-1974
MLIST:[kvm] 20090702 KVM crashes when using certain USB device	CVE-2010-0297
MLIST:[kvm] 20090721 Re: KVM crashes when using certain USB device	CVE-2010-0297
MLIST:[kvm] 20100129 KVM: PIT: control word is write-only	CVE-2010-0309
MLIST:[kvm] 20100728 [PATCH 1/2] Fix segfault in mmio subpage handling code	CVE-2010-2784
MLIST:[kvm] 20101030 [patch v2] x86: kvm: x86: fix information leak to userland	CVE-2010-3881
MLIST:[kvm] 20111214 [PATCH 1/2] KVM: x86: Prevent starting PIT timers in the absence of irqchip support	CVE-2011-4622
MLIST:[libc-hacker] 20101018 [PATCH] Never expand $ORIGIN in privileged programs	CVE-2010-3847
MLIST:[libc-hacker] 20101022 [PATCH] Require suid bit on audit objects in privileged programs	CVE-2010-3856
MLIST:[libc-hacker] [PATCH] Fix LD_HWCAP_MASK handling	CVE-2007-3508
MLIST:[libcdio-devel] 20071231 buffer overrun in cd-info and iso-info and a release?	CVE-2007-6613
MLIST:[libcg-devel] 20101115 Fwd: libcgroup netlink	CVE-2011-1022
MLIST:[libcg-devel] 20110218 [PATCH 2/2] cgrulesengd: Ignore netlink messages that don't come from the kernel.	CVE-2011-1022
MLIST:[libcloud] 20100929 [jira] Closed: (LIBCLOUD-55) this python project is vulnerable to MITM as it fails to verify the ssl validity of the remote destination.	CVE-2010-4340
MLIST:[libcloud] 20101108 SSL certs checking	CVE-2010-4340
MLIST:[libexif-devel] 20091113 libexif project security advisory	CVE-2009-3895
MLIST:[libgadu-devel] 20081024 libgadu 1.8.2	CVE-2008-4776
MLIST:[libtool] 20091116 Backport of libltdl changes to branch-1-5	CVE-2009-3736
MLIST:[libtool] 20091116 GNU Libtool 2.2.6b released	CVE-2009-3736
MLIST:[libvir-list] 20090127 [libvirt] [PATCH] proxy: Fix use of uninitalized memory	CVE-2009-0036
MLIST:[libvir-list] 20090128 Re: [libvirt] [PATCH] proxy: Fix use of uninitalized memory	CVE-2009-0036
MLIST:[libvirt] 20081217 [SECURITY] PATCH: Fix missing read-only access checks (CVE-2008-5086)	CVE-2008-5086
MLIST:[libvirt] 20110323 [PATCH] Make error reporting in libvirtd thread safe	CVE-2011-1486
MLIST:[libvirt] 20110531 [PATCH] security: plug regression introduced in disk probe logic	CVE-2011-2178
MLIST:[libvirt] 20110624 [PATCH 2/2] remote: protect against integer overflow	CVE-2011-2511
MLIST:[linux-audit] 20080330 audit 1.7 released	CVE-2008-1628
MLIST:[linux-bluetooth] 20110508 Bluetooth: l2cap and rfcomm: fix 1 byte infoleak to userspace.	CVE-2011-2492
MLIST:[linux-cifs-client] 20090406 [PATCH] cifs: Fix insufficient memory allocation for nativeFileSystem field	CVE-2009-1439
MLIST:[linux-cifs-client] 20100402 [patch] skip posix open if nameidata is null	CVE-2010-1148
MLIST:[linux-cifs-client] 20100404 [patch] skip posix open if nameidata is null	CVE-2010-1148
MLIST:[linux-cifs] 20110405 Re: Repeatable crash in 2.6.38 related to O_DIRECT	CVE-2011-1771
MLIST:[linux-cifs] 20110405 Repeatable crash in 2.6.38 related to O_DIRECT	CVE-2011-1771
MLIST:[linux-ext4] 20110603 [PATCH 1/2] ext4: Fix max file size and logical block counting of extent format file	CVE-2011-2695
MLIST:[linux-ia64] 20040916 Re: [Patch] Per CPU MCA/INIT data save areas	CVE-2005-0136
MLIST:[linux-ia64] [PATCH 1/1] ia64: perfmon.c trips BUG_ON in put_page_testzero	CVE-2006-0558
MLIST:[linux-kernel] 20020417 Re: SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20020417 SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20020418 Re: SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20020422 Re: SSE related security hole	CVE-2002-1571
MLIST:[linux-kernel] 20031105 BK2CVS problem	CVE-2003-1161
MLIST:[linux-kernel] 20031105 Re: BK2CVS problem	CVE-2003-1161
MLIST:[linux-kernel] 20040105 linux-2.4.24 released	CVE-2003-0985
MLIST:[linux-kernel] 20040219 Re: Oopsing cryptoapi (or loop device?) on 2.6.*	CVE-2004-2135 CVE-2004-2136
MLIST:[linux-kernel] 20040402 Re: disable-cap-mlock	CVE-2004-0491
MLIST:[linux-kernel] 20040408 [PATCH]: 2.4/2.6 do_fork() error path memory leak	CVE-2004-0427
MLIST:[linux-kernel] 20040416 Re: [CHECKER] Probable security holes in 2.6.5	CVE-2004-2607
MLIST:[linux-kernel] 20040609 timer + fpu stuff locks my console race	CVE-2004-0554
MLIST:[linux-kernel] 20040911 [PATCH] exec: fix posix-timers leak and pending signal loss	CVE-2005-3271
MLIST:[linux-kernel] 20041111 a.out issue	CVE-2004-1074
MLIST:[linux-kernel] 20041114 [PATCH] linux 2.9.10-rc1: Fix oops in unix_dgram_sendmsg when using	CVE-2004-1069
MLIST:[linux-kernel] 20041130 Buffer overrun in arch/x86_64/sys_ia32.c:sys32_ni_syscall()	CVE-2004-1151
MLIST:[linux-kernel] 20041216 [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050105 Re: [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.4.29-pre3-bk4] fs/coda Re: [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050107 [PATCH 2.6.10-mm2] fs/coda Re: [Coverity] Untrusted user data in kernel	CVE-2005-0124
MLIST:[linux-kernel] 20050301 Re: Breakage from patch: Only root should be able to set the N_MOUSE line discipline.	CVE-2005-0839
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in pktcdvd	CVE-2005-1589
MLIST:[linux-kernel] 20050517 [PATCH] Fix root hole in raw device	CVE-2005-1264
MLIST:[linux-kernel] 20050805 [PATCH] Fix hugepage crash on failing mmap()	CVE-2005-4811
MLIST:[linux-kernel] 20050817 [PATCH 2.6.12.5] NPTL signal delivery deadlock fix	CVE-2005-3847
MLIST:[linux-kernel] 20050817 [PATCH] fix dst_entry leak in icmp_push_reply()	CVE-2005-3848
MLIST:[linux-kernel] 20050818 Re: [PATCH] fix dst_entry leak in icmp_push_reply()	CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 2/7] [PATCH] NPTL signal delivery deadlock fix	CVE-2005-3847
MLIST:[linux-kernel] 20050826 [PATCH 4/7] [IPV4]: Fix DST leak in icmp_push_reply()	CVE-2005-3848
MLIST:[linux-kernel] 20050826 [PATCH 7/7] [IPV6]: Fix SKB leak in ip6_input_finish()	CVE-2005-3858
MLIST:[linux-kernel] 20050829 Re: Linux 2.6.12.6	CVE-2005-3858
MLIST:[linux-kernel] 20050912 [PATCH] nfs client, kernel 2.4.31: readlink result overflow	CVE-2005-4798
MLIST:[linux-kernel] 20050925 [BUG/PATCH/RFC] Oops while completing async USB via usbdevio	CVE-2005-3055
MLIST:[linux-kernel] 20051112 Re: local denial-of-service with file leases	CVE-2005-3857
MLIST:[linux-kernel] 20051113 [GIT] Fix memory leak in lease code	CVE-2005-3807 CVE-2005-3857
MLIST:[linux-kernel] 20051122 [patch 11/23] [PATCH] [NETFILTER] ctnetlink: check if protoinfo is present	CVE-2005-3809
MLIST:[linux-kernel] 20051122 [patch 13/23] [PATCH] [NETFILTER] ctnetlink: Fix oops when no ICMP ID info in message	CVE-2005-3810
MLIST:[linux-kernel] 20051123 32bit integer overflow in invalidate_inode_pages2() (local DoS)	CVE-2005-3808
MLIST:[linux-kernel] 20051216 lockd: couldn't create RPC handle for (host)	CVE-2006-5158
MLIST:[linux-kernel] 20051218 Re: lockd: couldn't create RPC handle for (host)	CVE-2006-5158
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: Zero key material before free to avoid information leak	CVE-2006-0095
MLIST:[linux-kernel] 20060104 [Patch 2.6] dm-crypt: zero key before freeing it	CVE-2006-0095
MLIST:[linux-kernel] 20060207 Linux 2.6.15.3	CVE-2006-0454
MLIST:[linux-kernel] 20060207 Re: Linux 2.6.15.3	CVE-2006-0454
MLIST:[linux-kernel] 20060207 [PATCH] arch/x86_64/kernel/traps.c PTRACE_SINGLESTEP oops	CVE-2006-1066
MLIST:[linux-kernel] 20060411 [PATCH] __group_complete_signal: remove bogus BUG_ON	CVE-2006-1523
MLIST:[linux-kernel] 20060419 RE: Linux 2.6.16.9	CVE-2006-1056
MLIST:[linux-kernel] 20060426 [PATCH] LSM: add missing hook to do_compat_readv_writev()	CVE-2006-1856
MLIST:[linux-kernel] 20060526 PROBLEM: /proc (procfs) task exit race condition causes a kernelcrash	CVE-2006-2629
MLIST:[linux-kernel] 20060613 [RFC][PATCH] Avoid race w/ posix-cpu-timer and exiting tasks	CVE-2006-2445
MLIST:[linux-kernel] 20060717 [patch 25/45] splice: fix problems with sys_tee()	CVE-2007-0997
MLIST:[linux-kernel] 20061105 Linux 2.6.16.31-rc1	CVE-2006-4572 CVE-2006-5174 CVE-2006-5619
MLIST:[linux-kernel] 20061215 [patch 24/24] Bluetooth: Add packet size checks for CAPI messages (CVE-2006-6106)	CVE-2006-6106
MLIST:[linux-kernel] 20061219 BUG: wedged processes, test program supplied	CVE-2006-6921
MLIST:[linux-kernel] 20061219 Linux 2.6.18.6	CVE-2006-6106
MLIST:[linux-kernel] 20061220 Re: BUG: wedged processes, test program supplied	CVE-2006-6921
MLIST:[linux-kernel] 20070508 Re: [PATCH -utrace] Move utrace into task_struct	CVE-2008-2365
MLIST:[linux-kernel] 20070608 Linux 2.6.20.13	CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070608 Linux 2.6.21.4	CVE-2007-2453 CVE-2007-2876
MLIST:[linux-kernel] 20070720 [PATCH] splice: fix bad unlock_page() in error case	CVE-2008-4302
MLIST:[linux-kernel] 20070731 Re: [PATCH] add check do_direct_IO() return val	CVE-2007-6716
MLIST:[linux-kernel] 20070921 Linux 2.6.22.7	CVE-2007-4573
MLIST:[linux-kernel] 20070921 Re: Linux 2.6.22.7	CVE-2007-4573
MLIST:[linux-kernel] 20071108 Buffer overflow in CIFS VFS.	CVE-2007-5904
MLIST:[linux-kernel] 20071108 [PATCH] time: fix sysfs_show_{available,current}_clocksources() buffer overflow problem	CVE-2007-5908
MLIST:[linux-kernel] 20071109 Re: Fw: Buffer overflow in CIFS VFS.	CVE-2007-5904
MLIST:[linux-kernel] 20071116 Linux 2.6.23.8	CVE-2007-5501
MLIST:[linux-kernel] 20071122 [PATCH] PPC: CHRP - fix possible NULL pointer dereference	CVE-2007-6694
MLIST:[linux-kernel] 20071128 [PATCH] tmpfs: restore missing clear_highpage	CVE-2007-6417
MLIST:[linux-kernel] 20071212 Re: [PATCH] tmpfs: restore missing clear_highpage	CVE-2007-6417
MLIST:[linux-kernel] 20071215 Re: [PATCH] tmpfs: restore missing clear_highpage	CVE-2007-6417
MLIST:[linux-kernel] 20080206 [patch 60/73] vm audit: add VM_DONTEXPAND to mmap for drivers that need it (CVE-2008-0007)	CVE-2008-0007
MLIST:[linux-kernel] 20080210 Re: [PATCH] kernel 2.6.24.1 still vulnerable to the vmsplice local root exploit	CVE-2008-0600
MLIST:[linux-kernel] 20080229 [BUG] soft lockup detected with ipcs	CVE-2009-0859
MLIST:[linux-kernel] 20080305 Linux doesn't follow x86/x86-64 ABI wrt direction flag	CVE-2008-1367
MLIST:[linux-kernel] 20080429 [04/12] tehuti: check register size (CVE-2008-1675)	CVE-2008-1675
MLIST:[linux-kernel] 20080429 [26/37] tehuti: check register size (CVE-2008-1675)	CVE-2008-1675
MLIST:[linux-kernel] 20080429 [27/37] tehuti: move ioctl perm check closer to function start	CVE-2008-1675
MLIST:[linux-kernel] 20080430 Re: Page Faults slower in 2.6.25-rc9 than 2.6.23	CVE-2008-2372
MLIST:[linux-kernel] 20080501 Linux 2.6.24.6	CVE-2008-1375
MLIST:[linux-kernel] 20080501 Linux 2.6.25.1	CVE-2008-1375
MLIST:[linux-kernel] 20080509 Re: When should kfree_skb be used?	CVE-2008-2136
MLIST:[linux-kernel] 20080513 [patch 25/37] sparc: Fix mremap address range validation.	CVE-2008-6107
MLIST:[linux-kernel] 20080702 Is VFS behavior fine?	CVE-2008-3275
MLIST:[linux-kernel] 20080723 Re: [PATCH 1/2] signals: kill(-1) should only signal processes in the same namespace	CVE-2009-1338
MLIST:[linux-kernel] 20080726 tmpfs: kernel BUG at mm/shmem.c:814	CVE-2008-3534
MLIST:[linux-kernel] 20080730 2.6.27-rc1: IP: iov_iter_advance+0x2e/0x90	CVE-2008-3535
MLIST:[linux-kernel] 20080730 [patch 40/62] V4L: uvcvideo: Fix a buffer overflow in format descriptor parsing	CVE-2008-3496
MLIST:[linux-kernel] 20080807 OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175	CVE-2008-3686
MLIST:[linux-kernel] 20080808 Re: OOPS, ip -f inet6 route get fec0::1, linux-2.6.26, ip6_route_output, rt6_fill_node+0x175	CVE-2008-3686
MLIST:[linux-kernel] 20080823 [GIT]: Networking	CVE-2008-3792
MLIST:[linux-kernel] 20080830 Re: buffer overflow in /proc/sys/sunrpc/transports	CVE-2008-3911
MLIST:[linux-kernel] 20080830 buffer overflow in /proc/sys/sunrpc/transports	CVE-2008-3911
MLIST:[linux-kernel] 20080903 [patch 05/16] nfsd: fix buffer overrun decoding NFSv4 acl	CVE-2008-3915
MLIST:[linux-kernel] 20080913 [PATCH 3/4] ext2: Avoid printk floods in the face of directory corruption	CVE-2008-3528
MLIST:[linux-kernel] 20080913 [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption	CVE-2008-3528
MLIST:[linux-kernel] 20080918 Re: [PATCH 4/4] ext3: Avoid printk floods in the face of directory corruption	CVE-2008-3528
MLIST:[linux-kernel] 20081005 [PATCH 04/19] ib700wdt: Fix off by one	CVE-2008-5702
MLIST:[linux-kernel] 20081006 [patch 58/71] sctp: Fix oops when INIT-ACK indicates that peer doesnt support AUTH	CVE-2008-4576
MLIST:[linux-kernel] 20081220 [Security] gitweb local privilege escalation (fix)	CVE-2008-5916
MLIST:[linux-kernel] 20090110 Re: [PATCH -v7][RFC]: mutex: implement adaptive spinning	CVE-2009-0029
MLIST:[linux-kernel] 20090127 [PATCH 1/2] fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM	CVE-2009-0859
MLIST:[linux-kernel] 20090130 [PATCH] Fix memory corruption in console selection	CVE-2009-1046
MLIST:[linux-kernel] 20090131 [patch 03/43] inotify: clean up inotify_read and fix locking	CVE-2009-0935
MLIST:[linux-kernel] 20090202 Re: [PATCH] Fix memory corruption in console selection	CVE-2009-1046
MLIST:[linux-kernel] 20090212 [PATCH] 4 bytes kernel memory disclosure in SO_BSDCOMPAT gsopt try #2	CVE-2009-0676
MLIST:[linux-kernel] 20090223 net: amend the fix for SO_BSDCOMPAT gsopt infoleak	CVE-2009-0676
MLIST:[linux-kernel] 20090225 Re: [PATCH 2/2] exit_notify: kill the wrong capable(CAP_KILL) check	CVE-2009-1337
MLIST:[linux-kernel] 20090227 Re: [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole	CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 0/2] x86-64: 32/64 syscall arch holes	CVE-2009-0834 CVE-2009-0835
MLIST:[linux-kernel] 20090228 [PATCH 1/2] x86-64: syscall-audit: fix 32/64 syscall hole	CVE-2009-0834
MLIST:[linux-kernel] 20090228 [PATCH 2/2] x86-64: seccomp: fix 32/64 syscall hole	CVE-2009-0835
MLIST:[linux-kernel] 20090311 VFS, NFS security bug? Should CAP_MKNOD and CAP_LINUX_IMMUTABLE be added to CAP_FS_MASK?	CVE-2009-1072
MLIST:[linux-kernel] 20090502 Linux 2.6.27.21	CVE-2009-1184
MLIST:[linux-kernel] 20090502 Linux 2.6.28.10	CVE-2009-1184
MLIST:[linux-kernel] 20090608 [Security, resend] Instant crash with rtl8169 and large packets	CVE-2009-1389
MLIST:[linux-kernel] 20090622 Fix for shared flat binary format in 2.6.30	CVE-2009-2768
MLIST:[linux-kernel] 20090623 [PATCH 0/1] mm_for_maps: simplify, use ptrace_may_access()	CVE-2009-2691
MLIST:[linux-kernel] 20090623 [PATCH 1/1] mm_for_maps: simplify, use ptrace_may_access()	CVE-2009-2691
MLIST:[linux-kernel] 20090706 Re: PROBLEM: tun/tap crashes if open() /dev/net/tun and then poll() it.	CVE-2009-1897
MLIST:[linux-kernel] 20090710 [PATCH 1/2] mm_for_maps: shift down_read(mmap_sem) to the caller	CVE-2009-2691
MLIST:[linux-kernel] 20090710 [PATCH 2/2] mm_for_maps: take ->cred_guard_mutex to fix the race	CVE-2009-2691
MLIST:[linux-kernel] 20090720 Re: [PATCH] sgi-gru: Fix kernel stack buffer overrun	CVE-2009-2584
MLIST:[linux-kernel] 20090721 [PATCH] sgi-gru: Fix kernel stack buffer overrun	CVE-2009-2584
MLIST:[linux-kernel] 20090801 [PATCH v2] execve: must clear current->clear_child_tid	CVE-2009-2848
MLIST:[linux-kernel] 20090804 Re: [PATCH] posix-timers: fix oops in clock_nanosleep() with CLOCK_MONOTONIC_RAW	CVE-2009-2767
MLIST:[linux-kernel] 20090819 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008	CVE-2009-3043
MLIST:[linux-kernel] 20090819 v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008	CVE-2009-3043
MLIST:[linux-kernel] 20090820 Re: v2.6.31-rc6: BUG: unable to handle kernel NULL pointer dereference at 0000000000000008	CVE-2009-3043
MLIST:[linux-kernel] 20090902 [BUG] 2.6.31-rc8 readcd Oops	CVE-2009-3288
MLIST:[linux-kernel] 20090903 [PATCH] sg: fix oops in the error path in sg_build_indirect()	CVE-2009-3288
MLIST:[linux-kernel] 20090916 [patch 15/45] perf_counter: Fix buffer overflow in perf_copy_attr()	CVE-2009-3234
MLIST:[linux-kernel] 20090921 [git pull] drm tree.	CVE-2009-3620
MLIST:[linux-kernel] 20091001 [tip:x86/urgent] x86: Don't leak 64-bit kernel register values to 32-bit processes	CVE-2009-2910
MLIST:[linux-kernel] 20091002 Re: [PATCH 0/8] SECURITY ISSUE with connector	CVE-2009-3725
MLIST:[linux-kernel] 20091002 [071/136] net ax25: Fix signed comparison in the sockopt handler	CVE-2009-2909
MLIST:[linux-kernel] 20091014 fs/pipe.c null pointer dereference	CVE-2009-3547
MLIST:[linux-kernel] 20091019 Re: [PATCH] AF_UNIX: Fix deadlock on connecting to shutdown socket	CVE-2009-3621
MLIST:[linux-kernel] 20091021 Re: [PATCH v4 1/1]: fs: pipe.c null pointer dereference + really sign off + unmangled diffs	CVE-2009-3547
MLIST:[linux-kernel] 20091205 [RFC][PATCHSET] mremap/mmap mess	CVE-2010-0291
MLIST:[linux-kernel] 20091209 [GIT PULL] ext4 updates for v2.6.33	CVE-2009-4131 CVE-2009-4307
MLIST:[linux-kernel] 20100114 [PATCH 01/52] untangle the do_mremap() mess	CVE-2010-0291
MLIST:[linux-kernel] 20100205 PROBLEM: hda-intel divide by zero kernel crash in azx_position_ok()	CVE-2010-1085
MLIST:[linux-kernel] 20100221 [80/93] USB: usbfs: properly clean up the as structure on error paths	CVE-2010-1083
MLIST:[linux-kernel] 20100303 [PATCH v2] hvc_console: Fix race between hvc_close and hvc_remove	CVE-2010-2653
MLIST:[linux-kernel] 20100311 [PATCH 3/3] GFS2: Skip check for mandatory locks when unlocking	CVE-2010-0727
MLIST:[linux-kernel] 20100330 [48/89] USB: usbfs: properly clean up the as structure on error paths	CVE-2010-1083
MLIST:[linux-kernel] 20100408 [PATCH #3] reiserfs: Fix permissions on .reiserfs_priv	CVE-2010-1146
MLIST:[linux-kernel] 20100422 [PATCH 0/1][BUG][IMPORTANT] KEYRINGS: find_keyring_by_name() can gain the freed keyring	CVE-2010-1437
MLIST:[linux-kernel] 20100430 [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring	CVE-2010-1437
MLIST:[linux-kernel] 20100503 Re: [PATCH 2/7] KEYS: find_keyring_by_name() can gain access to a freed keyring	CVE-2010-1437
MLIST:[linux-kernel] 20100510 [071/117] kgdb: dont needlessly skip PAGE_USER test for Fsl booke	CVE-2010-1446
MLIST:[linux-kernel] 20100518 [PATCH] btrfs: should add a permission check for setfacl	CVE-2010-2071
MLIST:[linux-kernel] 20100827 [PATCH] exec argument expansion can inappropriately trigger OOM-killer	CVE-2010-4243
MLIST:[linux-kernel] 20100827 [PATCH] wireless: fix 64K kernel heap content leak via ioctl	CVE-2010-2955
MLIST:[linux-kernel] 20100830 Re: [PATCH] exec argument expansion can inappropriately trigger OOM-killer	CVE-2010-4243
MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless extensions: fix kernel heap content leak	CVE-2010-2955
MLIST:[linux-kernel] 20100830 Re: [PATCH] wireless: fix 64K kernel heap content leak via ioctl	CVE-2010-2955
MLIST:[linux-kernel] 20100830 [PATCH] wireless extensions: fix kernel heap content leak	CVE-2010-2955
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/cxgb3/cxgb3_main.c: prevent reading uninitialized stack memory	CVE-2010-3296
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/eql.c: prevent reading uninitialized stack memory	CVE-2010-3297
MLIST:[linux-kernel] 20100911 [PATCH] drivers/net/usb/hso.c: prevent reading uninitialized memory	CVE-2010-3298
MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/amiserial.c: prevent reading uninitialized stack memory	CVE-2010-4076
MLIST:[linux-kernel] 20100915 [PATCH] drivers/char/nozomi.c: prevent reading uninitialized stackmemory	CVE-2010-4077
MLIST:[linux-kernel] 20100915 [PATCH] drivers/media/video/ivtv/ivtvfb.c: prevent reading uninitialized stack memory	CVE-2010-4079
MLIST:[linux-kernel] 20100915 [PATCH] drivers/serial/serial_core.c: prevent readinguninitialized stack memory	CVE-2010-4075
MLIST:[linux-kernel] 20100915 [PATCH] drivers/usb/serial/mos*: prevent reading uninitialized stack memory	CVE-2010-4074
MLIST:[linux-kernel] 20100915 [PATCH] drivers/video/via/ioctl.c: prevent reading uninitializedstack memory	CVE-2010-4082
MLIST:[linux-kernel] 20100925 [PATCH] sound/pci/rme9652: prevent reading uninitialized stack memory	CVE-2010-4080 CVE-2010-4081
MLIST:[linux-kernel] 20101001 [PATCH] Fix out-of-bounds reading in sctp_asoc_get_hmac()	CVE-2010-3705
MLIST:[linux-kernel] 20101006 [PATCH v3] IPC: Initialize structure memory to zero for compat functions	CVE-2010-4073
MLIST:[linux-kernel] 20101006 [PATCH] ipc: initialize structure memory to zero for shmctl	CVE-2010-4072
MLIST:[linux-kernel] 20101007 Peculiar stuff in hci_ath3k/badness in hci_uart	CVE-2010-4242
MLIST:[linux-kernel] 20101007 [PATCH] net: clear heap allocations for privileged ethtool actions	CVE-2010-4655
MLIST:[linux-kernel] 20101123 Unix socket local DOS (OOM)	CVE-2010-4249
MLIST:[linux-kernel] 20101124 [PATCH net-next-2.6] scm: lower SCM_MAX_FD	CVE-2010-4249
MLIST:[linux-kernel] 20101125 Simple kernel attack using socketpair. easy, 100% reproductiblle, works under guest. no way to protect :(	CVE-2010-4249
MLIST:[linux-kernel] 20101129 Re: [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov()	CVE-2010-4668
MLIST:[linux-kernel] 20101129 [PATCH] block: check for proper length of iov entries earlier in blk_rq_map_user_iov()	CVE-2010-4668
MLIST:[linux-kernel] 20101130 [PATCH 1/2] exec: make argv/envp memory visible to oom-killer	CVE-2010-4243
MLIST:[linux-kernel] 20101201 Re: [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS.	CVE-2010-4258
MLIST:[linux-kernel] 20101201 [PATCH v2] do_exit(): Make sure we run with get_fs() == USER_DS.	CVE-2010-4258
MLIST:[linux-kernel] 20101209 [PATCH] install_special_mapping skips security_file_mmap check.	CVE-2010-4346
MLIST:[linux-kernel] 20110205 [PATCH] epoll: Prevent deadlock through unsafe ->f_op->poll() calls.	CVE-2011-1082
MLIST:[linux-kernel] 20110207 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec	CVE-2011-1020
MLIST:[linux-kernel] 20110207 [SECURITY] /proc/$pid/ leaks contents across setuid exec	CVE-2011-1020
MLIST:[linux-kernel] 20110208 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec	CVE-2011-1020
MLIST:[linux-kernel] 20110209 Re: [SECURITY] /proc/$pid/ leaks contents across setuid exec	CVE-2011-1020
MLIST:[linux-kernel] 20110225 [PATCH] optimize epoll loop detection	CVE-2011-1083
MLIST:[linux-kernel] 20110226 Re: [PATCH] optimize epoll loop detection	CVE-2011-1083
MLIST:[linux-kernel] 20110228 Re: [PATCH] optimize epoll loop detection	CVE-2011-1083
MLIST:[linux-kernel] 20110310 [PATCH] ipv4: netfilter: ip_tables: fix infoleak to userspace	CVE-2011-1171
MLIST:[linux-kernel] 20110310 [PATCH] ipv6: netfilter: ip6_tables: fix infoleak to userspace	CVE-2011-1172
MLIST:[linux-kernel] 20110311 [PATCH] proc: protect mm start_code/end_code in /proc/pid/stat	CVE-2011-0726
MLIST:[linux-kernel] 20110405 [PATCH] drivers/scsi/mpt2sas: prevent heap overflows and unchecked reads	CVE-2011-1494 CVE-2011-1495
MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix OOM and buffer overflow	CVE-2011-1746 CVE-2011-1747
MLIST:[linux-kernel] 20110414 [PATCH] char: agp: fix arbitrary kernel memory writes	CVE-2011-1745 CVE-2011-2022
MLIST:[linux-kernel] 20110418 Re: Kernel panic (NULL ptr deref?) in find_ge_pid()/next_pidmap() (via sys_getdents or sys_readdir)	CVE-2011-1593
MLIST:[linux-kernel] 20110419 Re: [PATCH] char: agp: fix OOM and buffer overflow	CVE-2011-1746
MLIST:[linux-kernel] 20110506 Re: [PATCH] dccp: handle invalid feature options length	CVE-2011-1770
MLIST:[linux-kernel] 20110506 [PATCH] dccp: handle invalid feature options length	CVE-2011-1770
MLIST:[linux-kernel] 20110523 Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values	CVE-2011-2184
MLIST:[linux-kernel] 20110524 Re: Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values	CVE-2011-2184
MLIST:[linux-kernel] 20110525 Re: [Security] Fwd: Oops (bad memory deref) in slab_alloc() due to filp_cachep holding incorrect values	CVE-2011-2184
MLIST:[linux-kernel] 20110608 [BUG] hfs_find_init() sb->ext_tree NULL pointer dereference	CVE-2011-2203
MLIST:[linux-kernel] 20110616 [PATCH] taskstats: don't allow duplicate entries in listener mode	CVE-2011-2484
MLIST:[linux-kernel] 20110624 [PATCH] Bluetooth: Prevent buffer overflow in l2cap config request	CVE-2011-2497
MLIST:[linux-kernel] 20111109 [BUG][SECURITY] Kernel stack overflow in hfs_mac2asc()	CVE-2011-4330
MLIST:[linux-kernel] 20111115 [PATCH] KEYS: Fix a NULL pointer deref in the user-defined key type	CVE-2011-4110
MLIST:[linux-lvm] 20100728 lvm2-cluster (clvmd) security fix (Moderate)	CVE-2010-2526
MLIST:[linux-mm-commits] 20091203 + hfs-fix-a-potential-buffer-overflow.patch added to -mm tree	CVE-2009-4020
MLIST:[linux-mm] 20100128 DoS on x86_64	CVE-2010-0307
MLIST:[linux-mtd] 20070822 [JFFS2] Fix ACL vs. mode handling.	CVE-2007-4849
MLIST:[linux-netdev] 20060304 BUG: Small information leak in SO_ORIGINAL_DST (2.4 and 2.6) and	CVE-2006-1342 CVE-2006-1343
MLIST:[linux-netdev] 20070316 [PATCH 2.6.21-rc3] IPV6: ipv6_fl_socklist is inadvertently shared.	CVE-2007-1592
MLIST:[linux-netdev] 20080222 [Patch] Crash (BUG()) when handling fragmented ESP packets	CVE-2007-6282
MLIST:[linux-netdev] 20080821 [PATCH] sctp: fix potential panics in the SCTP-AUTH API.	CVE-2008-3792
MLIST:[linux-netdev] 20081106 UNIX sockets kernel panic	CVE-2008-5029
MLIST:[linux-netdev] 20081120 soft lockups/OOM after unix socket fixes	CVE-2008-5300
MLIST:[linux-netdev] 20081125 [PATCH] Fix soft lockups/OOM issues w/ unix garbage collector	CVE-2008-5300
MLIST:[linux-netdev] 20081204 [PATCH] ATM: CVE-2008-5079: multiple listen()s on same socket corrupts the vcc table	CVE-2008-5079
MLIST:[linux-netdev] 20090214 r8169: instant crash if receiving packet larger than MTU	CVE-2009-1389
MLIST:[linux-netdev] 20091228 [PATCH RFC] r8169: straighten out overlength frame detection	CVE-2009-4537
MLIST:[linux-netdev] 20100114 [PATCH]: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo().	CVE-2010-0006
MLIST:[linux-netdev] 20100920 [PATCH] rose: Fix signedness issues wrt. digi count.	CVE-2010-3310
MLIST:[linux-netdev] 20101117 [PATCH] Integer overflow in RDS cmsg handling	CVE-2010-4175
MLIST:[linux-nfs] 20081022 kernel oops in nfs4_proc_lock	CVE-2009-3726
MLIST:[linux-nfs] 20090509 [NFS] [PATCH] nfs: Fix NFS v4 client handling of MAY_EXEC in nfs_permission.	CVE-2009-1630
MLIST:[linux-parisc] 20080729 [PATCH] fix unwind crash - was: Re: 2.6.26 kernel crash	CVE-2008-5395
MLIST:[linux-rdma] 20110223 [PATCH 1/2] rdma/cm: Fix crash in request handlers	CVE-2011-0695
MLIST:[linux-rdma] 20110223 [PATCH 2/2] ib/cm: Bump reference count on cm_id before invoking callback	CVE-2011-0695
MLIST:[linux-scsi] 20100521 [PATCH 1/2] bfa: fix system crash when reading sysfs fc_host statistics	CVE-2010-4343
MLIST:[linux-scsi] 20101008 [patch] gdth: integer overflow in ioctl	CVE-2010-4157
MLIST:[linux-sctp] 20080827 [PATCH 0/2] sctp: additional overflow fixes	CVE-2008-4445
MLIST:[linux-sctp] 20080827 [PATCH 2/2] sctp: fix random memory dereference with SCTP_HMAC_IDENT option.	CVE-2008-4445
MLIST:[linux-security-module] 20050928 readv/writev syscalls are not checked by lsm	CVE-2006-1856
MLIST:[linux-security] 19961122 LSF Update#14: Vulnerability of the lpr program.	CVE-1999-0032
MLIST:[linux-sparc] 20060130 Attempts to set date with 'date -s' hang the machine	CVE-2006-0482
MLIST:[linux-sparc] 20060130 Re: Attempts to set date with 'date -s' hang the machine	CVE-2006-0482
MLIST:[linux-sparc] 20100219 Execution possible in non-executable mappings in recent 2.6 kernels	CVE-2010-1451
MLIST:[linux-sparc] 20100219 Re: Execution possible in non-executable mappings in recent 2.6 kernels	CVE-2010-1451
MLIST:[linux-wireless] 20081029 [PATCH] libertas: fix buffer overrun	CVE-2008-5134
MLIST:[linux-xfs] 20100620 [PATCH 0/4, V2] xfs: validate inode numbers in file handles correctly	CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 2/4] xfs: validate untrusted inode numbers during lookup	CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 3/4] xfs: rename XFS_IGET_BULKSTAT to XFS_IGET_UNTRUSTED	CVE-2010-2943
MLIST:[linux-xfs] 20100620 [PATCH 4/4] xfs: remove block number from inode lookup code	CVE-2010-2943
MLIST:[listar-dev] 20060115 [EDev] Re: Potential vulnerability -- who to contact?	CVE-2006-0332
MLIST:[listar-dev] 20060119 [EDev] Re: Potential vulnerability -- who to contact?	CVE-2006-0332
MLIST:[lkml-patch] 20060821 dvb-core: Proper handling ULE SNDU length of 0	CVE-2006-4623
MLIST:[lkml] 20070129 [PATCH] Don't allow the stack to grow into hugetlb reserved regions	CVE-2007-3739
MLIST:[lsh-bugs] 20050316 ANNOUNCE: LSH-2.0.1, fix for denial of service bug	CVE-2005-0814
MLIST:[lsh-bugs] SECURITY: lshd leaks fd:s to user shells	CVE-2006-0353
MLIST:[lxr-developer] 20100105 [Lxr-dev] [ lxr-Bugs-2926043 ] Cross-Site Scripting bugs in LXR	CVE-2009-4497
MLIST:[mad-dev] 20080112 Initite loop bug in libid3tag-0.15.0b	CVE-2008-2109
MLIST:[mailman-announce] 20100905 Mailman security patch.	CVE-2010-3089
MLIST:[mailman-announce] 20100909 Mailman security patch.	CVE-2010-3089
MLIST:[mailman-announce] 20110213 Mailman Security Patch Announcement	CVE-2011-0707
MLIST:[mailman-announce] 20110218 Mailman Security Patch Announcement	CVE-2011-0707
MLIST:[mantisbt-announce] 20100914 MantisBT 1.2.3 Released	CVE-2010-3070
MLIST:[mapserver-users] 20090326 MapServer 5.2.2 and 4.10.4 released with security fixes	CVE-2009-0839 CVE-2009-0840 CVE-2009-0841 CVE-2009-0842 CVE-2009-0843 CVE-2009-1176 CVE-2009-1177
MLIST:[mapserver-users] 20100709 MapServer 5.6.4 and 4.10.6 released with important security fixes	CVE-2010-2539 CVE-2010-2540
MLIST:[mapserver-users] 20110713 MapServer 6.0.1, 5.6.7 and 4.10.7 releases with security fixes	CVE-2011-2703 CVE-2011-2704 CVE-2011-2975
MLIST:[mediawiki-announce] 20081215 MediaWiki 1.13.3, 1.12.2, 1.6.11 security update	CVE-2008-5249 CVE-2008-5250 CVE-2008-5252 CVE-2008-5687 CVE-2008-5688
MLIST:[mediawiki-announce] 20090713 MediaWiki security update: 1.15.1 and 1.14.1	CVE-2009-4589
MLIST:[mediawiki-announce] 20100407 MediaWiki security update: 1.15.3 and 1.16.0beta2	CVE-2010-1150
MLIST:[mediawiki-announce] 20100728 MediaWiki security release: 1.16.0 and 1.15.5	CVE-2010-2787 CVE-2010-2788 CVE-2010-2789
MLIST:[mediawiki-announce] 20110412 MediaWiki security release 1.16.3	CVE-2011-1578 CVE-2011-1579 CVE-2011-1580
MLIST:[mediawiki-announce] 20110414 MediaWiki security release 1.16.4	CVE-2011-1587
MLIST:[mediawiki-announce] 20110505 MediaWiki security release 1.16.5	CVE-2011-1765 CVE-2011-1766
MLIST:[mediawiki-announce] 20111128 MediaWiki security release 1.17.1	CVE-2011-4360 CVE-2011-4361
MLIST:[mhonarc-dev] 20101230 [bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)	CVE-2010-4524
MLIST:[mhonarc-dev] 20101230 [bug #32014] CVE-2010-1677: DoS when processing html messages with deep tag nesting	CVE-2010-1677
MLIST:[mimedefang] 20070209 SECURITY: MIMEDefang 2.61 is Released	CVE-2007-0884
MLIST:[misc] 20071010 OpenBSD XSS ;)	CVE-2007-6700
MLIST:[mm-commits] 20100923 + sys_semctl-fix-kernel-stack-leakage.patch added to -mm tree	CVE-2010-4083
MLIST:[mm-commits] 20110222 + ldm-corrupted-partition-table-can-cause-kernel-oops.patch added to -mm tree	CVE-2011-1012
MLIST:[mm-commits] 20110314 + fs-partitions-osfc-corrupted-osf-partition-table-can-cause-information-disclosure.patch added to -mm tree	CVE-2011-1163
MLIST:[mm-commits] 20110314 + proc-protect-mm-start_code-end_code-in-proc-pid-stat.patch added to -mm tree	CVE-2011-0726
MLIST:[mm-commits] 20110412 + fs-partitions-efic-corrupted-guid-partition-tables-can-cause-kernel-oops.patch added to -mm tree	CVE-2011-1577
MLIST:[mnemo] 20050422 Mnemo 1.1.4 (final)	CVE-2005-1320
MLIST:[mod_python] 20040122 [ANNOUNCE] Mod_python 2.7.10	CVE-2004-0096
MLIST:[modperl-cvs] 20090401 svn commit: r761081 - in /perl/modperl/branches/1.x: Changes lib/Apache/Status.pm	CVE-2009-0796
MLIST:[modperl] 20090401 [SECURITY] [CVE-2009-0796] Vulnerability found in Apache::Status and Apache2::Status	CVE-2009-0796
MLIST:[mongrel-users] 20061025 [SEC] Mongrel Temporary Fix For cgi.rb 99% CPU DoS Attack	CVE-2006-5467
MLIST:[monkeysphere] 20101025 resolved monkeysphere security vulnerability	CVE-2010-4096
MLIST:[mono-devel-list] 20080726 [Mono-dev] [PATCH] HTML encode attributes that might need encoding	CVE-2008-3422
MLIST:[mono-patches] 20101012 [mono/mono] d3985be4: Search for dllimported shared libs in the base directory, not cwd.	CVE-2010-4159
MLIST:[mpg123-devel] 20090405 mpg123 1.7.2 is out -- important security fix!	CVE-2009-1301
MLIST:[mpm-itk] 20110321 CVE 2011-1176: Sometimes runs as root instead of the default Apache user	CVE-2011-1176
MLIST:[mpm-itk] 20110321 mpm-itk version 2.2.17-01 released	CVE-2011-1176
MLIST:[mute-net-discuss] 20050317 Houston, Houston we have problem!	CVE-2005-4726
MLIST:[mute-net-discuss] 20050318 Re: Houston, Houston we have problem!	CVE-2005-4726
MLIST:[mutt-dev] 20061004 security problem with temp files [was Re: mutt_adv_mktemp() ?]	CVE-2006-5297 CVE-2006-5298
MLIST:[myserver-commit] 20070210 SF.net SVN: myserver: [2183] trunk/myserver/source/server.cpp	CVE-2007-1588
MLIST:[nag] 20050422 Nag 1.1.3 (final)	CVE-2005-1322
MLIST:[nagios-devel] 20081107 Security fixes completed	CVE-2008-5027 CVE-2008-5028
MLIST:[nanog] 20090817 RE: Anyone else seeing "(invalid or corrupt AS path) 3 bytes E01100" ?	CVE-2009-2055
MLIST:[nanog] 20100827 Did your BGP crash today?	CVE-2010-3035
MLIST:[neon] 20070107 invalid chars cause sigserv in neon	CVE-2007-0157
MLIST:[neon] 20080820 CVE-2008-3746: NULL pointer dereference in Digest domain support	CVE-2008-3746
MLIST:[neon] 20080820 neon: release 0.28.3 (SECURITY)	CVE-2008-3746
MLIST:[neon] 20090818 CVE-2009-2473: fix for "billion laughs" attack against expat	CVE-2009-2473
MLIST:[neon] 20090818 CVE-2009-2474: fix handling of NUL in SSL cert subject names	CVE-2009-2474
MLIST:[neon] 20090818 neon: release 0.28.6 (SECURITY)	CVE-2009-2473 CVE-2009-2474
MLIST:[net-snmp-announce] 20050701 Multiple new Net-SNMP releases to fix a security related bug	CVE-2005-2177
MLIST:[netbsd-announce] 20051031 Announcing update 2.0.3 - source only	CVE-2005-4691 CVE-2005-4779 CVE-2005-4783
MLIST:[netdev] 20050124 Re: skb_checksum_help	CVE-2005-0449
MLIST:[netdev] 20090128 [PATCH] drivers/net/skfp: if !capable(CAP_NET_ADMIN): inverted logic	CVE-2009-0675
MLIST:[netdev] 20090409 Oops in tun: bisected to Limit amount of queued packets per device	CVE-2009-1897
MLIST:[netdev] 20100302 [PATCH 1/8] net: add limit for socket backlog	CVE-2010-4251 CVE-2010-4805
MLIST:[netdev] 20100428 Re: [PATCH]: sctp: Fix skb_over_panic resulting from multiple invalid parameter errors (CVE-2010-1173) (v4)	CVE-2010-1173
MLIST:[netdev] 20100521 tc: RTM_GETQDISC causes kernel OOPS	CVE-2011-2525
MLIST:[netdev] 20100628 [PATCH net-2.6 1/2] ethtool: Fix potential kernel buffer overflow in ETHTOOL_GRXCLSRLALL	CVE-2010-2478
MLIST:[netdev] 20100705 bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference	CVE-2011-0709
MLIST:[netdev] 20100706 Re: bridge br_multicast: BUG: unable to handle kernel NULL pointer dereference	CVE-2011-0709
MLIST:[netdev] 20100830 [PATCH] irda: Correctly clean up self->ias_obj on irda_bind() failure.	CVE-2010-2954
MLIST:[netdev] 20100907 [PATCH net-2.6] niu: Fix kernel buffer overflow for ETHTOOL_GRXCLSRLALL	CVE-2010-3084
MLIST:[netdev] 20100915 [PATCH] net: SCTP remote/local Denial of Service vulnerability description and fix	CVE-2010-3432
MLIST:[netdev] 20101021 TIPC security issues	CVE-2010-3859
MLIST:[netdev] 20101027 Re: [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size()	CVE-2010-3859 CVE-2010-4160
MLIST:[netdev] 20101027 [PATCH 0/4] RFC: tipc int vs size_t fixes	CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 1/4] tipc: Fix bugs in tipc_msg_calc_data_size()	CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 2/4] tipc: Fix bugs in tipc_msg_build()	CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 3/4] tipc: Update arguments to use size_t for iovec array sizes	CVE-2010-3859
MLIST:[netdev] 20101027 [PATCH 4/4] tipc: Fix bugs in sending of large amounts of byte-stream data	CVE-2010-3859
MLIST:[netdev] 20101028 Re: [PATCH 2/4] tipc: Fix bugs in tipc_msg_build()	CVE-2010-3859
MLIST:[netdev] 20101028 Re: [Security] TIPC security issues	CVE-2010-3865
MLIST:[netdev] 20101031 [PATCH 1/3] net: ax25: fix information leak to userland	CVE-2010-3875
MLIST:[netdev] 20101031 [PATCH 2/3] net: packet: fix information leak to userland	CVE-2010-3876
MLIST:[netdev] 20101031 [PATCH 3/3] net: tipc: fix information leak to userland	CVE-2010-3877
MLIST:[netdev] 20101031 [SECURITY] L2TP send buffer allocation size overflows	CVE-2010-4160
MLIST:[netdev] 20101102 Re: [SECURITY] CAN info leak/minor heap overflow	CVE-2010-4565
MLIST:[netdev] 20101102 [SECURITY] CAN info leak/minor heap overflow	CVE-2010-3874 CVE-2010-4565
MLIST:[netdev] 20101102 [SECURITY] memory corruption in X.25 facilities parsing	CVE-2010-3873
MLIST:[netdev] 20101103 [PATCH 2/2] inet_diag: Make sure we actually run the same bytecode we audited.	CVE-2010-3880
MLIST:[netdev] 20101104 Re: [SECURITY] memory corruption in X.25 facilities parsing	CVE-2010-3873
MLIST:[netdev] 20101109 Re: [PATCH] Fix CAN info leak/minor heap overflow	CVE-2010-4565
MLIST:[netdev] 20101109 [PATCH] Prevent reading uninitialized memory with socket filters	CVE-2010-4158
MLIST:[netdev] 20101110 Re: [PATCH] Fix CAN info leak/minor heap overflow	CVE-2010-4565
MLIST:[netdev] 20101110 Re: [PATCH] Prevent reading uninitialized memory with socket filters	CVE-2010-4161
MLIST:[netdev] 20101110 Re: possible kernel oops from user MSS	CVE-2010-4165
MLIST:[netdev] 20101110 can-bcm: fix minor heap overflow	CVE-2010-3874
MLIST:[netdev] 20101110 possible kernel oops from user MSS	CVE-2010-4165
MLIST:[netdev] 20101111 [SECURITY] [PATCH] Prevent crashing when parsing bad X.25	CVE-2010-4164
MLIST:[netdev] 20101124 [PATCH] af_unix: limit unix_tot_inflight	CVE-2010-4249
MLIST:[netdev] 20101209 NULL dereference in econet AUN-over-UDP receive	CVE-2010-4342
MLIST:[netdev] 20101209 Re: NULL dereference in econet AUN-over-UDP receive	CVE-2010-4342
MLIST:[netdev] 20101222 [PATCH] irda: prevent integer underflow in IRLMP_ENUMDEVICES	CVE-2010-4529
MLIST:[netdev] 20110317 [PATCH] econet: 4 byte infoleak to the network	CVE-2011-1173
MLIST:[netdev] 20110420 Add missing socket check in can/bcm release.	CVE-2011-1598
MLIST:[netdev] 20110420 [PATCH v2] can: add missing socket check in can/raw release	CVE-2011-1748
MLIST:[netdev] 20110601 Re: inet_diag insufficient validation?	CVE-2011-2213
MLIST:[netdev] 20110601 inet_diag insufficient validation?	CVE-2011-2213
MLIST:[netdev] 20110603 Re: inet_diag insufficient validation?	CVE-2011-2213
MLIST:[netdev] 20110617 [PATCH] inet_diag: fix inet_diag_bc_audit()	CVE-2011-2213
MLIST:[netfilter-devel] 20110310 [PATCH] ipv4: netfilter: arp_tables: fix infoleak to userspace	CVE-2011-1170
MLIST:[netfilter-devel] 20110317 [PATCH v2] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow	CVE-2011-2534
MLIST:[netfilter] 20110310 [PATCH] ipv4: netfilter: ipt_CLUSTERIP: fix buffer overflow	CVE-2011-2534
MLIST:[nfsv4] 20061116 Status of execute permissions in NFSv4 ACLs ?	CVE-2009-1630
MLIST:[nfsv4] 20061117 [Patch] Re: Status of execute permissions in NFSv4 ACLs ?	CVE-2009-1630
MLIST:[ngIRCd-ML] 20050126 ngIRCd 0.8.2	CVE-2005-0199
MLIST:[ngIRCd-ML] 20070731 ngIRCd 0.10.3 - Security	CVE-2007-6062
MLIST:[nginx] 20091030 Re: null pointer dereference vulnerability in 0.1.0-0.8.13.	CVE-2009-3896
MLIST:[nss-pam-ldapd-announce] 20110309 nss-pam-ldapd security advisory (CVE-2011-0438)	CVE-2011-0438
MLIST:[ocfs2-devel] 20110217 [PATCH] Treat writes as new when holes span across page boundaries	CVE-2011-0463
MLIST:[ode-user] 20090808 [ANNOUNCE] Apache ODE 1.3.3	CVE-2008-2370
MLIST:[oneclickorgs-devspace] 20111117 Announce: One Click Orgs 1.2.3	CVE-2011-4552 CVE-2011-4553 CVE-2011-4554 CVE-2011-4555 CVE-2011-4677 CVE-2011-4678
MLIST:[onnv-notify] 20081011 6507173 Sockets should allocate minor numbers from higher order arena	CVE-2009-0480
MLIST:[onnv-notify] 20081021 6300710 recursive mutex_enter in nfs4rename_persistent_fh()	CVE-2009-0069
MLIST:[openbsd-cvs] 20070103 CVS: cvs.openbsd.org: www	CVE-2007-0085
MLIST:[openbsd-cvs] 20070103 Re: CVS: cvs.openbsd.org: src	CVE-2007-0085
MLIST:[openbsd-cvs] 20080708 CVS: cvs.openbsd.org: src	CVE-2008-3196
MLIST:[openbsd-cvs] 20080708 Re: CVS: cvs.openbsd.org: src	CVE-2008-3196
MLIST:[openbsd-misc] 20050304 Re: FreeBSD hiding security stuff	CVE-2005-0109
MLIST:[openbsd-misc] 20070627 Intel Core 2	CVE-2006-7215
MLIST:[openbsd-ports] 20040717 UPDATE: cyrus-sasl-2.1.19	CVE-2005-0373
MLIST:[openbsd-security-announce] 20040513 procfs vulnerability	CVE-2004-0482
MLIST:[openbsd-security-announce] 20080111 errata 005 for OpenBSD 4.2: local users can provoke a kernel panic	CVE-2008-0384
MLIST:[openbsd-security-announce] 20091005 OpenBSD patch: XMM exceptions incorrectly handled in i386 kernel	CVE-2009-3572
MLIST:[openldap-announce] 20060801 OpenLDAP 2.3.25 available	CVE-2006-4600
MLIST:[openldap-announce] 20071026 OpenLDAP 2.3.39 available	CVE-2007-5707 CVE-2007-5708
MLIST:[openldap-announce] 20110212 OpenLDAP 2.4.24 available	CVE-2011-1024 CVE-2011-1025 CVE-2011-1081
MLIST:[openldap-bugs] 20070411 (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash	CVE-2007-6698
MLIST:[openldap-bugs] 20070411 Re: (ITS#4925) Modify operation with NOOP control on a BDB backend causes slapd to crash	CVE-2007-6698
MLIST:[openldap-technical] 20100429 ppolicy master/slave issue	CVE-2011-1024
MLIST:[opensc-announce] 20080731 OpenSC Security Vulnerability and new Versions of OpenSC, OpenCT, LibP11, Pam_P11, Engine_PKCS11	CVE-2008-2235
MLIST:[opensc-announce] 20080827 opensc 0.11.6 with fixed security update	CVE-2008-3972
MLIST:[opensc-announce] 20090226 OpenSC Security Advisory	CVE-2009-0368
MLIST:[opensc-announce] 20090508 OpenSC 0.11.8 released with security update	CVE-2009-1603
MLIST:[openssh-unix-announce] 20050901 Announce: OpenSSH 4.2 released	CVE-2005-2797 CVE-2005-2798
MLIST:[openssh-unix-dev] 20040127 OpenSSH - Connection problem when LoginGraceTime exceeds time	CVE-2004-2069
MLIST:[openssh-unix-dev] 20040128 Re: OpenSSH - Connection problem when LoginGraceTime exceeds time	CVE-2004-2069
MLIST:[openssh-unix-dev] 20060927 Announce: OpenSSH 4.4 released	CVE-2006-4924 CVE-2006-5051 CVE-2006-5052
MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_0_9_8-stable: openssl/ CHANGES openssl/crypto/b...	CVE-2009-3245
MLIST:[openssl-cvs] 20100223 OpenSSL: OpenSSL_1_0_0-stable: openssl/crypto/bn/ bn_div.c bn_gf...	CVE-2009-3245
MLIST:[openssl-cvs] 20100223 OpenSSL: openssl/crypto/bn/ bn_div.c bn_gf2m.c openssl/crypto/ec...	CVE-2009-3245
MLIST:[openssl-dev] 20080512 possible memory leak in zlib compression	CVE-2008-1678
MLIST:[openssl-dev] 20090516 [openssl.org #1930] [PATCH] DTLS record buffer limitation bug	CVE-2009-1377
MLIST:[openssl-dev] 20090516 [openssl.org #1931] [PATCH] DTLS fragment handling memory leak	CVE-2009-1378
MLIST:[openssl-dev] 20090518 Re: [openssl.org #1931] [PATCH] DTLS fragment handling memory leak	CVE-2009-1378
MLIST:[openssl-dev] 20100807 Re: openssl-1.0.0a and glibc detected sthg ;)	CVE-2010-2939
MLIST:[openssl-dev] 20100807 openssl-1.0.0a and glibc detected sthg ;)	CVE-2010-2939
MLIST:[openssl-dev] 20100808 Re: openssl-1.0.0a and glibc detected sthg ;)	CVE-2010-2939
MLIST:[openstack] 20111213 [OSSA 2011-001] Path traversal issues registering malicious images using EC2 API (CVE-2011-4596)	CVE-2011-4596
MLIST:[openstack] 20120111 [OSSA 2012-001] Tenant bypass by authenticated users using OpenStack API (CVE-2012-0030)	CVE-2012-0030
MLIST:[opensuse-updates] 20100810 openSUSE-SU-2010:0496-1 (important): strongswan: fixing snprintf overflows	CVE-2010-2628
MLIST:[opensuse-updates] 20101022 openSUSE-SU-2010:0756-1 (moderate): festival security update	CVE-2010-3996
MLIST:[opensuse-updates] 20110314 openSUSE-SU-2011:0171-1 (moderate): aaa_base security update	CVE-2011-0461
MLIST:[opensuse-updates] 20110322 openSUSE-SU-2011:0207-1 (moderate): aaa_base security update	CVE-2011-0468
MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0313-1 (critical): moonlight security update	CVE-2011-0989 CVE-2011-0990 CVE-2011-0991 CVE-2011-0992
MLIST:[opensuse-updates] 20110408 openSUSE-SU-2011:0314-1 (moderate): python-feedparser security update	CVE-2009-5065 CVE-2011-1156 CVE-2011-1157 CVE-2011-1158
MLIST:[opensuse-updates] 20110512 openSUSE-SU-2011:0483-1 (moderate): New pure-ftpd version fix STARTTLS issues (CVE-2011-1575).	CVE-2011-1575
MLIST:[openvms-alerts] 20071003 VMS83A_LAN-V0200, ECO Kit Release	CVE-2007-5241 CVE-2007-5242
MLIST:[openvms-alerts] 20071003 VMS83I_LAN-V0600, ECO Kit Release	CVE-2007-5241 CVE-2007-5242
MLIST:[openwall-announce] 20070814 Linux 2.4.35-ow2	CVE-2007-3848
MLIST:[or-announce] 20050811 Tor security advisory: DH handshake flaw	CVE-2005-2643
MLIST:[or-announce] 20060829 Tor security advisory: clients will route traffic	CVE-2006-4508
MLIST:[or-announce] 20070525 Tor 0.1.2.14 is released	CVE-2007-3165
MLIST:[or-announce] 20070723 Tor 0.1.2.15 is released	CVE-2007-4096 CVE-2007-4097 CVE-2007-4098 CVE-2007-4099
MLIST:[or-announce] 20070802 Tor 0.1.2.16 is released	CVE-2007-4174
MLIST:[or-announce] 20070901 Tor security advisory: cross-protocol http form attack	CVE-2007-4174
MLIST:[or-announce] 20090122 Tor 0.2.0.33 is released	CVE-2009-0414
MLIST:[or-announce] 20090209 Tor 0.2.0.34 is released (security fixes)	CVE-2009-0936 CVE-2009-0937 CVE-2009-0938 CVE-2009-0939
MLIST:[or-announce] 20090625 Tor 0.2.0.35 is released	CVE-2009-2425 CVE-2009-2426
MLIST:[or-announce] 20100121 Tor 0.2.1.22 is released (security fix)	CVE-2010-0383 CVE-2010-0385
MLIST:[or-announce] 20101220 Tor 0.2.1.28 is released (security patches)	CVE-2010-1676
MLIST:[or-announce] 20110117 Tor 0.2.1.29 is released (security patches)	CVE-2011-0015 CVE-2011-0016 CVE-2011-0427 CVE-2011-0490 CVE-2011-0491 CVE-2011-0492 CVE-2011-0493
MLIST:[or-talk] 20070225 "Low-Resource Routing Attacks Against Anonymous Systems"	CVE-2007-1103
MLIST:[or-talk] 20070225 Re: "Low-Resource Routing Attacks Against Anonymous Systems"	CVE-2007-1103
MLIST:[or-talk] 20070225 Re: ISP controlling entry/exti ("Low-Resource Routing Attacks Against Anonymous Systems")	CVE-2007-1103
MLIST:[or-talk] 20071031 Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18	CVE-2007-6722 CVE-2007-6723 CVE-2007-6724
MLIST:[or-talk] 20071031 Re: Insecure Privoxy Configuration in Vidalia Bundles Prior to 0.1.2.18	CVE-2007-6723
MLIST:[or-talk] 20100120 Re: Tor Project infrastructure updates in response to security breach	CVE-2010-0383
MLIST:[or-talk] 20100120 Tor 0.2.2.7-alpha is out	CVE-2010-0383 CVE-2010-0384 CVE-2010-0385
MLIST:[or-talk] 20100120 Tor Project infrastructure updates in response to security breach	CVE-2010-0383
MLIST:[oracle-l] 20061201 Re: Oracle 9i on Windows 2003 -- Vulnerability Question	CVE-2007-2110
MLIST:[oss-security 20080701 Re: [oss-security] openldap DoS	CVE-2008-2952
MLIST:[oss-security] 20080311 CVE request: insecure X11 handling in ltsp	CVE-2008-1293
MLIST:[oss-security] 20080312 Re: CVE request: insecure X11 handling in ltsp	CVE-2008-1293
MLIST:[oss-security] 20080401 CVE id request: squid	CVE-2008-1612
MLIST:[oss-security] 20080406 Re: Security fixes in m4-1.4.11	CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080406 Security fixes in m4-1.4.11	CVE-2008-1687 CVE-2008-1688
MLIST:[oss-security] 20080407 Re: Security fixes in m4-1.4.11	CVE-2008-1687
MLIST:[oss-security] 20080411 CVE request: openfire <3.5.0 Denial of Service	CVE-2008-1728
MLIST:[oss-security] 20080422 CVE Request: inspircd	CVE-2008-1925
MLIST:[oss-security] 20080425 CVE request: licq denial of service	CVE-2008-1996
MLIST:[oss-security] 20080502 CVE Request (PHP)	CVE-2007-4850 CVE-2008-0599 CVE-2008-0674 CVE-2008-2050 CVE-2008-2051
MLIST:[oss-security] 20080514 Re: CVE id request: uudeview	CVE-2008-2266
MLIST:[oss-security] 20080520 Re: CVE ID request: GNUTLS	CVE-2008-1948 CVE-2008-1949 CVE-2008-1950
MLIST:[oss-security] 20080521 New Xen ioemu: PVFB backend issue	CVE-2008-1952
MLIST:[oss-security] 20080521 Re: CVE request: mtr	CVE-2008-2357
MLIST:[oss-security] 20080521 Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific)	CVE-2007-5962
MLIST:[oss-security] 20080521 vsftpd CVE-2007-5962 (Red Hat / Fedora specific)	CVE-2007-5962
MLIST:[oss-security] 20080529 CVE-2008-2363: pan - heap overflow	CVE-2008-2363
MLIST:[oss-security] 20080530 Re: CVE id request: uudeview	CVE-2008-2266
MLIST:[oss-security] 20080531 Re: CVE id request: ikiwiki	CVE-2008-0169
MLIST:[oss-security] 20080604 CVE id request: slash	CVE-2008-2231
MLIST:[oss-security] 20080604 Re: CVE id request: slash	CVE-2008-2231
MLIST:[oss-security] 20080609 [oCERT-2008-006] multiple SNMP implementations HMAC authentication spoofing	CVE-2008-0960
MLIST:[oss-security] 20080610 Re: exploitability of off-by-one in motion webserver	CVE-2008-2654
MLIST:[oss-security] 20080610 exploitability of off-by-one in motion webserver	CVE-2008-2654
MLIST:[oss-security] 20080611 CVE id request: nasm off-by-one	CVE-2008-2719
MLIST:[oss-security] 20080611 Re: CVE id request: nasm off-by-one	CVE-2008-2719
MLIST:[oss-security] 20080611 Re: exploitability of off-by-one in motion webserver	CVE-2008-2654
MLIST:[oss-security] 20080613 CVE Id Request: fetchmail <= 6.3.8 DoS when logging long headers in -v -v mode	CVE-2008-2711
MLIST:[oss-security] 20080615 CVE id request: Clamav	CVE-2008-2713
MLIST:[oss-security] 20080616 CVE Id request: vim	CVE-2008-2712
MLIST:[oss-security] 20080617 Re: CVE id request: Clamav	CVE-2008-2713
MLIST:[oss-security] 20080619 CVE request: php 5.2.6 ext/imap buffer overflows	CVE-2008-2829
MLIST:[oss-security] 20080619 Re: query on a pppol2tp_recvmsg() fix - security relevant?	CVE-2008-2750
MLIST:[oss-security] 20080624 Re: CVE request: php 5.2.6 ext/imap buffer overflows	CVE-2008-2829
MLIST:[oss-security] 20080626 CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25	CVE-2008-2365
MLIST:[oss-security] 20080627 CVE Request (pidgin)	CVE-2008-2956 CVE-2008-2957
MLIST:[oss-security] 20080630 CVE id request mercurial:Insufficient input validation	CVE-2008-2942
MLIST:[oss-security] 20080630 CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080630 CVE-2008-2375 older vsftpd authentication memory leak	CVE-2008-2375
MLIST:[oss-security] 20080701 Re: CVE id request mercurial:Insufficient input validation	CVE-2008-2942
MLIST:[oss-security] 20080701 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080702 More ruby integer overflows (rb_ary_fill / Array#fill)	CVE-2008-2376
MLIST:[oss-security] 20080702 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080703 2.6.25.10 security fixes, please assign CVE id	CVE-2008-2812 CVE-2008-3077
MLIST:[oss-security] 20080703 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080703 Re: Re: CVE Request (pidgin)	CVE-2008-2927
MLIST:[oss-security] 20080704 Re: Re: CVE Request (pidgin)	CVE-2008-2927
MLIST:[oss-security] 20080707 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080708 CVE-2008-2931 kernel: missing check before setting mount propagation	CVE-2008-2931
MLIST:[oss-security] 20080708 Re: CVE id request: Clamav	CVE-2008-3215
MLIST:[oss-security] 20080708 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080708 Re: CVE request: moodle xss in < 1.8.5	CVE-2008-1502
MLIST:[oss-security] 20080708 Re: CVE-2008-2931 kernel: missing check before setting mount propagation	CVE-2008-2931
MLIST:[oss-security] 20080708 Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075 CVE-2008-3076
MLIST:[oss-security] 20080709 CVE id request: projectl	CVE-2008-3216
MLIST:[oss-security] 20080709 CVE request: PowerDNS recursor source port randomization	CVE-2008-3217
MLIST:[oss-security] 20080710 CVE id request: libavformat	CVE-2008-3162
MLIST:[oss-security] 20080710 CVE request: multiple drupal issues in < 6.3,5.8	CVE-2008-3218 CVE-2008-3219 CVE-2008-3220 CVE-2008-3221 CVE-2008-3222 CVE-2008-3223
MLIST:[oss-security] 20080710 Re: DNS vulnerability: other relevant software	CVE-2008-3217
MLIST:[oss-security] 20080710 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080712 CVE id request: op	CVE-2008-3229
MLIST:[oss-security] 20080712 CVE request: phpbb < 3.0.2	CVE-2008-3224
MLIST:[oss-security] 20080712 CVE requests: joomla <1.5.4	CVE-2008-3225 CVE-2008-3226 CVE-2008-3227 CVE-2008-3228
MLIST:[oss-security] 20080712 Re: CVE request for dnsmasq DoS	CVE-2008-3214
MLIST:[oss-security] 20080713 CVE requests: crashers by zzuf	CVE-2008-3230 CVE-2008-3231
MLIST:[oss-security] 20080713 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080713 Re: openldap DoS	CVE-2008-2952
MLIST:[oss-security] 20080714 CVE request: dotclear < 1.2.8	CVE-2008-3232
MLIST:[oss-security] 20080714 Re: CVE-2008-2365 kernel: ptrace: Crash on PTRACE_{ATTACH,DETACH} race -- affecting kernel versions <= 2.6.25	CVE-2008-2365
MLIST:[oss-security] 20080715 CVE request: Wordpress XSS	CVE-2008-3233
MLIST:[oss-security] 20080715 CVE request: phpmyadmin < 2.11.7.1	CVE-2008-3197
MLIST:[oss-security] 20080715 Re: CVE id request: Clamav	CVE-2008-3215
MLIST:[oss-security] 20080715 Re: Re: More arbitrary code executions in Netrw	CVE-2008-3074 CVE-2008-3075 CVE-2008-3432
MLIST:[oss-security] 20080716 Re: CVE id request: libavformat	CVE-2008-3162
MLIST:[oss-security] 20080716 Re: CVE request: PowerDNS recursor source port randomization	CVE-2008-3217
MLIST:[oss-security] 20080716 Re: CVE request: Wordpress XSS	CVE-2008-3233
MLIST:[oss-security] 20080716 Re: CVE request: phpmyadmin < 2.11.7.1	CVE-2008-2960
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw	CVE-2008-3432
MLIST:[oss-security] 20080731 Re: Re: More arbitrary code executions in Netrw version 125, Vim 7.2a.10	CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20080801 Re: CVE request: phpwebgallery < 1.7.2	CVE-2008-3451
MLIST:[oss-security] 20080804 CVE id request: openttd	CVE-2008-3547
MLIST:[oss-security] 20080805 Re: CVE id request: openttd	CVE-2008-3547
MLIST:[oss-security] 20080807 Re: CVE id request: openttd	CVE-2008-3547
MLIST:[oss-security] 20080808 CVE request: php-5.2.6 overflow issues	CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080808 Re: CVE request: php-5.2.6 overflow issues	CVE-2008-3659
MLIST:[oss-security] 20080813 Re: CVE request: php-5.2.6 overflow issues	CVE-2008-3658 CVE-2008-3659 CVE-2008-3660
MLIST:[oss-security] 20080815 CVE request for neon	CVE-2008-3746
MLIST:[oss-security] 20080815 CVE-2008-3276 Linux kernel dccp_setsockopt_change() integer overflow	CVE-2008-3276
MLIST:[oss-security] 20080819 Re: swfdec 0.6.8 stable update	CVE-2008-3796
MLIST:[oss-security] 20080819 swfdec 0.6.8 stable update	CVE-2008-3796
MLIST:[oss-security] 20080819 wordpress 2.6.1	CVE-2008-3747
MLIST:[oss-security] 20080820 FW: CVE-2008-1668 - ftpd 2.4 - unauthorized root access - patch details	CVE-2008-1668
MLIST:[oss-security] 20080820 Re: CVE request for neon	CVE-2008-3746
MLIST:[oss-security] 20080820 Re: wordpress 2.6.1	CVE-2008-3747
MLIST:[oss-security] 20080824 Re: CVE id request: vlc	CVE-2008-3794
MLIST:[oss-security] 20080825 CVE Request (gpicview)	CVE-2008-3791
MLIST:[oss-security] 20080825 CVE Request (ruby)	CVE-2008-3790
MLIST:[oss-security] 20080825 CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API	CVE-2008-3792
MLIST:[oss-security] 20080826 CVE Request (samba)	CVE-2008-3789
MLIST:[oss-security] 20080826 CVE-2008-3526 Linux kernel sctp_setsockopt_auth_key() integer overflow	CVE-2008-3526
MLIST:[oss-security] 20080826 Re: CVE Request (gpicview)	CVE-2008-3791
MLIST:[oss-security] 20080826 Re: CVE Request (ruby)	CVE-2008-3790
MLIST:[oss-security] 20080826 Re: CVE request: kernel: sctp: fix potential panics in the SCTP-AUTH API	CVE-2008-3792
MLIST:[oss-security] 20080827 CVE request: mono Sys.Web header injection	CVE-2008-3906
MLIST:[oss-security] 20080829 CVE-2008-3525 kernel: missing capability checks in sbni_ioctl()	CVE-2008-3525
MLIST:[oss-security] 20080831 Re: CVE Request (gpicview)	CVE-2008-3904
MLIST:[oss-security] 20080901 CVE id request: newsbeuter	CVE-2008-3907
MLIST:[oss-security] 20080903 CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb)	CVE-2008-3905
MLIST:[oss-security] 20080903 Re: CVE Request (gpicview)	CVE-2008-3904
MLIST:[oss-security] 20080903 django CSRF vuln	CVE-2008-3909
MLIST:[oss-security] 20080903 request for CVE: clamav 0.94 release	CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080904 CVE id request: dns2tcp	CVE-2008-3910
MLIST:[oss-security] 20080904 CVE request: kernel: dio: zero struct dio with kzalloc instead of manually	CVE-2007-6716
MLIST:[oss-security] 20080904 CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl	CVE-2008-3915
MLIST:[oss-security] 20080904 CVE request: kernel: sunrpc: fix possible overrun on read of /proc/sys/sunrpc/transports	CVE-2008-3911
MLIST:[oss-security] 20080904 Re: CVE Request (ruby -- DNS spoofing vulnerability	CVE-2008-3905
MLIST:[oss-security] 20080904 Re: CVE request: kernel: nfsd: fix buffer overrun decoding NFSv4 acl	CVE-2008-3915
MLIST:[oss-security] 20080904 Re: request for CVE: clamav 0.94 release	CVE-2008-3912 CVE-2008-3913 CVE-2008-3914
MLIST:[oss-security] 20080906 CVE id requests: gmanedit	CVE-2008-3971
MLIST:[oss-security] 20080906 CVE request: pam_mount < 0.47 missing security checks	CVE-2008-3970
MLIST:[oss-security] 20080908 Re: CVE request for bitlbee	CVE-2008-3969
MLIST:[oss-security] 20080909 CVE request (libpng)	CVE-2008-3964
MLIST:[oss-security] 20080909 CVE request: MySQL empty bit-string literal server crash	CVE-2008-3963
MLIST:[oss-security] 20080909 CVE request: mybb < 1.4.1	CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE id requests: gmanedit	CVE-2008-3971
MLIST:[oss-security] 20080909 Re: CVE request (libpng)	CVE-2008-3964
MLIST:[oss-security] 20080909 Re: CVE request for bitlbee	CVE-2008-3969
MLIST:[oss-security] 20080909 Re: CVE request: MySQL empty bit-string literal server crash	CVE-2008-3963
MLIST:[oss-security] 20080909 Re: CVE request: MySQL incomplete fix for CVE-2008-2079	CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080909 Re: CVE request: mybb < 1.4.1	CVE-2008-3965 CVE-2008-3966 CVE-2008-3967
MLIST:[oss-security] 20080909 Re: CVE request: pam_mount < 0.47 missing security checks	CVE-2008-3970
MLIST:[oss-security] 20080909 Re: cve request: punbb < 1.2.20 xss	CVE-2008-3968
MLIST:[oss-security] 20080909 Re: opensc 0.11.6 with fixed security update	CVE-2008-3972
MLIST:[oss-security] 20080909 Re: ssmtp =2.62 unitialized memory disclosure	CVE-2008-3962
MLIST:[oss-security] 20080909 cve request: punbb < 1.2.20 xss	CVE-2008-3968
MLIST:[oss-security] 20080909 ssmtp =2.62 unitialized memory disclosure	CVE-2008-3962
MLIST:[oss-security] 20080910 [oCERT-2008-012] Horde, Popoon frameworks common input sanitization errors (XSS)	CVE-2008-3823 CVE-2008-3824
MLIST:[oss-security] 20080911 CVE request for Joomla multiple vuln.	CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: joomla < 1.5.7	CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080911 CVE request: wordpress < 2.6.2	CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080911 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb)	CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080911 Re: [oss-list] CVE request (vim)	CVE-2008-4101
MLIST:[oss-security] 20080911 Re: ssmtp =2.62 unitialized memory disclosure	CVE-2008-3962
MLIST:[oss-security] 20080911 [oss-list] CVE request (vim)	CVE-2008-4101
MLIST:[oss-security] 20080913 CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection	CVE-2008-4094
MLIST:[oss-security] 20080915 CVE Request (python)	CVE-2008-4108
MLIST:[oss-security] 20080915 Re: CVE Request (ruby -- DNS spoofing vulnerability in resolv.rb)	CVE-2008-4099 CVE-2008-4100 CVE-2008-4126
MLIST:[oss-security] 20080915 Re: CVE request: Ruby on Rails <2.1.1 :limit and :offset SQL injection	CVE-2008-4094
MLIST:[oss-security] 20080915 Re: [oss-list] CVE request (vim)	CVE-2008-4101
MLIST:[oss-security] 20080915 Re: phpMyAdmin code execution (CVE request)	CVE-2008-4096
MLIST:[oss-security] 20080915 phpMyAdmin code execution (CVE request)	CVE-2008-4096
MLIST:[oss-security] 20080916 CVE request: kernel: splice: fix bad unlock_page() in error case	CVE-2008-4302
MLIST:[oss-security] 20080916 Re: CVE Request (python)	CVE-2008-4108
MLIST:[oss-security] 20080916 Re: CVE request: MySQL incomplete fix for CVE-2008-2079	CVE-2008-4097 CVE-2008-4098
MLIST:[oss-security] 20080916 Re: CVE request: joomla < 1.5.7	CVE-2008-4102 CVE-2008-4103 CVE-2008-4104 CVE-2008-4105
MLIST:[oss-security] 20080916 Re: CVE request: wordpress < 2.6.2	CVE-2008-4106 CVE-2008-4107
MLIST:[oss-security] 20080918 CVE Request (mercurial)	CVE-2008-4297
MLIST:[oss-security] 20080918 CVE Request (openswan, emacspeak, cman)	CVE-2008-4192
MLIST:[oss-security] 20080918 CVE-2008-3528 Linux kernel ext[234] directory corruption DoS	CVE-2008-3528
MLIST:[oss-security] 20080919 CVE request: Opera < 9.52 multiple vulnerabilities	CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080919 viewvc security flaw?	CVE-2008-4325
MLIST:[oss-security] 20080920 Re: viewvc security flaw?	CVE-2008-4325
MLIST:[oss-security] 20080923 CVE req: phpmyadmin < 2.11.9.2 xss	CVE-2008-4326
MLIST:[oss-security] 20080923 Re: CVE Request (openswan, emacspeak, cman)	CVE-2008-4192
MLIST:[oss-security] 20080923 Re: CVE request: Opera < 9.52 multiple vulnerabilities	CVE-2008-4195 CVE-2008-4196 CVE-2008-4197 CVE-2008-4198 CVE-2008-4199 CVE-2008-4200 CVE-2008-4292
MLIST:[oss-security] 20080924 CVE request: kernel: open() call allows setgid bit when user is not in new file's group	CVE-2008-4210
MLIST:[oss-security] 20080924 Re: CVE id request: fraud2	CVE-2008-4201
MLIST:[oss-security] 20080924 Re: CVE request: kernel: open() call allows setgid bit when user is not in new file's group	CVE-2008-4210
MLIST:[oss-security] 20080925 CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-4445
MLIST:[oss-security] 20080926 CVE Request (lighttpd)	CVE-2008-4298
MLIST:[oss-security] 20080926 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-3792 CVE-2008-4113 CVE-2008-4445
MLIST:[oss-security] 20080927 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-4445
MLIST:[oss-security] 20080929 Re: CVE-2008-4113 update: kernel: sctp: fix random memory dereference with SCTP_HMAC_IDENT option	CVE-2008-4445
MLIST:[oss-security] 20080930 CVE Request (xen)	CVE-2008-4405
MLIST:[oss-security] 20080930 Re: CVE request: lighttpd issues	CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20080930 Re: Re: CVE request: lighttpd issues	CVE-2008-4359 CVE-2008-4360
MLIST:[oss-security] 20081001 CVE id request: sabre	CVE-2008-4406
MLIST:[oss-security] 20081002 CVE request: XSS in mediawiki 1.13.1 and 1.12.0	CVE-2008-4408
MLIST:[oss-security] 20081002 CVE-2008-3832 kernel: null pointer dereference in utrace_control	CVE-2008-3832
MLIST:[oss-security] 20081002 libxml2 "ampproblem" DoS	CVE-2008-4409
MLIST:[oss-security] 20081003 CVE request: kernel: x86: Fix broken LDT access in VMI	CVE-2008-4410
MLIST:[oss-security] 20081003 CVE-2008-3833 kernel: remove SUID when splicing into an inode	CVE-2008-3833
MLIST:[oss-security] 20081003 Re: regarding CVE-2008-4382 & CVE-2008-4381	CVE-2008-4381
MLIST:[oss-security] 20081003 regarding CVE-2008-4382 & CVE-2008-4381	CVE-2008-4381
MLIST:[oss-security] 20081004 Re: CVE Request (xen)	CVE-2008-4405
MLIST:[oss-security] 20081006 CVE request - (vim : netrw plugin - ftp user credentials disclosure)	CVE-2008-4677
MLIST:[oss-security] 20081006 CVE request: kernel: sctp: Fix kernel panic while process protocol violation parameter	CVE-2008-4618
MLIST:[oss-security] 20081007 CVE request: crashers / potential security risks in mplayer	CVE-2007-6718 CVE-2008-4610
MLIST:[oss-security] 20081008 CVE request: kernel: sctp: Fix oops when INIT-ACK indicates that peer doesn't support AUTH	CVE-2008-4576
MLIST:[oss-security] 20081009 lynx lynxcgi handler flaw	CVE-2008-4690
MLIST:[oss-security] 20081013 CVE id request: qemu	CVE-2008-4553
MLIST:[oss-security] 20081013 CVE request: kernel: don't allow splice() to files opened with O_APPEND	CVE-2008-4554
MLIST:[oss-security] 20081013 Re: CVE Request	CVE-2008-4579 CVE-2008-4580
MLIST:[oss-security] 20081014 Re: CVE id request: qemu	CVE-2008-4553
MLIST:[oss-security] 20081014 Re: CVE request: kernel: don't allow splice() to files opened with O_APPEND	CVE-2008-4554
MLIST:[oss-security] 20081015 CVE request: jhead	CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Re: CVE request: jhead	CVE-2008-4575 CVE-2008-4639 CVE-2008-4641
MLIST:[oss-security] 20081015 Vim CVE issues cleanup (plugins tar.vim, zip.vim) - CVE-2008-3074 and CVE-2008-3075	CVE-2008-2712 CVE-2008-3074 CVE-2008-3075
MLIST:[oss-security] 20081016 CVE request - Vim netrw.plugin	CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081016 Re: CVE Request	CVE-2008-4580
MLIST:[oss-security] 20081016 Re: CVE request: jhead	CVE-2008-4639 CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081019 CVE id request: vlc	CVE-2008-4654 CVE-2008-4686
MLIST:[oss-security] 20081019 CVE request: mantisbt < 1.1.4: RCE	CVE-2008-4687
MLIST:[oss-security] 20081020 CVE request (vim)	CVE-2008-3074 CVE-2008-3075 CVE-2008-3076 CVE-2008-4677 CVE-2008-6235
MLIST:[oss-security] 20081020 Re: CVE request: mantisbt < 1.1.4: RCE	CVE-2008-4688 CVE-2008-4689
MLIST:[oss-security] 20081021 CVE Request: Opera 9.60 with security fixes	CVE-2008-4694 CVE-2008-4695
MLIST:[oss-security] 20081021 CVE req: drupal < 5.11/6.5	CVE-2008-4789 CVE-2008-4790 CVE-2008-4791 CVE-2008-4792 CVE-2008-4793
MLIST:[oss-security] 20081021 Re: CVE Request: Opera 9.60 with security fixes	CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 CVE Request (netpbm)	CVE-2008-4799
MLIST:[oss-security] 20081022 Re: CVE Request: Opera 9.60 with security fixes	CVE-2008-4694 CVE-2008-4695 CVE-2008-4696 CVE-2008-4697 CVE-2008-4698 CVE-2008-4725
MLIST:[oss-security] 20081022 Re: CVE id request: vlc	CVE-2008-4686
MLIST:[oss-security] 20081023 CVE request for ecryptfs	CVE-2008-5188
MLIST:[oss-security] 20081023 Re: CVE Request (netpbm)	CVE-2008-4799
MLIST:[oss-security] 20081025 CVE request: lynx (old) .mailcap handling flaw	CVE-2006-7234
MLIST:[oss-security] 20081025 Regarding SA32329 (Smarty "_expand_quoted_text()" Security Bypass)	CVE-2008-4810 CVE-2008-4811
MLIST:[oss-security] 20081027 CVE id request: blender	CVE-2008-4863
MLIST:[oss-security] 20081027 CVE request -- Python imageop#3	CVE-2008-4864
MLIST:[oss-security] 20081027 Re: CVE request: lynx (old) .mailcap handling flaw	CVE-2008-4865
MLIST:[oss-security] 20081027 XSS in HTML Tidy plugin used in WYSIWYG HTML editors	CVE-2008-4761
MLIST:[oss-security] 20081028 CVE-2008-4619 / milw0rm6775	CVE-2008-4619
MLIST:[oss-security] 20081028 Re: CVE request: lynx (old) .mailcap handling flaw	CVE-2008-4865
MLIST:[oss-security] 20081029 CVE Request (dovecot)	CVE-2008-4870
MLIST:[oss-security] 20081029 CVE Request - Python imageop	CVE-2008-4864
MLIST:[oss-security] 20081029 Fwd: [Full-disclosure] [PLSA 2008-36] Ffmpeg: Multiple vulnerabilities	CVE-2008-4866 CVE-2008-4867 CVE-2008-4868 CVE-2008-4869
MLIST:[oss-security] 20081029 Re: CVE request for ecryptfs	CVE-2008-5188
MLIST:[oss-security] 20081029 Re: CVE request: lynx (old) .mailcap handling flaw	CVE-2008-4865
MLIST:[oss-security] 20081029 Re: CVE-2008-4619 / milw0rm6775	CVE-2008-4619
MLIST:[oss-security] 20081030 CVE requests: tempfile issues for aview, mgetty, openoffice, crossfire	CVE-2003-0308 CVE-2008-3883 CVE-2008-3927 CVE-2008-3928 CVE-2008-3929 CVE-2008-3930 CVE-2008-3931 CVE-2008-4085 CVE-2008-4190 CVE-2008-4191 CVE-2008-4192 CVE-2008-4440 CVE-2008-4474 CVE-2008-4475 CVE-2008-4476 CVE-2008-4477 CVE-2008-4553 CVE-2008-4935 CVE-2008-4936 CVE-2008-4937 CVE-2008-4938 CVE-2008-4939 CVE-2008-4940 CVE-2008-4941 CVE-2008-4942 CVE-2008-4943 CVE-2008-4944 CVE-2008-4945 CVE-2008-4946 CVE-2008-4947 CVE-2008-4948 CVE-2008-4949 CVE-2008-4950 CVE-2008-4951 CVE-2008-4952 CVE-2008-4953 CVE-2008-4954 CVE-2008-4955 CVE-2008-4956 CVE-2008-4957 CVE-2008-4958 CVE-2008-4959 CVE-2008-4960 CVE-2008-4964 CVE-2008-4965 CVE-2008-4966 CVE-2008-4967 CVE-2008-4968 CVE-2008-4969 CVE-2008-4970 CVE-2008-4971 CVE-2008-4972 CVE-2008-4973 CVE-2008-4974 CVE-2008-4975 CVE-2008-4976 CVE-2008-4977 CVE-2008-4978 CVE-2008-4979 CVE-2008-4980 CVE-2008-4981 CVE-2008-4982 CVE-2008-4983 CVE-2008-4984 CVE-2008-4985 CVE-2008-4986 CVE-2008-4987 CVE-2008-4988 CVE-2008-4993 CVE-2008-4994 CVE-2008-4995 CVE-2008-4996 CVE-2008-4997 CVE-2008-4998 CVE-2008-5007 CVE-2008-5034
MLIST:[oss-security] 20081031 New net-snmp DoS	CVE-2008-4309
MLIST:[oss-security] 20081031 Re: CVE-2008-4619 / milw0rm6775	CVE-2008-4619
MLIST:[oss-security] 20081101 CVE request (Fwd: MyBB 1.4.2: Multiple Vulnerabilties)	CVE-2008-4928 CVE-2008-4929 CVE-2008-4930
MLIST:[oss-security] 20081101 CVE-2008-4796: snoopy triage	CVE-2008-4796
MLIST:[oss-security] 20081102 CVE id request: htop	CVE-2008-5076
MLIST:[oss-security] 20081103 CVE Request (libsamplerate)	CVE-2008-5008
MLIST:[oss-security] 20081103 CVE request - uw-imap	CVE-2008-5005
MLIST:[oss-security] 20081103 CVE requests: kernel: hfsplus-related bugs	CVE-2008-4933 CVE-2008-4934
MLIST:[oss-security] 20081103 Re: CVE request - uw-imap	CVE-2008-5005 CVE-2008-5006
MLIST:[oss-security] 20081105 CVE Request - Python string expandtabs	CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 CVE id request: vlc	CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081105 CVE request: libcdaudio	CVE-2008-5030
MLIST:[oss-security] 20081105 Re: CVE Request - Python string expandtabs	CVE-2008-2315 CVE-2008-5031
MLIST:[oss-security] 20081105 VideoLAN security advisory 0810	CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081106 CVE request: Nagios (two issues)	CVE-2008-5027 CVE-2008-5028
MLIST:[oss-security] 20081106 CVE request: kernel: Unix sockets kernel panic	CVE-2008-5029
MLIST:[oss-security] 20081107 Re: CVE request: libcdaudio	CVE-2008-5030
MLIST:[oss-security] 20081110 GeSHi: Clarification about the recent security (non-)issues (SA32559)	CVE-2008-5186
MLIST:[oss-security] 20081110 Re: CVE id request: vlc	CVE-2008-5032 CVE-2008-5036
MLIST:[oss-security] 20081110 Re: CVE requests: kernel: hfsplus-related bugs	CVE-2008-5025
MLIST:[oss-security] 20081111 CVE request: kernel: libertas: fix buffer overrun	CVE-2008-5134
MLIST:[oss-security] 20081111 Re: CVE request: libcdaudio	CVE-2008-5030
MLIST:[oss-security] 20081111 Re: CVE requests: kernel: hfsplus-related bugs	CVE-2008-5025
MLIST:[oss-security] 20081112 CVE Request - Zope 2 - PythonScripts local DoS	CVE-2008-5102
MLIST:[oss-security] 20081112 CVE Request -- OptiPNG	CVE-2008-5101
MLIST:[oss-security] 20081113 CVE request: wordpress can be subject of delayed attacks via cookies	CVE-2008-5113
MLIST:[oss-security] 20081114 Re: CVE id request: htop	CVE-2008-5076
MLIST:[oss-security] 20081117 CVE Request (syslog-ng)	CVE-2008-5110
MLIST:[oss-security] 20081119 CVE request: CUPS DoS via RSS subscriptions	CVE-2008-5183 CVE-2008-5184
MLIST:[oss-security] 20081119 Re: CVE request: CUPS DoS via RSS subscriptions	CVE-2008-5183
MLIST:[oss-security] 20081120 CVE Request: imlib2	CVE-2008-5187
MLIST:[oss-security] 20081120 CVE id request: another geshi issue (was: [oss-security] GeSHi: Clarification about the recent security (non-)issues (SA32559))	CVE-2008-5185
MLIST:[oss-security] 20081120 CVE request: no-ip DUC buffer overflow	CVE-2008-5297
MLIST:[oss-security] 20081120 Re: CVE request: CUPS DoS via RSS subscriptions	CVE-2008-5183
MLIST:[oss-security] 20081124 CVE Request -- wireshark	CVE-2008-5285
MLIST:[oss-security] 20081127 Re: CVE request: jhead	CVE-2008-4640 CVE-2008-4641
MLIST:[oss-security] 20081128 CVE id request/update: mailscanner: many scripts allow local users to overwrite arbitrary files via symlink attacks	CVE-2008-5312 CVE-2008-5313
MLIST:[oss-security] 20081128 CVE request: lcms (old issues)	CVE-2008-5316 CVE-2008-5317
MLIST:[oss-security] 20081128 Re: [oss-security] CVE Request - cups, dovecot-managesieve, perl, wireshark	CVE-2008-5302 CVE-2008-5303
MLIST:[oss-security] 20081201 (sort of urgent) CVE Request -- cups (repost)	CVE-2008-5286
MLIST:[oss-security] 20081201 CVE request: clamav 0.94.2	CVE-2008-5314
MLIST:[oss-security] 20081203 CVE Request (zaptel)	CVE-2008-5396
MLIST:[oss-security] 20081204 CVE for SE-2008-06 in PHP 5.2.7 (ZipArchive)	CVE-2008-5658
MLIST:[oss-security] 20081204 ruby CVE-2008-4310 (Red Hat specific)	CVE-2008-4310
MLIST:[oss-security] 20081206 CVE request: weak PRNG in GNU Classpath	CVE-2008-5659
MLIST:[oss-security] 20081209 CVE request: Four issues in PunBB	CVE-2008-5433 CVE-2008-5434 CVE-2008-5435
MLIST:[oss-security] 20081209 CVE request: kernel: MIPS: Fix potential DOS by untrusted user app	CVE-2008-5701
MLIST:[oss-security] 20081209 CVE request: kernel: enforce a minimum SG_IO timeout	CVE-2008-5700
MLIST:[oss-security] 20081209 CVE request: moodle (XSS)	CVE-2008-5432
MLIST:[oss-security] 20081210 CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug	CVE-2008-5702
MLIST:[oss-security] 20081212 CVE Request - roundcubemail	CVE-2008-5619
MLIST:[oss-security] 20081214 Avahi daemon DoS (CVE-2008-5081)	CVE-2008-5081
MLIST:[oss-security] 20081216 CVE id request: gpsdrive	CVE-2008-5703 CVE-2008-5704
MLIST:[oss-security] 20081216 CVE id request: verlihub	CVE-2008-5705 CVE-2008-5706
MLIST:[oss-security] 20081216 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug	CVE-2008-5702
MLIST:[oss-security] 20081217 Re: CVE request: kernel: watchdog: ib700wdt.c - buffer_underflow bug	CVE-2008-5702
MLIST:[oss-security] 20081219 CVE Request - Incomplete dahdi/zaptel tor2.c patch for CVE-2008-5396	CVE-2008-5744
MLIST:[oss-security] 20081219 CVE Request -- Xen (Upstream patch for CVE-2008-4405 is incomplete)	CVE-2008-5716
MLIST:[oss-security] 20081219 CVE request - pdfjam	CVE-2008-5743
MLIST:[oss-security] 20081223 CVE request: kernel: soft lockup occurs when network load is very high	CVE-2008-5713
MLIST:[oss-security] 20081228 Re: CVE request - pdfjam	CVE-2008-5843
MLIST:[oss-security] 20081230 CVE id request: audiofile	CVE-2008-5824
MLIST:[oss-security] 20090105 CVE request: kernel: sctp: memory overflow when FWD-TSN chunk is received with bad stream ID	CVE-2009-0065
MLIST:[oss-security] 20090106 Fwd: Using xdg-open in /etc/mailcap causes hole in Firefox (Demonstration/Exploit included)	CVE-2009-0068
MLIST:[oss-security] 20090108 CVE request: ktorrent	CVE-2008-5905 CVE-2008-5906
MLIST:[oss-security] 20090109 libpng non issue	CVE-2008-5907
MLIST:[oss-security] 20090112 CVE Request -- tsqllib, slurm-llnl, libnasl, libcrypt-openssl-dsa-perl, erlang, boinc-client, m2crypto	CVE-2009-0124 CVE-2009-0125 CVE-2009-0126 CVE-2009-0127 CVE-2009-0128 CVE-2009-0129 CVE-2009-0130
MLIST:[oss-security] 20090112 CVE request: xrdp	CVE-2008-5902 CVE-2008-5903 CVE-2008-5904
MLIST:[oss-security] 20090112 CVE-2009-0024 kernel: local privilege escalation in sys_remap_file_pages	CVE-2009-0024
MLIST:[oss-security] 20090113 CVE Request -- libmikmod	CVE-2007-6720 CVE-2009-0179
MLIST:[oss-security] 20090113 CVE-2008-4307 kernel: local denial of service in locks_remove_flock	CVE-2008-4307
MLIST:[oss-security] 20090114 CVE Request -- amarok	CVE-2009-0135 CVE-2009-0136
MLIST:[oss-security] 20090114 update on CVE-2008-5718	CVE-2008-5718
MLIST:[oss-security] 20090115 CVE request -- git	CVE-2008-5916
MLIST:[oss-security] 20090118 CVE request: WebSVN	CVE-2009-0240
MLIST:[oss-security] 20090119 CVE-2009-0031 kernel: local denial of service in keyctl_join_session_keyring	CVE-2009-0031
MLIST:[oss-security] 20090120 Re: CVE request -- git	CVE-2008-5516 CVE-2008-5517 CVE-2008-5916
MLIST:[oss-security] 20090121 CVE Request -- openoffice.org (CVE-2008-4841)	CVE-2009-0259
MLIST:[oss-security] 20090121 Re: CVE request -- git	CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090121 mod-auth-mysql: SQL injection	CVE-2008-2384
MLIST:[oss-security] 20090123 Re: CVE id request: typo3 SA-2009-001	CVE-2009-0258
MLIST:[oss-security] 20090123 Re: CVE request -- git	CVE-2008-5516 CVE-2008-5517
MLIST:[oss-security] 20090126 CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)	CVE-2008-5983 CVE-2008-5984 CVE-2008-5985 CVE-2008-5986 CVE-2008-5987 CVE-2009-0314 CVE-2009-0315 CVE-2009-0316 CVE-2009-0317 CVE-2009-0318
MLIST:[oss-security] 20090127 CVE Request: MoinMoin	CVE-2009-0312
MLIST:[oss-security] 20090128 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)	CVE-2008-5983
MLIST:[oss-security] 20090129 CVE Request (trickle)	CVE-2009-0415
MLIST:[oss-security] 20090129 CVE Request -- (sort of urgent) gstreamer-plugins-good (repost) (more details about affected versions -- final version)	CVE-2009-0386 CVE-2009-0387 CVE-2009-0397 CVE-2009-0398
MLIST:[oss-security] 20090130 CVE Request - php (PHP BZ#27421)	CVE-2009-0754
MLIST:[oss-security] 20090130 Re: CVE request -- Python < 2.6 PySys_SetArgv issues (epiphany, csound, dia, eog, gedit, xchat, vim, nautilus-python, Gnumeric)	CVE-2008-5983
MLIST:[oss-security] 20090203 CVE Request: sblim-sfcb genSslCert.sh temp race	CVE-2009-0416
MLIST:[oss-security] 20090203 Re: CVE Request - php (PHP BZ#27421)	CVE-2009-0754
MLIST:[oss-security] 20090204 CVS request - Moodle	CVE-2009-0499 CVE-2009-0500 CVE-2009-0501 CVE-2009-0502
MLIST:[oss-security] 20090206 CVE Request - Wicd <= 1.5.8	CVE-2009-0489
MLIST:[oss-security] 20090206 CVE request: phpbb < 3.0.4	CVE-2008-6506 CVE-2008-6507
MLIST:[oss-security] 20090206 Re: CVE request: jhead	CVE-2008-4639
MLIST:[oss-security] 20090207 CVE Request: pycrypto	CVE-2009-0544
MLIST:[oss-security] 20090208 CVE-2008-6049 is bogus	CVE-2008-6049
MLIST:[oss-security] 20090210 CVE Request -- evolution	CVE-2009-0547
MLIST:[oss-security] 20090210 CVE request: typo3 xss (typo3-sa-2009-002)	CVE-2009-0815 CVE-2009-0816
MLIST:[oss-security] 20090210 libvirt_proxy heads up	CVE-2009-0036
MLIST:[oss-security] 20090211 CVE request for proftpd	CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090211 Re: CVE request for proftpd	CVE-2009-0542 CVE-2009-0543
MLIST:[oss-security] 20090212 CVE Request -- net-snmp (sensitive host information disclosure)	CVE-2008-6123
MLIST:[oss-security] 20090212 CVE-2008-5621 is a duplicate (was: Re: CVE request: phpMyAdmin < 3.1.1.0 (SQL injection through XSRF on several pages ))	CVE-2008-5621
MLIST:[oss-security] 20090212 Re: CVE Request -- net-snmp (sensitive host information disclosure)	CVE-2008-6123
MLIST:[oss-security] 20090212 Re: CVE Request: pycrypto	CVE-2009-0544
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel	CVE-2009-1046
MLIST:[oss-security] 20090212 Re: http://www.securityfocus.com/bid/33672/info kernel issue	CVE-2009-1046
MLIST:[oss-security] 20090212 http://www.securityfocus.com/bid/33672/info kernel issue	CVE-2009-1046
MLIST:[oss-security] 20090213 CVE Request: Poppler -Two Denial of Service Vulnerabilities	CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090219 CVE request for yaws	CVE-2009-0751
MLIST:[oss-security] 20090219 Re: CVE Request: Poppler -Two Denial of Service Vulnerabilities	CVE-2009-0755 CVE-2009-0756
MLIST:[oss-security] 20090220 CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt	CVE-2009-0676
MLIST:[oss-security] 20090220 CVE request: kernel: skfp_ioctl inverted logic flaw	CVE-2009-0675
MLIST:[oss-security] 20090223 CVE request: mldonkey arbitrary file download vulnerability	CVE-2009-0753
MLIST:[oss-security] 20090224 CVE request: optipng security release	CVE-2009-0749
MLIST:[oss-security] 20090224 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt	CVE-2009-0676
MLIST:[oss-security] 20090225 CVE request: Psi <0.12.1 DoS	CVE-2008-6393
MLIST:[oss-security] 20090225 Re: CVE Request - php (PHP BZ#27421)	CVE-2009-0754
MLIST:[oss-security] 20090225 Re: CVE request: optipng security release	CVE-2009-0749
MLIST:[oss-security] 20090226 OpenSC Security Advisory	CVE-2009-0368
MLIST:[oss-security] 20090301 CVE id request: znc	CVE-2009-0759
MLIST:[oss-security] 20090302 CVE Request: mpfr (Buffer Overflow)	CVE-2009-0757
MLIST:[oss-security] 20090302 CVE id request: avahi	CVE-2009-0758
MLIST:[oss-security] 20090302 CVE id request: dkim-milter	CVE-2009-0770
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: seccomp: 32/64 syscall hole	CVE-2009-0835
MLIST:[oss-security] 20090302 CVE request: kernel: x86-64: syscall-audit: 32/64 syscall hole	CVE-2009-0834
MLIST:[oss-security] 20090302 Re: CVE request: kernel: memory disclosure in SO_BSDCOMPAT gsopt	CVE-2009-0676
MLIST:[oss-security] 20090305 CVE Request -- pam	CVE-2009-0887
MLIST:[oss-security] 20090306 CVE request: kernel: inotify local DoS	CVE-2009-0935
MLIST:[oss-security] 20090306 CVE request: kernel: shm: fix shmctl(SHM_INFO) lockup with !CONFIG_SHMEM	CVE-2009-0859
MLIST:[oss-security] 20090307 CVE Request: Opera <9.64: Execution of arbitrary code	CVE-2009-0914
MLIST:[oss-security] 20090311 CVE request -- postgresql	CVE-2009-0922
MLIST:[oss-security] 20090311 CVE-2009-0778 kernel: rt_cache leak	CVE-2009-0778
MLIST:[oss-security] 20090312 [oCERT-2008-015] glib and glib-predecessor heap overflows	CVE-2008-4316 CVE-2009-0585 CVE-2009-0586 CVE-2009-0587
MLIST:[oss-security] 20090316 CVE request: XSS in MUC logs of ejabberd	CVE-2009-0934
MLIST:[oss-security] 20090316 CVE-2009-0876 (VirtualBox) references	CVE-2009-0876
MLIST:[oss-security] 20090317 CVE request -- firefox, vlc, WeeChat	CVE-2009-1045
MLIST:[oss-security] 20090317 Re: CVE request -- firefox, vlc, WeeChat	CVE-2009-0661
MLIST:[oss-security] 20090317 Re: CVE-2009-0876 (VirtualBox) references	CVE-2009-0876
MLIST:[oss-security] 20090317 Re: [oCERT-2008-015] glib and glib-predecessor heap overflows	CVE-2008-4316
MLIST:[oss-security] 20090318 Re: CVE request: kernel: inotify local DoS	CVE-2009-0935
MLIST:[oss-security] 20090319 Re: CVE request: kernel: inotify local DoS	CVE-2009-0935
MLIST:[oss-security] 20090323 CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap	CVE-2009-1073
MLIST:[oss-security] 20090323 CVE request: API key disclosure in piwik	CVE-2009-1085
MLIST:[oss-security] 20090323 CVE request: kernel: nfsd did not drop CAP_MKNOD for non-root	CVE-2009-1072
MLIST:[oss-security] 20090324 CVE id request: ldns	CVE-2009-1086
MLIST:[oss-security] 20090324 Re: CVE request -- ucd-snmp / net-snmp, libnss-ldapd / nss_ldap	CVE-2009-1073
MLIST:[oss-security] 20090325 CVE request -- zsh, XFree86-xfs/xorg-x11-xfs, screen	CVE-2009-1214 CVE-2009-1215
MLIST:[oss-security] 20090330 [Fwd: Cross-Site Scripting in Banshee DAAP Extension]	CVE-2009-1175
MLIST:[oss-security] 20090401 CVE id rquest: xfig insecure tmp files	CVE-2009-1962
MLIST:[oss-security] 20090401 CVE request -- bibtex, pam_ssh	CVE-2009-1284
MLIST:[oss-security] 20090401 CVE request -- ghostscript	CVE-2007-6725 CVE-2008-6679
MLIST:[oss-security] 20090401 CVE request: PHP 5.2.9	CVE-2009-1271 CVE-2009-1272
MLIST:[oss-security] 20090401 CVE request: kernel: KVM: VMX: Dont allow uninhibited access to EFER on i386	CVE-2009-1242
MLIST:[oss-security] 20090401 CVE request: kernel: udp: Wrong locking code in udp seq_file infrastructure	CVE-2009-1243
MLIST:[oss-security] 20090405 CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1439
MLIST:[oss-security] 20090406 CVE request: kernel: NFS: Fix an Oops in encode_lookup()	CVE-2009-1336
MLIST:[oss-security] 20090407 CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check	CVE-2009-1337
MLIST:[oss-security] 20090407 Re: CVE request: clamav clamd and clamscan DoS and bypass by malformated archive	CVE-2008-6680 CVE-2009-1241 CVE-2009-1270
MLIST:[oss-security] 20090407 Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1439
MLIST:[oss-security] 20090408 CVE request: apt	CVE-2009-1300
MLIST:[oss-security] 20090408 CVE-2008-5519: mod_jk session information leak vulnerability	CVE-2008-5519
MLIST:[oss-security] 20090408 CVE-2009-1265 kernel: af_rose/x25: Sanity check the maximum user frame size	CVE-2009-1265
MLIST:[oss-security] 20090409 Re: CVE request: PHP 5.2.9	CVE-2009-1272
MLIST:[oss-security] 20090413 CVE request: silverstripe - two sql injections	CVE-2008-6753
MLIST:[oss-security] 20090415 Re: Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090415 Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090415 Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090416 CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace	CVE-2009-1338
MLIST:[oss-security] 20090416 CVE-2009-1189: invalid fix for CVE-2008-3834 (dbus)	CVE-2009-1189
MLIST:[oss-security] 20090417 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace	CVE-2009-1338
MLIST:[oss-security] 20090417 Re: CVE request: kernel: NFS: Fix an Oops in encode_lookup()	CVE-2009-1336
MLIST:[oss-security] 20090417 Re: CVE request: kernel: exit_notify: kill the wrong capable(CAP_KILL) check	CVE-2009-1337
MLIST:[oss-security] 20090421 CVE Request -- libmodplug	CVE-2009-1438
MLIST:[oss-security] 20090421 Re: CVE request: kernel: 'kill sig -1' must only apply to caller's PID namespace	CVE-2009-1338
MLIST:[oss-security] 20090422 CVE id request: amule	CVE-2009-1440
MLIST:[oss-security] 20090422 CVE-2009-1192 kernel: agp: zero pages before sending to userspace	CVE-2009-1192
MLIST:[oss-security] 20090424 Re: Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090428 Re: Re: Some fun with tcp_wrappers	CVE-2009-0786
MLIST:[oss-security] 20090429 Re: CVE Request -- libmodplug	CVE-2009-1513
MLIST:[oss-security] 20090429 Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090429 ipsec-tools 0.7.2	CVE-2009-1574 CVE-2009-1632
MLIST:[oss-security] 20090501 CVE request (sort of): Quagga BGP crasher	CVE-2009-1572
MLIST:[oss-security] 20090501 Re: CVE request (sort of): Quagga BGP crasher	CVE-2009-1572
MLIST:[oss-security] 20090504 CVE request: kernel: ptrace_attach: fix the usage of ->cred_exec_mutex	CVE-2009-1527
MLIST:[oss-security] 20090504 CVE-2009-1184 selinux: skipped node/port send checks in the compat_net=1 case	CVE-2009-1184
MLIST:[oss-security] 20090504 Re: ipsec-tools 0.7.2	CVE-2009-1574
MLIST:[oss-security] 20090505 CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg)	CVE-2009-1573
MLIST:[oss-security] 20090505 Old cscope buffer overflow	CVE-2009-1577
MLIST:[oss-security] 20090505 Re: CVE id request: Debian/Ubuntu specific issue in xvfb-run (xorg)	CVE-2009-1573
MLIST:[oss-security] 20090506 CVE id request: coccinelle	CVE-2009-1753
MLIST:[oss-security] 20090506 Re: Old cscope buffer overflow	CVE-2009-0148 CVE-2009-1577
MLIST:[oss-security] 20090507 [oCERT-2009-001] Pango integer overflow in heap allocation size calculations	CVE-2009-1194
MLIST:[oss-security] 20090508 OpenSC 0.11.8 released with security update	CVE-2009-1603
MLIST:[oss-security] 20090511 [oCERT-2009-004] AjaxTerm session id collision	CVE-2009-1629
MLIST:[oss-security] 20090512 CVE Request (evolution)	CVE-2009-1631
MLIST:[oss-security] 20090512 Re: ipsec-tools 0.7.2	CVE-2009-1632
MLIST:[oss-security] 20090513 CVE request: kernel: problem with NFS v4 client handling of MAY_EXEC in nfs_permission	CVE-2009-1630
MLIST:[oss-security] 20090514 CVE Request: XEN local denial of service	CVE-2009-1758
MLIST:[oss-security] 20090514 Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090514 Update - Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090515 Re: Re: Update - Re: CVE request? buffer overflow in CIFS in 2.6.*	CVE-2009-1633
MLIST:[oss-security] 20090518 CVE id request: slim	CVE-2009-1756
MLIST:[oss-security] 20090518 Re: Two OpenSSL DTLS remote DoS	CVE-2009-1379
MLIST:[oss-security] 20090518 Two OpenSSL DTLS remote DoS	CVE-2009-1377 CVE-2009-1378
MLIST:[oss-security] 20090519 CVE id request: nsd	CVE-2009-1755
MLIST:[oss-security] 20090520 CVE request: ctorrent	CVE-2009-1759
MLIST:[oss-security] 20090521 CVE request: transmission <1.61 CSRF	CVE-2009-1757
MLIST:[oss-security] 20090522 [oCERT-2009-006] Android improper package verification when using shared uids	CVE-2009-1754
MLIST:[oss-security] 20090527 CVE assignment notification (pam_krb5 CVE-2009-1384)	CVE-2009-1384
MLIST:[oss-security] 20090529 CVE Request (irssi)	CVE-2009-1959
MLIST:[oss-security] 20090529 CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090530 Re: CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090602 Re: CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090602 Re: Two OpenSSL DTLS remote DoS	CVE-2009-1386 CVE-2009-1387
MLIST:[oss-security] 20090603 CVE request: "billion laughs" attack against Apache APR	CVE-2009-1955
MLIST:[oss-security] 20090603 CVE request: kernel: sparc64: Fix crash with /proc/iomem	CVE-2009-1914
MLIST:[oss-security] 20090603 CVE-2009-1385 kernel: e1000_clean_rx_irq() denial of service	CVE-2009-1385
MLIST:[oss-security] 20090603 Re: CVE request: kernel: splice local denial of service	CVE-2009-1961
MLIST:[oss-security] 20090605 CVE Request (apr-util)	CVE-2009-1956
MLIST:[oss-security] 20090608 Re: CVE Request -- ImageMagick -- Integer overflow in XMakeImage()	CVE-2009-1882
MLIST:[oss-security] 20090610 CVE-2009-1389 kernel: r8169: fix crash when large packets are received	CVE-2009-1389
MLIST:[oss-security] 20090610 Mutt 1.5.19 SSL chain verification flaw	CVE-2009-1390
MLIST:[oss-security] 20090612 Git daemon infinite loop	CVE-2009-2108
MLIST:[oss-security] 20090621 libtiff buffer underflow in LZWDecodeCompat	CVE-2009-2285
MLIST:[oss-security] 20090623 Re: libtiff buffer underflow in LZWDecodeCompat	CVE-2009-2285
MLIST:[oss-security] 20090629 CVE Request -- libtiff [was: Re: libtiff buffer underflow in LZWDecodeCompat]	CVE-2009-2285
MLIST:[oss-security] 20090629 CVE id request: compface	CVE-2009-2286
MLIST:[oss-security] 20090629 Re: CVE id request: compface	CVE-2009-2286
MLIST:[oss-security] 20090630 CVE Request: kernel: kvm: failure to validate cr3 after KVM_SET_SREGS	CVE-2009-2287
MLIST:[oss-security] 20090701 Re: incorrect upstream fix for CVE-2009-0840 (mapserver)	CVE-2009-2281
MLIST:[oss-security] 20090702 CVE-2009-1388 kernel: do_coredump() vs ptrace_start() deadlock	CVE-2009-1388
MLIST:[oss-security] 20090703 Re: CVE id request: compface	CVE-2009-2286
MLIST:[oss-security] 20090716 [oCERT-2009-011] Android improper camera and audio permission verification	CVE-2009-2348
MLIST:[oss-security] 20090717 Linux 2.6.30+/SELinux/RHEL5 test kernel 0day, exploiting the unexploitable	CVE-2009-1897
MLIST:[oss-security] 20090720 squid DoS in external auth header parser	CVE-2009-2855
MLIST:[oss-security] 20090721 CVE Request -- WordPress	CVE-2009-2851
MLIST:[oss-security] 20090721 CVE Request -- znc	CVE-2009-2658
MLIST:[oss-security] 20090722 Re: CVE request: Wireshark <1.2.1 Multiple DoS	CVE-2009-2560
MLIST:[oss-security] 20090724 md raid null ptr dereference (when sysfs is writable)	CVE-2009-2849
MLIST:[oss-security] 20090724 nilfs-utils privilege escalation	CVE-2009-2657
MLIST:[oss-security] 20090725 Re: CVE Request -- HTMLDOC	CVE-2009-3050
MLIST:[oss-security] 20090725 camlimages: Integer overflows in GIF and JPEG readers	CVE-2009-2660
MLIST:[oss-security] 20090726 Re: CVE Request -- HTMLDOC	CVE-2009-3050
MLIST:[oss-security] 20090726 Re: md raid null ptr dereference (when sysfs is writable)	CVE-2009-2849
MLIST:[oss-security] 20090727 CVE id request: strongswan	CVE-2009-2661
MLIST:[oss-security] 20090729 CVE Request (django)	CVE-2009-2659
MLIST:[oss-security] 20090803 Re: squid DoS in external auth header parser	CVE-2009-2855
MLIST:[oss-security] 20090804 CVE request - kernel: execve: must clear current->clear_child_tid	CVE-2009-2848
MLIST:[oss-security] 20090804 CVE request - kernel: information leak in sigaltstack	CVE-2009-2847
MLIST:[oss-security] 20090804 CVE request: Wordpress	CVE-2009-2853 CVE-2009-2854
MLIST:[oss-security] 20090804 Re: squid DoS in external auth header parser	CVE-2009-2855
MLIST:[oss-security] 20090805 Re: CVE request - kernel: execve: must clear current->clear_child_tid	CVE-2009-2848
MLIST:[oss-security] 20090805 Re: CVE request - kernel: information leak in sigaltstack	CVE-2009-2847
MLIST:[oss-security] 20090805 Re: CVE request: fetchmail <= 6.3.10 SSL certificate	CVE-2009-2666
MLIST:[oss-security] 20090806 CVE request: kernel: clock_nanosleep() with CLOCK_MONOTONIC_RAW NULL pointer dereference	CVE-2009-2767
MLIST:[oss-security] 20090809 CVE id request: groff (pdfroff)	CVE-2009-5044 CVE-2009-5078
MLIST:[oss-security] 20090810 CVE request: kernel: parisc: isa-eeprom missing lower bound check	CVE-2009-2846
MLIST:[oss-security] 20090810 Re: CVE id request: groff (pdfroff)	CVE-2009-5044 CVE-2009-5078
MLIST:[oss-security] 20090811 CVE-2009-2691 kernel: /proc/$pid/maps visible during initial setuid ELF loading	CVE-2009-2691
MLIST:[oss-security] 20090813 CVE request: kernel: flat: fix uninitialized ptr with shared libs	CVE-2009-2768
MLIST:[oss-security] 20090814 CVE request: Common Data Format (CDF) library multiple heap-based buffer overflows	CVE-2009-2850
MLIST:[oss-security] 20090814 CVE-2009-2692 kernel: uninit op in SOCKOPS_WRAP() leads to privesc	CVE-2009-2692
MLIST:[oss-security] 20090814 GnuTLS CVE-2009-2730 Patches (Was Re: GnuTLS 2.8.2)	CVE-2009-2730
MLIST:[oss-security] 20090814 Re: CVE id request: groff (pdfroff)	CVE-2009-5044 CVE-2009-5079 CVE-2009-5080 CVE-2009-5081 CVE-2009-5082
MLIST:[oss-security] 20090815 mailfilter 0.8.2 fixes CVE-2007-1558 (APOP)	CVE-2007-1558
MLIST:[oss-security] 20090817 CVE request: kernel: cfg80211: missing NULL pointer checks	CVE-2009-2844
MLIST:[oss-security] 20090817 Re: CVE request: kernel: cfg80211: missing NULL pointer checks	CVE-2009-2844
MLIST:[oss-security] 20090817 SELinux and mmap_min_addr behaviour (CVE-2009-2695)	CVE-2009-2695
MLIST:[oss-security] 20090818 Re: CVE request: kernel: parisc: isa-eeprom missing lower bound check	CVE-2009-2846
MLIST:[oss-security] 20090818 Re: CVE-2007-1558 update (was: mailfilter 0.8.2 fixes CVE-2007-1558 (APOP))	CVE-2007-1558
MLIST:[oss-security] 20090819 CVE Request pidgin	CVE-2009-3025
MLIST:[oss-security] 20090821 expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090824 CVE id request: pidgin	CVE-2009-3026
MLIST:[oss-security] 20090825 CVE-2009-2698 kernel: udp socket NULL ptr dereference	CVE-2009-2698
MLIST:[oss-security] 20090826 CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure	CVE-2009-3001
MLIST:[oss-security] 20090826 Re: CVE request - kernel: information leak in sigaltstack	CVE-2009-2847
MLIST:[oss-security] 20090826 Re: Re: expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090826 Re: expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090827 Re: CVE request: kernel: AF_LLC getsockname 5-Byte Stack Disclosure	CVE-2009-3002
MLIST:[oss-security] 20090827 Re: Re: expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20090828 CVE request: perl-IO-Socket-SSL certificate hostname compare bug	CVE-2009-3024
MLIST:[oss-security] 20090829 Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug	CVE-2009-3024
MLIST:[oss-security] 20090831 CVE id request: silc-toolkit	CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090831 CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc	CVE-2009-3043
MLIST:[oss-security] 20090831 Re: Re: CVE request: perl-IO-Socket-SSL certificate hostname compare bug	CVE-2009-3024
MLIST:[oss-security] 20090901 Re: CVE Request -- HTMLDOC	CVE-2009-3050
MLIST:[oss-security] 20090903 CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2009-3228
MLIST:[oss-security] 20090903 More CVE-2009-2408 like issues	CVE-2009-2408 CVE-2009-3490 CVE-2009-3765 CVE-2009-3766 CVE-2009-3767
MLIST:[oss-security] 20090903 Re: CVE id request: silc-toolkit	CVE-2008-7159 CVE-2008-7160 CVE-2009-3051 CVE-2009-3163
MLIST:[oss-security] 20090903 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc	CVE-2009-3043
MLIST:[oss-security] 20090904 CVE request: kernel: NULL pointer dereference in sg_build_indirect()	CVE-2009-3288
MLIST:[oss-security] 20090904 Re: CVE request: kernel: tty: make sure to flush any pending work when halting the ldisc	CVE-2009-3043
MLIST:[oss-security] 20090905 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090906 Re: Re: expat bug 1990430	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20090907 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090908 CVE Request - glib symlink copying permission exposure	CVE-2009-3289
MLIST:[oss-security] 20090908 CVE request - Debian/Ubuntu PAM auth module selection	CVE-2009-3232
MLIST:[oss-security] 20090909 CVE Request -- FreeRADIUS 1.1.8	CVE-2009-3111
MLIST:[oss-security] 20090910 Re: OpenOffice.org CVE-2009-2139	CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090911 Re: OpenOffice.org CVE-2009-2139	CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090912 CVE request(?): Thin: Client IP spoofing	CVE-2009-3287
MLIST:[oss-security] 20090914 CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams	CVE-2009-2903
MLIST:[oss-security] 20090914 Re: CVE for recent cyrus-imap issue	CVE-2009-2632 CVE-2009-3235
MLIST:[oss-security] 20090914 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams	CVE-2009-2903
MLIST:[oss-security] 20090915 CVE-2009-1883 kernel: missing capability check in z90crypt	CVE-2009-1883
MLIST:[oss-security] 20090915 Re: CVE-2009-1883 kernel: missing capability check in z90crypt	CVE-2009-1883
MLIST:[oss-security] 20090916 CVE id request: changetrack	CVE-2009-3233
MLIST:[oss-security] 20090916 CVE request: kernel: cfg80211: fix looping soft lockup in find_ie()	CVE-2009-3280
MLIST:[oss-security] 20090916 CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr()	CVE-2009-3234
MLIST:[oss-security] 20090916 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE request: kernel: perf_counter: Fix buffer overflow in perf_copy_attr()	CVE-2009-3234
MLIST:[oss-security] 20090917 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2005-4881 CVE-2009-3228
MLIST:[oss-security] 20090917 Re: CVE-2009-2903 kernel: appletalk: denial of service when handling IP tunnelled over DDP datagrams	CVE-2009-2903
MLIST:[oss-security] 20090917 Re: Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request	CVE-2009-2562 CVE-2009-2563
MLIST:[oss-security] 20090917 Wireshark - wnpa-sec-2009-05.html && wnpa-sec-2009-06.html -- CVE confirmation and CVE Request	CVE-2009-2563
MLIST:[oss-security] 20090918 CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0	CVE-2009-3290
MLIST:[oss-security] 20090918 Insecure pid directory permissions for postfix on Debian / Ubuntu	CVE-2009-2939
MLIST:[oss-security] 20090920 Re: CVE Request -- PHP 5 - 5.2.11	CVE-2009-3294
MLIST:[oss-security] 20090921 CVE request: kernel: issue with O_EXCL creates on NFSv4	CVE-2009-3286
MLIST:[oss-security] 20090921 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0	CVE-2009-3290
MLIST:[oss-security] 20090922 Re: CVE request: kernel: KVM: x86: Disallow hypercalls for guest callers in rings > 0	CVE-2009-3290
MLIST:[oss-security] 20090922 Re: [oss-security] OpenOffice.org CVE-2009-2139	CVE-2009-2139 CVE-2009-2140
MLIST:[oss-security] 20090923 Re: More CVE-2009-2408 like issues	CVE-2009-3490 CVE-2009-3765 CVE-2009-3767
MLIST:[oss-security] 20090925 CVE Request -- Xen -- PyGrub	CVE-2009-3525
MLIST:[oss-security] 20091001 CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091001 Re: CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091002 Re: CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091006 Kernel ecryptfs CVE id (CVE-2009-2908)	CVE-2009-2908
MLIST:[oss-security] 20091007 More kernel CVE info (CVE-2009-2909)	CVE-2009-2909
MLIST:[oss-security] 20091009 CVE request: Unbound	CVE-2009-3602
MLIST:[oss-security] 20091009 Re: CVE Request (kernel)	CVE-2009-2910
MLIST:[oss-security] 20091009 Re: CVE request: Unbound	CVE-2009-3602
MLIST:[oss-security] 20091013 Re: Duplicate CVE assignment notification [was: CVE id request: django]	CVE-2009-3695
MLIST:[oss-security] 20091014 CVE Request - backintime	CVE-2009-3611
MLIST:[oss-security] 20091014 CVE Request -- phpMyAdmin	CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091014 CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7	CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE Request - backintime	CVE-2009-3611
MLIST:[oss-security] 20091014 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7	CVE-2009-3612
MLIST:[oss-security] 20091014 Re: CVE request: kernel: tc: uninitialised kernel memory leak	CVE-2009-3612
MLIST:[oss-security] 20091015 Re: CVE Request -- PHP 5 - 5.2.11	CVE-2009-3546
MLIST:[oss-security] 20091015 Re: CVE Request -- phpMyAdmin	CVE-2009-3696 CVE-2009-3697
MLIST:[oss-security] 20091015 Re: CVE request kernel: flood ping cause	CVE-2009-3613
MLIST:[oss-security] 20091015 Re: CVE request kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7	CVE-2009-3612
MLIST:[oss-security] 20091016 CVE Request - aria2 - 1.6.2	CVE-2009-3617
MLIST:[oss-security] 20091016 QEMU VNC use-after-free	CVE-2009-3616
MLIST:[oss-security] 20091016 Re: CVE Request - aria2 - 1.6.2	CVE-2009-3617
MLIST:[oss-security] 20091016 Re: QEMU VNC use-after-free	CVE-2009-3616
MLIST:[oss-security] 20091016 Re: viewvc: CVE request: XSS and illegal characters while printing name-value pairs	CVE-2009-3618 CVE-2009-3619
MLIST:[oss-security] 20091019 CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket	CVE-2009-3621
MLIST:[oss-security] 20091019 CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised	CVE-2009-3620
MLIST:[oss-security] 20091019 Re: CVE request: kernel: AF_UNIX: Fix deadlock on connecting to shutdown socket	CVE-2009-3621
MLIST:[oss-security] 20091019 Re: CVE request: kernel: r128 IOCTL NULL pointer dereferences when CCE state is uninitialised	CVE-2009-3620
MLIST:[oss-security] 20091021 CVE assignment notification -- CVE-2009-2911 - Three SystemTap-1.0 DoS issues	CVE-2009-2911
MLIST:[oss-security] 20091021 CVE request: Wordpress Trackback DoS	CVE-2009-3622
MLIST:[oss-security] 20091021 Re: CVE request: Wordpress Trackback DoS	CVE-2009-3622
MLIST:[oss-security] 20091022 CVE Request -- Sahana	CVE-2009-3625
MLIST:[oss-security] 20091022 CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases	CVE-2009-3624
MLIST:[oss-security] 20091022 CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client	CVE-2009-3623
MLIST:[oss-security] 20091022 Re: CVE Request -- Sahana	CVE-2009-3625
MLIST:[oss-security] 20091022 Re: CVE request: kernel: get_instantiation_keyring() should inc the keyring refcount in all cases	CVE-2009-3624
MLIST:[oss-security] 20091022 Re: CVE request: kernel: nfsd4: fix null dereference creating nfsv4 callback client	CVE-2009-3623
MLIST:[oss-security] 20091022 Re: Re: Regarding expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20091022 Re: Regarding expat bug 1990430	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091022 Regarding expat bug 1990430	CVE-2009-3720
MLIST:[oss-security] 20091023 CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid()	CVE-2009-3638
MLIST:[oss-security] 20091023 CVE request: kvm: update_cr8_intercept() NULL pointer dereference	CVE-2009-3640
MLIST:[oss-security] 20091023 CVE-2009-3626 assigment notification - Perl - perl-5.10.1	CVE-2009-3626
MLIST:[oss-security] 20091023 CVE-2009-3627 assignment notification - HTML-Parser-3.63	CVE-2009-3627
MLIST:[oss-security] 20091023 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430]	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091023 Re: CVE id request: typo3	CVE-2009-3628 CVE-2009-3629 CVE-2009-3630 CVE-2009-3631 CVE-2009-3632 CVE-2009-3633 CVE-2009-3634 CVE-2009-3635 CVE-2009-3636
MLIST:[oss-security] 20091023 Re: CVE request: kvm: integer overflow in kvm_dev_ioctl_get_supported_cpuid()	CVE-2009-3638
MLIST:[oss-security] 20091023 Re: proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification	CVE-2009-3639
MLIST:[oss-security] 20091023 proftpd - mod_tls - Improper SSL/TLS certificate subjectAltName verification	CVE-2009-3639
MLIST:[oss-security] 20091024 Re: CVE request: kvm: update_cr8_intercept() NULL pointer dereference	CVE-2009-3640
MLIST:[oss-security] 20091025 CVE Request -- Snort - 2.8.5.1	CVE-2009-3641
MLIST:[oss-security] 20091025 SANS: Security Thought LeadersRe: CVE Request -- Snort - 2.8.5.1	CVE-2009-3641
MLIST:[oss-security] 20091026 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430]	CVE-2009-2625 CVE-2009-3720
MLIST:[oss-security] 20091026 Re: CVE-2009-3239 is a duplicate of CVE-2009-2139 and CVE-2009-2140	CVE-2009-2139
MLIST:[oss-security] 20091026 Re: More CVE-2009-2408 like issues	CVE-2009-3766
MLIST:[oss-security] 20091028 Re: CVE Request -- expat [was: Re: Regarding expat bug 1990430]	CVE-2009-3720
MLIST:[oss-security] 20091029 CVE request: kvm: check cpl before emulating debug register access	CVE-2009-3722
MLIST:[oss-security] 20091029 Re: CVE request: kvm: check cpl before emulating debug register access	CVE-2009-3722
MLIST:[oss-security] 20091102 CVE request: kernel: connector security bypass	CVE-2009-3725
MLIST:[oss-security] 20091102 Re: CVE request: kernel: connector security bypass	CVE-2009-3725
MLIST:[oss-security] 20091103 CVE-2009-3547 kernel: fs: pipe.c null pointer dereference	CVE-2009-3547
MLIST:[oss-security] 20091105 CVE request: kernel: NULL pointer dereference in nfs4_proc_lock()	CVE-2009-3726
MLIST:[oss-security] 20091105 CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091105 Re: CVE request: kernel: NULL pointer dereference in nfs4_proc_lock()	CVE-2009-3726
MLIST:[oss-security] 20091105 Re: CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091107 Re: CVE Request - Asterisk (AST-2009-008.html)	CVE-2008-7220
MLIST:[oss-security] 20091107 Re: CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091107 Re: [TLS] CVE-2009-3555 for TLS renegotiation MITM attacks	CVE-2009-3555
MLIST:[oss-security] 20091109 CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff()	CVE-2009-3888
MLIST:[oss-security] 20091113 CVE request: kernel: bad permissions on megaraid_sas sysfs files	CVE-2009-3889 CVE-2009-3939
MLIST:[oss-security] 20091113 Re: CVE request - kernel: NOMMU: Dont pass NULL pointers to fput() in do_mmap_pgoff()	CVE-2009-3888
MLIST:[oss-security] 20091113 Re: CVE request: kernel: bad permissions on megaraid_sas sysfs files	CVE-2009-3889
MLIST:[oss-security] 20091115 CVE Id request: request-tracker	CVE-2009-3892
MLIST:[oss-security] 20091115 CVE request: Wordpress 2.8.6	CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091115 Re: CVE request: Wordpress 2.8.6	CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091116 Re: CVE Id request: request-tracker	CVE-2009-3892
MLIST:[oss-security] 20091116 Re: CVE request: Wordpress 2.8.6	CVE-2009-3890 CVE-2009-3891
MLIST:[oss-security] 20091119 CVE assignment (libexif)	CVE-2009-3895
MLIST:[oss-security] 20091119 CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer	CVE-2009-4021
MLIST:[oss-security] 20091119 mysql-5.1.41	CVE-2009-4028 CVE-2009-4030
MLIST:[oss-security] 20091120 CVE Assignment nginx	CVE-2009-3896
MLIST:[oss-security] 20091120 CVE request: php 5.3.1 update	CVE-2009-3292 CVE-2009-3294 CVE-2009-3557 CVE-2009-3558 CVE-2009-3559 CVE-2009-4017
MLIST:[oss-security] 20091120 CVE request: v1.2.8 released to fix the 0777 base_dir creation issue	CVE-2009-3897
MLIST:[oss-security] 20091120 CVEs for nginx	CVE-2009-3555 CVE-2009-3896 CVE-2009-3898
MLIST:[oss-security] 20091120 Re: CVE request: php 5.3.1 update	CVE-2009-3292 CVE-2009-3294 CVE-2009-3546 CVE-2009-3557 CVE-2009-3558 CVE-2009-3559 CVE-2009-4017
MLIST:[oss-security] 20091121 CVE Request - Dovecot - 1.2.8	CVE-2009-3897
MLIST:[oss-security] 20091121 CVE Request - MySQL - 5.0.88	CVE-2009-4019 CVE-2009-4028
MLIST:[oss-security] 20091121 Re: CVE Request - MySQL - 5.0.88	CVE-2009-4019
MLIST:[oss-security] 20091122 Re: CVE request: php 5.3.1 update	CVE-2009-4018
MLIST:[oss-security] 20091123 CVE request: Argument injections in multiple PEAR packages	CVE-2009-4023 CVE-2009-4025 CVE-2009-4111
MLIST:[oss-security] 20091123 Re: CVE Request - Dovecot - 1.2.8	CVE-2009-3897
MLIST:[oss-security] 20091123 Re: CVE Request - MySQL - 5.0.88	CVE-2009-4019
MLIST:[oss-security] 20091123 Re: CVE request: php 5.3.1 - proc_open() bypass PHP Bug #49026 [was: Re: CVE request: php 5.3.1 update]	CVE-2009-4018
MLIST:[oss-security] 20091123 Re: CVE request: v1.2.8 released to fix the 0777 base_dir creation issue	CVE-2009-3897
MLIST:[oss-security] 20091123 Re: CVEs for nginx	CVE-2009-3555 CVE-2009-3896 CVE-2009-3898
MLIST:[oss-security] 20091123 Re: mysql-5.1.41	CVE-2009-4028
MLIST:[oss-security] 20091124 CVE request: BIND 9 bug involving DNSSEC and the additional section	CVE-2009-4022
MLIST:[oss-security] 20091124 Re: CVE request: kernel: fuse: prevent fuse_put_request on invalid pointer	CVE-2009-4021
MLIST:[oss-security] 20091124 Re: a new bind issue	CVE-2009-4022
MLIST:[oss-security] 20091124 Re: mysql-5.1.41	CVE-2008-7247 CVE-2009-4030
MLIST:[oss-security] 20091124 a new bind issue	CVE-2009-4022
MLIST:[oss-security] 20091125 CVE Request - Cacti - 0.8.7e	CVE-2009-4032
MLIST:[oss-security] 20091125 CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes	CVE-2009-4031
MLIST:[oss-security] 20091125 Re: CVE Request - Cacti - 0.8.7e	CVE-2009-4032
MLIST:[oss-security] 20091125 Re: CVE request: kernel: KVM: x86 emulator: limit instructions to 15 bytes	CVE-2009-4031
MLIST:[oss-security] 20091126 Re: CVE Request - Cacti - 0.8.7e	CVE-2009-4032 CVE-2009-4112
MLIST:[oss-security] 20091127 CVE request: ruby on rails XSS Weakness in strip_tags	CVE-2009-4214
MLIST:[oss-security] 20091128 CVE request: Ruby on Rails: CSRF circumvention (from 2008)	CVE-2008-7248
MLIST:[oss-security] 20091128 Re: CVE request: Argument injections in multiple PEAR packages	CVE-2009-4111
MLIST:[oss-security] 20091130 Need more information on recent poppler issues	CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091130 Re: CVE Request - Cacti - 0.8.7e	CVE-2009-4032 CVE-2009-4112
MLIST:[oss-security] 20091130 Re: Need more information on recent poppler issues	CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091201 CVE request: kernel: mac80211: fix two remote exploits	CVE-2009-4026
MLIST:[oss-security] 20091201 Re: Need more information on recent poppler issues	CVE-2009-3606 CVE-2009-3607 CVE-2009-3608
MLIST:[oss-security] 20091202 Re: CVE request: Ruby on Rails: CSRF circumvention (from 2008)	CVE-2008-7248
MLIST:[oss-security] 20091203 CVE Request -- xfig	CVE-2009-4227
MLIST:[oss-security] 20091204 CVE-2009-4020 kernel: hfs buffer overflow	CVE-2009-4020
MLIST:[oss-security] 20091208 CVE Request -- coreutils -- unsafe temporary directory location use	CVE-2009-4135
MLIST:[oss-security] 20091208 Re: CVE Request -- coreutils -- unsafe temporary directory location use	CVE-2009-4135
MLIST:[oss-security] 20091208 Re: CVE request: ruby on rails XSS Weakness in strip_tags	CVE-2009-4214
MLIST:[oss-security] 20091209 Piwik <= 0.4.5 Cookie Unserialize() Vulnerability	CVE-2009-4137
MLIST:[oss-security] 20091210 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability	CVE-2009-4137
MLIST:[oss-security] 20091212 CVE request: polipo DoS via overly large "Content-Length" header	CVE-2009-4413
MLIST:[oss-security] 20091214 CVE Request - Open Flash Chart v2	CVE-2009-4140
MLIST:[oss-security] 20091214 Re: CVE Request - Open Flash Chart v2	CVE-2009-4140
MLIST:[oss-security] 20091214 Re: Piwik <= 0.4.5 Cookie Unserialize() Vulnerability	CVE-2009-4137
MLIST:[oss-security] 20091215 CVE-2009-4138 kernel: firewire: ohci: handle receive packets with a data length of zero	CVE-2009-4138
MLIST:[oss-security] 20091216 NetworkManager CVE assignment	CVE-2009-4144 CVE-2009-4145
MLIST:[oss-security] 20091217 [oCERT-2009-019] Ganeti path sanitization errors	CVE-2009-4261
MLIST:[oss-security] 20091217 possible vulnerability in ghostscript >= 8.64	CVE-2009-4270
MLIST:[oss-security] 20091218 Re: possible vulnerability in ghostscript >= 8.64	CVE-2009-4270
MLIST:[oss-security] 20091220 CVE request: phpgroupware	CVE-2009-4414 CVE-2009-4415 CVE-2009-4416
MLIST:[oss-security] 20091221 CVE request: Serendipity < 1.5 upload of files with .php. possible	CVE-2009-4412
MLIST:[oss-security] 20091223 CVE request - kernel: fuse_ioctl_copy_user() dos	CVE-2009-4410
MLIST:[oss-security] 20091223 CVE request: acl 2.2.47 always follows symlinks	CVE-2009-4411
MLIST:[oss-security] 20091224 OpenTTD remote DoS	CVE-2009-4007
MLIST:[oss-security] 20091228 CVE requests - kernel security regressions for CVE-2009-1385/and -1389	CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20091229 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389	CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20091231 Re: CVE requests - kernel security regressions for CVE-2009-1385/and -1389	CVE-2009-4536 CVE-2009-4537 CVE-2009-4538
MLIST:[oss-security] 20100102 CVE request - pidgin MSN arbitrary file upload	CVE-2010-0013
MLIST:[oss-security] 20100106 CVE Request: Transmission	CVE-2010-0012
MLIST:[oss-security] 20100106 CVE request - uzbl remote code execution	CVE-2010-0011
MLIST:[oss-security] 20100106 Re: CVE Request: Transmission	CVE-2010-0012
MLIST:[oss-security] 20100106 Re: CVE request - uzbl remote code execution	CVE-2010-0011
MLIST:[oss-security] 20100107 CVE id request: GNU libc: NIS shadow password leakage	CVE-2010-0015
MLIST:[oss-security] 20100107 Re: CVE request - pidgin MSN arbitrary file upload	CVE-2010-0013 CVE-2010-0277
MLIST:[oss-security] 20100108 Re: CVE id request: GNU libc: NIS shadow password leakage	CVE-2010-0015
MLIST:[oss-security] 20100109 Re: CVE id request: GNU libc: NIS shadow password leakage	CVE-2010-0015
MLIST:[oss-security] 20100111 CVE Request: viewvc	CVE-2010-0004 CVE-2010-0005
MLIST:[oss-security] 20100111 Re: CVE id request: GNU libc: NIS shadow password leakage	CVE-2010-0015
MLIST:[oss-security] 20100112 CVE request - kernel: infoleak if print-fatal-signals=1	CVE-2010-0003
MLIST:[oss-security] 20100113 CVE Request: kernel ebtables perm check	CVE-2010-0007
MLIST:[oss-security] 20100113 Re: CVE Request: viewvc	CVE-2010-0004 CVE-2010-0005
MLIST:[oss-security] 20100113 Re: CVE request - kernel: infoleak if print-fatal-signals=1	CVE-2010-0003
MLIST:[oss-security] 20100113 [PATCH] memory consumption (DoS) in openssl CVE-2009-4355	CVE-2009-4355
MLIST:[oss-security] 20100114 CVE-2010-0006 - kernel: ipv6: skb_dst() can be NULL in ipv6_hop_jumbo()	CVE-2010-0006
MLIST:[oss-security] 20100114 Re: CVE Request: kernel ebtables perm check	CVE-2010-0007
MLIST:[oss-security] 20100114 Re: CVE Request: viewvc	CVE-2010-0004
MLIST:[oss-security] 20100119 BIND CVE-2009-4022 fix incomplete	CVE-2010-0290
MLIST:[oss-security] 20100119 CVE request - kernel: untangle the do_mremap() mess	CVE-2010-0291
MLIST:[oss-security] 20100119 Re: CVE request - kernel: untangle the do_mremap() mess	CVE-2010-0291
MLIST:[oss-security] 20100120 CVE-2009-3556 kernel: qla2xxx NPIV vport management pseudofiles are world writable	CVE-2009-3556
MLIST:[oss-security] 20100120 CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock	CVE-2009-4272
MLIST:[oss-security] 20100120 Re: BIND CVE-2009-4022 fix incomplete	CVE-2010-0290
MLIST:[oss-security] 20100120 Re: CVE request - kernel: untangle the do_mremap() mess	CVE-2010-0291
MLIST:[oss-security] 20100120 Re: CVE-2009-4272 kernel: emergency route cache flushing leads to node deadlock	CVE-2009-4272
MLIST:[oss-security] 20100121 CVE request: MoinMoin information disclosure	CVE-2010-0667
MLIST:[oss-security] 20100121 Re: CVE request - kernel: untangle the do_mremap() mess	CVE-2010-0291
MLIST:[oss-security] 20100127 CVE id request: maildrop	CVE-2010-0301
MLIST:[oss-security] 20100127 Re: CVE id request: postgresql bitsubstr overflow	CVE-2010-0442
MLIST:[oss-security] 20100128 Re: CVE id request: maildrop	CVE-2010-0301
MLIST:[oss-security] 20100129 CVE Request -- ejabberd	CVE-2010-0305
MLIST:[oss-security] 20100129 Re: CVE Request -- ejabberd	CVE-2010-0305
MLIST:[oss-security] 20100129 Re: CVE id request: Wireshark	CVE-2010-0304
MLIST:[oss-security] 20100129 Re: CVE id: hybserv	CVE-2010-0303
MLIST:[oss-security] 20100201 CVE request - kernel: DoS on x86_64	CVE-2010-0307
MLIST:[oss-security] 20100201 Re: CVE request - kernel: DoS on x86_64	CVE-2010-0307
MLIST:[oss-security] 20100202 CVE request - kvm: cat /dev/port in the guest can cause host DoS	CVE-2010-0309
MLIST:[oss-security] 20100202 KVM possible security issues fixed	CVE-2010-0297
MLIST:[oss-security] 20100202 Re: CVE request - kvm: cat /dev/port in the guest can cause host DoS	CVE-2010-0309
MLIST:[oss-security] 20100202 lighttpd: slow request dos/oom attack [CVE-2010-0295]	CVE-2010-0295
MLIST:[oss-security] 20100203 CVE Request -- GMime-2.4.15	CVE-2010-0409
MLIST:[oss-security] 20100203 CVE request: kernel OOM/crash in drivers/connector	CVE-2010-0410
MLIST:[oss-security] 20100203 Re: CVE Request -- GMime-2.4.15	CVE-2010-0409
MLIST:[oss-security] 20100203 Re: CVE request - kernel: DoS on x86_64	CVE-2010-0307
MLIST:[oss-security] 20100203 Re: CVE request: kernel OOM/crash in drivers/connector	CVE-2010-0410
MLIST:[oss-security] 20100204 Re: CVE request - kernel: DoS on x86_64	CVE-2010-0307
MLIST:[oss-security] 20100204 Re: KVM possible security issues fixed	CVE-2010-0297
MLIST:[oss-security] 20100204 systemtap DoS issue (CVE-2010-0411)	CVE-2010-0411
MLIST:[oss-security] 20100205 Re: Samba symlink 0day flaw	CVE-2010-0926
MLIST:[oss-security] 20100205 Samba symlink 0day flaw	CVE-2010-0926
MLIST:[oss-security] 20100206 Re: Samba symlink 0day flaw	CVE-2010-0926
MLIST:[oss-security] 20100207 CVE request: information leak / potential crash in sys_move_pages	CVE-2010-0415
MLIST:[oss-security] 20100207 Re: CVE request: information leak / potential crash in sys_move_pages	CVE-2010-0415
MLIST:[oss-security] 20100208 Re: CVE request: information leak / potential crash in sys_move_pages	CVE-2010-0415
MLIST:[oss-security] 20100209 CVE Request -- cURL/libCURL 7.20.0	CVE-2010-0734
MLIST:[oss-security] 20100209 CVE request - kernel: futex: Handle user space corruption gracefully	CVE-2010-0622
MLIST:[oss-security] 20100209 vulnerability in netpbm (CVE-2009-4274)	CVE-2009-4274
MLIST:[oss-security] 20100211 CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference	CVE-2010-0437
MLIST:[oss-security] 20100211 Re: CVE request - kernel: futex: Handle user space corruption gracefully	CVE-2010-0622 CVE-2010-0623
MLIST:[oss-security] 20100212 CVE Request: KDE screensaver unlock issue similar to GNOME one	CVE-2010-0923
MLIST:[oss-security] 20100212 CVE Request: gnome-screensaver termination by pressing "Enter"	CVE-2010-0732
MLIST:[oss-security] 20100212 Re: CVE Request: KDE screensaver unlock issue similar to GNOME one	CVE-2010-0923
MLIST:[oss-security] 20100212 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one	CVE-2010-0923
MLIST:[oss-security] 20100212 Re: gnome-screensaver vulnerability (CVE-2010-0414)	CVE-2010-0422
MLIST:[oss-security] 20100215 CVE Request -- MoinMoin -- 1.8.7	CVE-2010-0667 CVE-2010-0668 CVE-2010-0669 CVE-2010-0717
MLIST:[oss-security] 20100215 Re: CVE Request -- MoinMoin -- 1.8.7	CVE-2010-0667 CVE-2010-0668 CVE-2010-0669
MLIST:[oss-security] 20100217 CVE request: kernel information leak via userspace USB interface	CVE-2010-1083
MLIST:[oss-security] 20100217 Re: Re: CVE Request: KDE screensaver unlock issue similar to GNOME one	CVE-2010-0923
MLIST:[oss-security] 20100217 additional memory leak in USB userspace handling	CVE-2010-1083
MLIST:[oss-security] 20100218 Re: CVE request: kernel information leak via userspace USB interface	CVE-2010-1083
MLIST:[oss-security] 20100219 Re: CVE request: kernel information leak via userspace USB interface	CVE-2010-1083
MLIST:[oss-security] 20100219 Re: additional memory leak in USB userspace handling	CVE-2010-1083
MLIST:[oss-security] 20100221 Re: CVE Request -- MoinMoin -- 1.8.7	CVE-2010-0667 CVE-2010-0668 CVE-2010-0669
MLIST:[oss-security] 20100222 CVE request: kernel: ALSA: hda-intel: Avoid divide by zero crash	CVE-2010-1085
MLIST:[oss-security] 20100222 CVE-2005-4886 assigned to old remote oops	CVE-2005-4886
MLIST:[oss-security] 20100223 CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set	CVE-2010-0427
MLIST:[oss-security] 20100224 CVE request: kernel: NFS DoS related to "automount" symlinks	CVE-2010-1088
MLIST:[oss-security] 20100224 Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set	CVE-2010-0427
MLIST:[oss-security] 20100224 kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)	CVE-2010-1451
MLIST:[oss-security] 20100301 CVE request: kernel: dvb-core: ULE decapsulation DoS	CVE-2010-1086
MLIST:[oss-security] 20100303 CVE Request: libesmtp does not check NULL bytes in commonName	CVE-2010-1192 CVE-2010-1194
MLIST:[oss-security] 20100303 CVE request: kernel: NFS: Fix an Oops when truncating a file	CVE-2010-1087
MLIST:[oss-security] 20100303 OpenSSL (with KRB5) remote crash - CVE-2010-0433	CVE-2010-0433
MLIST:[oss-security] 20100304 Re: CVE request - kernel: ip6_dst_lookup_tail() NULL pointer dereference	CVE-2010-0437
MLIST:[oss-security] 20100304 kernel: hvc_console: Fix race between hvc_close and hvc_remove	CVE-2010-2653
MLIST:[oss-security] 20100305 Re: CVE Request: gnome-screensaver termination by pressing "Enter"	CVE-2010-0732
MLIST:[oss-security] 20100305 Re: Samba symlink 0day flaw	CVE-2010-0926
MLIST:[oss-security] 20100309 CVE Request: postgresql integer overflow in hash table size calculation	CVE-2010-0733
MLIST:[oss-security] 20100309 Re: CVE Request -- cURL/libCURL 7.20.0	CVE-2010-0734
MLIST:[oss-security] 20100309 Re: CVE Request: libesmtp does not check NULL bytes in commonName	CVE-2010-1192 CVE-2010-1194
MLIST:[oss-security] 20100310 CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header	CVE-2010-0745
MLIST:[oss-security] 20100310 CVE Request -- aMSN -- improper SSL certificate validation (MITM)	CVE-2010-0744
MLIST:[oss-security] 20100310 CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input	CVE-2010-0736
MLIST:[oss-security] 20100312 CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS	CVE-2010-0969
MLIST:[oss-security] 20100312 CVE-2010-0397: NULL pointer dereference in PHP's xmlrpc extension	CVE-2010-0397
MLIST:[oss-security] 20100312 CVE-2010-0727 kernel: gfs/gfs2 locking code DoS flaw	CVE-2010-0727
MLIST:[oss-security] 20100312 CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach()	CVE-2010-0729
MLIST:[oss-security] 20100316 Re: CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS	CVE-2010-0969
MLIST:[oss-security] 20100316 Re: CVE Request -- cURL/libCURL 7.20.0	CVE-2010-0734
MLIST:[oss-security] 20100316 Re: CVE Request: ViewVC 1.1.4 / 1.0.10 -- XSS via user-provided query form input	CVE-2010-0736
MLIST:[oss-security] 20100316 Re: CVE Request: postgresql integer overflow in hash table size calculation	CVE-2010-0733
MLIST:[oss-security] 20100316 Re: Re: CVE Request: gnome-screensaver termination by pressing "Enter"	CVE-2010-0732
MLIST:[oss-security] 20100317 CVE-2009-4271 kernel: 32bit process on 64bit system DoS	CVE-2009-4271
MLIST:[oss-security] 20100317 CVE-2010-0008 kernel: sctp remote denial of service	CVE-2010-0008
MLIST:[oss-security] 20100323 CVE request: kernel: bluetooth: potential bad memory access with sysfs files	CVE-2010-1084
MLIST:[oss-security] 20100329 CVE request: kernel: ipv6: skb is unexpectedly freed (remote DoS)	CVE-2010-1188
MLIST:[oss-security] 20100329 CVE-2010-0741 qemu: Improper handling of erroneous data provided by Linux virtio-net driver	CVE-2010-0741
MLIST:[oss-security] 20100330 CVE request: kernel: tipc: Fix oops on send prior to entering networked mode	CVE-2010-1187
MLIST:[oss-security] 20100331 Re: CVE request: kernel: tipc: Fix oops on send prior to entering networked mode	CVE-2010-1187
MLIST:[oss-security] 20100331 iscsitarget/scsi-target-tuils format string CVE assignment	CVE-2010-0743
MLIST:[oss-security] 20100401 CVE Request: policykit (minor)	CVE-2010-0750
MLIST:[oss-security] 20100401 Re: CVE Request -- Dovecot v1.2.11 -- DoS (excessive CPU use) by processing email with huge header	CVE-2010-0745
MLIST:[oss-security] 20100401 Re: CVE Request -- aMSN -- improper SSL certificate validation (MITM)	CVE-2010-0744
MLIST:[oss-security] 20100401 Re: CVE Request: policykit (minor)	CVE-2010-0750
MLIST:[oss-security] 20100402 RE: CVE Request -- Zabbix v1.8.2 and v.1.6.9	CVE-2009-4498
MLIST:[oss-security] 20100403 CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message	CVE-2010-1147
MLIST:[oss-security] 20100405 CVE request: kernel: cifs: cifs_create() NULL pointer dereference	CVE-2010-1148
MLIST:[oss-security] 20100405 Re: CVE request: kernel: cifs: cifs_create() NULL pointer dereference	CVE-2010-1148
MLIST:[oss-security] 20100406 CVE Request: MediaWiki 1.15.3 -- Login CSRF	CVE-2010-1150
MLIST:[oss-security] 20100406 ClamAV small issues	CVE-2010-0098
MLIST:[oss-security] 20100406 Re: CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message	CVE-2010-1147
MLIST:[oss-security] 20100407 Re: CVE Request: MediaWiki 1.15.3 -- Login CSRF	CVE-2010-1150
MLIST:[oss-security] 20100407 Re: ClamAV small issues	CVE-2010-0098
MLIST:[oss-security] 20100408 CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities	CVE-2010-3441
MLIST:[oss-security] 20100408 CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605)	CVE-2010-1158
MLIST:[oss-security] 20100408 CVE request -- memcached	CVE-2010-1152
MLIST:[oss-security] 20100408 Re: CVE Request -- Abcm2ps v5.9.12 -- multiple unspecified vulnerabilities	CVE-2010-3441
MLIST:[oss-security] 20100408 Re: CVE request -- memcached	CVE-2010-1152
MLIST:[oss-security] 20100410 CVE request: typo3 remote command execution	CVE-2010-1153
MLIST:[oss-security] 20100411 CVE request: irssi 0.8.15	CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100412 Re: CVE request: irssi 0.8.15	CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100412 Re: CVE request: typo3 remote command execution	CVE-2010-1153
MLIST:[oss-security] 20100413 Re: CVE request: irssi 0.8.15	CVE-2010-1155 CVE-2010-1156
MLIST:[oss-security] 20100414 CVE request: GNU nano (minor)	CVE-2010-1160 CVE-2010-1161
MLIST:[oss-security] 20100414 Couple of kernel issues	CVE-2010-1162 CVE-2010-1488
MLIST:[oss-security] 20100414 Re: CVE Request -- perl v5.8.* -- stack overflow by processing certain regex (Gentoo BTS#313565 / RH BZ#580605)	CVE-2010-1158
MLIST:[oss-security] 20100414 Re: Couple of kernel issues	CVE-2010-1162
MLIST:[oss-security] 20100415 CVE request: kernel: tty: release_one_tty() forgets to put pids	CVE-2010-1162
MLIST:[oss-security] 20100415 Re: CVE request: kernel: tty: release_one_tty() forgets to put pids	CVE-2010-1162
MLIST:[oss-security] 20100416 CVE Request: JIRA Issues	CVE-2010-1164 CVE-2010-1165
MLIST:[oss-security] 20100416 Re: CVE Request: JIRA Issues	CVE-2010-1164 CVE-2010-1165
MLIST:[oss-security] 20100417 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove	CVE-2010-2653
MLIST:[oss-security] 20100419 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove	CVE-2010-2653
MLIST:[oss-security] 20100427 CVE request - gfs2 kernel issue	CVE-2010-1436
MLIST:[oss-security] 20100427 CVE request - kernel: find_keyring_by_name() can gain the freed keyring	CVE-2010-1437
MLIST:[oss-security] 20100427 Re: CVE request - gfs2 kernel issue	CVE-2010-1436
MLIST:[oss-security] 20100427 Re: CVE request - kernel: find_keyring_by_name() can gain the freed keyring	CVE-2010-1437
MLIST:[oss-security] 20100427 Re: wafp insecure temporary directory	CVE-2010-1438
MLIST:[oss-security] 20100427 wafp insecure temporary directory	CVE-2010-1438
MLIST:[oss-security] 20100429 CVE request - Linux Kernel KGDB/ppc issue	CVE-2010-1446
MLIST:[oss-security] 20100429 CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors	CVE-2010-1173
MLIST:[oss-security] 20100429 Re: CVE request - Linux Kernel KGDB/ppc issue	CVE-2010-1446
MLIST:[oss-security] 20100429 Re: CVE-2010-1173 kernel: skb_over_panic resulting from multiple invalid parameter errors	CVE-2010-1173
MLIST:[oss-security] 20100430 Re: CVE request - Linux Kernel KGDB/ppc issue	CVE-2010-1446
MLIST:[oss-security] 20100503 CVE request: lxr	CVE-2010-1448
MLIST:[oss-security] 20100503 Re: CVE request: lxr	CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100505 CVE Request - Piwik 0.5.5 - XSS vulnerability	CVE-2010-1453
MLIST:[oss-security] 20100505 Re: CVE Request - Piwik 0.5.5 - XSS vulnerability	CVE-2010-1453
MLIST:[oss-security] 20100505 Re: CVE Request [was Re: kernel: execution possible in non-executable mappings in recent 2.6 kernels (SPARC only)]	CVE-2010-1451
MLIST:[oss-security] 20100506 Re: CVE request: lxr	CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100507 CVE Assignment (gnustep)	CVE-2010-1457
MLIST:[oss-security] 20100507 CVE-2010-0730 xen: emulator instruction decoding inconsistency	CVE-2010-0730
MLIST:[oss-security] 20100507 Re: CVE Assignment (gnustep)	CVE-2010-1620
MLIST:[oss-security] 20100507 Re: CVE Assignment (wireshark)	CVE-2010-1455
MLIST:[oss-security] 20100510 Re: A mysql flaw.	CVE-2010-1626
MLIST:[oss-security] 20100511 Re: CVE assignment: ghostscript stack-based overflow	CVE-2010-1628
MLIST:[oss-security] 20100513 KDENetwork vulnerabilities	CVE-2010-1000 CVE-2010-1511
MLIST:[oss-security] 20100514 Re: CVE request: lxr	CVE-2010-1448 CVE-2010-1625
MLIST:[oss-security] 20100517 CVE request: phorum < 5.2.15 backend XSS	CVE-2010-1629
MLIST:[oss-security] 20100517 CVE request: phpbb 3.0.7 and before 3.0.5	CVE-2010-1627 CVE-2010-1630
MLIST:[oss-security] 20100517 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2252
MLIST:[oss-security] 20100517 [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2251 CVE-2010-2252 CVE-2010-2253
MLIST:[oss-security] 20100518 Re: A mysql flaw.	CVE-2010-1626
MLIST:[oss-security] 20100518 Re: CVE assignment: ghostscript stack-based overflow	CVE-2010-1628
MLIST:[oss-security] 20100518 Re: CVE request: phorum < 5.2.15 backend XSS	CVE-2010-1629
MLIST:[oss-security] 20100518 Re: CVE request: phpbb 3.0.7 and before 3.0.5	CVE-2010-1627 CVE-2010-1630
MLIST:[oss-security] 20100518 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2252
MLIST:[oss-security] 20100518 Re: kernel: btrfs: check for read permission on src file in the clone ioctl	CVE-2010-1636
MLIST:[oss-security] 20100518 kernel: btrfs: check for read permission on src file in the clone ioctl	CVE-2010-1636
MLIST:[oss-security] 20100519 Re: CVE request: phpbb 3.0.7 and before 3.0.5	CVE-2010-1630
MLIST:[oss-security] 20100519 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2252
MLIST:[oss-security] 20100520 CVE-2010-1974 reject request (dupe of CVE-2010-1168) and CVE-2010-1447 description modification request	CVE-2010-1168 CVE-2010-1169 CVE-2010-1170 CVE-2010-1447
MLIST:[oss-security] 20100520 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2251 CVE-2010-2252
MLIST:[oss-security] 20100521 CVE Request: off by one DoS in pe_icons.c	CVE-2010-1640
MLIST:[oss-security] 20100521 Re: [core] CVE Request for Horde and Squirrelmail	CVE-2010-1638
MLIST:[oss-security] 20100521 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2252
MLIST:[oss-security] 20100524 Re: [core] CVE Request for Horde and Squirrelmail	CVE-2010-1638
MLIST:[oss-security] 20100525 CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership	CVE-2010-1641
MLIST:[oss-security] 20100525 Re: CVE Request for Horde and Squirrelmail	CVE-2010-1637
MLIST:[oss-security] 20100525 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership	CVE-2010-1641
MLIST:[oss-security] 20100525 Re: kernel: btrfs: check for read permission on src file in the clone ioctl	CVE-2010-1636
MLIST:[oss-security] 20100526 CVE request - kernel: nfsd: fix vm overcommit crash	CVE-2010-1643
MLIST:[oss-security] 20100526 Re: CVE request - kernel: GFS2: The setflags ioctl() doesn't check file ownership	CVE-2010-1641
MLIST:[oss-security] 20100526 Re: CVE request - kernel: nfsd: fix vm overcommit crash	CVE-2010-1643
MLIST:[oss-security] 20100527 Re: CVE request - kernel: nfsd: fix vm overcommit crash	CVE-2008-7256
MLIST:[oss-security] 20100529 Fwd: emesene preditable temporary filename	CVE-2010-2053
MLIST:[oss-security] 20100601 SFCB vulnerabilities	CVE-2010-1937 CVE-2010-2054
MLIST:[oss-security] 20100602 CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775)	CVE-2010-2059
MLIST:[oss-security] 20100602 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775)	CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100602 prewikka permission bug	CVE-2010-2058
MLIST:[oss-security] 20100603 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775)	CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100604 Re: CVE Request -- rpm -- Fails to remove the SUID/SGID bits on package upgrade (RH BZ#598775)	CVE-2010-2059 CVE-2010-2198
MLIST:[oss-security] 20100607 CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files	CVE-2010-2066
MLIST:[oss-security] 20100608 Re: jar, fastjar directory traversal vulnerabilities	CVE-2005-1080 CVE-2010-0831
MLIST:[oss-security] 20100608 jar, fastjar directory traversal vulnerabilities	CVE-2005-1080 CVE-2010-0831 CVE-2010-2322
MLIST:[oss-security] 20100609 Re: CVE request - kernel: ext4: Make sure the MOVE_EXT ioctl can't overwrite append-only files	CVE-2010-2066
MLIST:[oss-security] 20100609 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2251 CVE-2010-2252 CVE-2010-2253
MLIST:[oss-security] 20100610 CVE request for new wireshark vulnerabilities	CVE-2010-2283 CVE-2010-2284 CVE-2010-2285 CVE-2010-2286 CVE-2010-2287
MLIST:[oss-security] 20100610 CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc	CVE-2010-2444 CVE-2010-2445
MLIST:[oss-security] 20100610 Re: [oCERT-2010-001] multiple http client unexpected download filename vulnerability	CVE-2010-2251
MLIST:[oss-security] 20100611 CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own	CVE-2010-2071
MLIST:[oss-security] 20100611 CVE-2010-2070 kernel-xen: ia64-xen: unset be from the task psr	CVE-2010-2070
MLIST:[oss-security] 20100613 CVE request - pyftpd default username and password vulnerability	CVE-2010-2073
MLIST:[oss-security] 20100613 CVE request - pyftpd insecure usage of temporary directory	CVE-2010-2072
MLIST:[oss-security] 20100614 CVE Request: w3m does not check null bytes CN/subjAltName	CVE-2010-2074
MLIST:[oss-security] 20100614 Re: CVE request - kernel: btrfs: prevent users from setting ACLs on files they do not own	CVE-2010-2071
MLIST:[oss-security] 20100614 Re: CVE request: UnrealIRCd 3.2.8.1 source code contained a backdoor allowing for remote command execution	CVE-2009-4893 CVE-2010-2075
MLIST:[oss-security] 20100615 CVE Request - kernel: put_tty_queue NULL pointer deref	CVE-2009-4895
MLIST:[oss-security] 20100615 Re: CVE Request - kernel: put_tty_queue NULL pointer deref	CVE-2009-4895
MLIST:[oss-security] 20100617 CVE request - kernel: xfs swapext ioctl issue	CVE-2010-2226
MLIST:[oss-security] 20100618 Re: CVE request - kernel: xfs swapext ioctl issue	CVE-2010-2226
MLIST:[oss-security] 20100621 Re: CVE request: moodle 1.9.9/1.8.13 multiple vulnerabilities	CVE-2010-2228 CVE-2010-2229 CVE-2010-2230 CVE-2010-2231
MLIST:[oss-security] 20100621 Re: [SquirrelMail-Security] CVE Request for Horde and Squirrelmail	CVE-2010-1637
MLIST:[oss-security] 20100623 CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface	CVE-2009-4896
MLIST:[oss-security] 20100623 CVE Request: avahi DoS	CVE-2010-2244
MLIST:[oss-security] 20100623 CVE requests: LibTIFF	CVE-2010-1411 CVE-2010-2065 CVE-2010-2067 CVE-2010-2233 CVE-2010-2481 CVE-2010-2483 CVE-2010-2595 CVE-2010-2596
MLIST:[oss-security] 20100623 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface	CVE-2009-4896
MLIST:[oss-security] 20100623 kernel: l2tp: Fix oops in pppol2tp_xmit	CVE-2010-2495
MLIST:[oss-security] 20100623 kernel: thinkpad-acpi: lock down video output state access	CVE-2010-3448
MLIST:[oss-security] 20100624 Re: CVE requests: LibTIFF	CVE-2010-2443 CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100624 Re: CVE requests: maradns, freeciv, rbot, gitolite, gource, shib, kvirc	CVE-2010-2444 CVE-2010-2445
MLIST:[oss-security] 20100625 CVE request: feh	CVE-2010-2246
MLIST:[oss-security] 20100625 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface	CVE-2009-4896
MLIST:[oss-security] 20100625 Re: CVE Request: avahi DoS	CVE-2010-2244
MLIST:[oss-security] 20100626 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface	CVE-2009-4896
MLIST:[oss-security] 20100628 CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server	CVE-2010-2248
MLIST:[oss-security] 20100628 Re: CVE request - kernel: cifs: Fix a kernel BUG with remote OS/2 server	CVE-2010-2248
MLIST:[oss-security] 20100628 Re: CVE request: feh	CVE-2010-2246
MLIST:[oss-security] 20100629 CVE request: XSS in python paste	CVE-2010-2477
MLIST:[oss-security] 20100629 Re: CVE requests: LibTIFF	CVE-2010-2443 CVE-2010-2481 CVE-2010-2483
MLIST:[oss-security] 20100629 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL	CVE-2010-2478
MLIST:[oss-security] 20100629 kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL	CVE-2010-2478
MLIST:[oss-security] 20100630 Re: CVE request: XSS in python paste	CVE-2010-2477
MLIST:[oss-security] 20100630 Re: CVE requests: LibTIFF	CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100630 Re: kernel: ethtool: kernel buffer overflow in ETHTOOL_GRXCLSRLALL	CVE-2010-2478
MLIST:[oss-security] 20100630 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove	CVE-2010-2653
MLIST:[oss-security] 20100701 CVE request: moin multiple XSS	CVE-2010-2487 CVE-2010-2969 CVE-2010-2970
MLIST:[oss-security] 20100701 Re: CVE requests: LibTIFF	CVE-2010-2481 CVE-2010-2482 CVE-2010-2483
MLIST:[oss-security] 20100702 CVE Request -- Roundup: XSS by processing PageTemplate template for a named page	CVE-2010-2491
MLIST:[oss-security] 20100702 CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE	CVE-2010-2489
MLIST:[oss-security] 20100702 Re: CVE Request -- Roundup: XSS by processing PageTemplate template for a named page	CVE-2010-2491
MLIST:[oss-security] 20100702 Re: CVE Request [Microsoft Windows Ruby-v1.9.x] -- Buffer over-run leading to ACE	CVE-2010-2489
MLIST:[oss-security] 20100702 Re: CVE request: moin multiple XSS	CVE-2010-2487 CVE-2010-2969 CVE-2010-2970
MLIST:[oss-security] 20100704 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface	CVE-2009-4896
MLIST:[oss-security] 20100704 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit	CVE-2010-2495
MLIST:[oss-security] 20100704 Re: kernel: l2tp: Fix oops in pppol2tp_xmit	CVE-2010-2495
MLIST:[oss-security] 20100705 Re: Request CVE ID for bogofilter base64 decoder	CVE-2010-2494
MLIST:[oss-security] 20100705 Request CVE ID for bogofilter base64 decoder	CVE-2010-2494
MLIST:[oss-security] 20100706 CVE Request: kernel: hvc_console: Fix race between hvc_close and hvc_remove	CVE-2010-2653
MLIST:[oss-security] 20100706 REPOST: CVE request for bogofilter	CVE-2010-2494
MLIST:[oss-security] 20100706 Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface	CVE-2009-4896
MLIST:[oss-security] 20100706 Re: CVE Request: kernel: l2tp: Fix oops in pppol2tp_xmit	CVE-2010-2495
MLIST:[oss-security] 20100706 Re: Request CVE ID for bogofilter base64 decoder	CVE-2010-2494
MLIST:[oss-security] 20100706 patch for remote buffer overflows and local message spoofing in mipv6 daemon	CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100707 CVE request - kernel: nfsd4: bug in read_buf	CVE-2010-2521
MLIST:[oss-security] 20100707 Re: kernel: hvc_console: Fix race between hvc_close and hvc_remove	CVE-2010-2653
MLIST:[oss-security] 20100707 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon	CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100708 Re: CVE request - kernel: nfsd4: bug in read_buf	CVE-2010-2521
MLIST:[oss-security] 20100708 Re: patch for remote buffer overflows and local message spoofing in mipv6 daemon	CVE-2010-2522 CVE-2010-2523
MLIST:[oss-security] 20100712 CVE request: NetSMB BSD kernel module (minor)	CVE-2010-2530
MLIST:[oss-security] 20100713 CVE request, php var_export	CVE-2010-2531
MLIST:[oss-security] 20100713 Multiple bugs in freetype	CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520
MLIST:[oss-security] 20100714 Re: Multiple bugs in freetype	CVE-2010-2497 CVE-2010-2498 CVE-2010-2499 CVE-2010-2500 CVE-2010-2519 CVE-2010-2520 CVE-2010-2527
MLIST:[oss-security] 20100715 CVE request: lxsession-logout	CVE-2010-2532
MLIST:[oss-security] 20100715 Re: CVE request: lxsession-logout	CVE-2010-2532
MLIST:[oss-security] 20100716 Re: CVE request: NetSMB BSD kernel module (minor)	CVE-2010-2530
MLIST:[oss-security] 20100716 Re: Re: CVE request, php var_export	CVE-2010-2531
MLIST:[oss-security] 20100720 CVE request for OpenTTD	CVE-2010-2534
MLIST:[oss-security] 20100720 [oCERT-2010-002] Joomla input sanitization errors (XSS)	CVE-2010-2535
MLIST:[oss-security] 20100721 CVE id request: mapserver	CVE-2010-2539 CVE-2010-2540
MLIST:[oss-security] 20100721 CVE request: git	CVE-2010-2542
MLIST:[oss-security] 20100721 CVE request: kernel: btrfs	CVE-2010-2537 CVE-2010-2538
MLIST:[oss-security] 20100721 Re: CVE id request: mapserver	CVE-2010-2539 CVE-2010-2540
MLIST:[oss-security] 20100721 Re: CVE request: kernel: btrfs	CVE-2010-2537 CVE-2010-2538
MLIST:[oss-security] 20100721 Re: Universal XSS in Rekonq	CVE-2010-2536
MLIST:[oss-security] 20100721 Re: [oCERT-2010-002] Joomla input sanitization errors (XSS)	CVE-2010-2535
MLIST:[oss-security] 20100721 Universal XSS in Rekonq	CVE-2010-2536
MLIST:[oss-security] 20100722 Cacti XSS fixes in 0.8.7g	CVE-2010-2543 CVE-2010-2544 CVE-2010-2545
MLIST:[oss-security] 20100722 Re: CVE request: git	CVE-2010-2542
MLIST:[oss-security] 20100726 CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow	CVE-2008-7258
MLIST:[oss-security] 20100726 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow	CVE-2008-7258
MLIST:[oss-security] 20100726 Re: Cacti XSS fixes in 0.8.7g	CVE-2010-2543 CVE-2010-2544 CVE-2010-2545
MLIST:[oss-security] 20100728 CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter	CVE-2010-2785
MLIST:[oss-security] 20100728 CVE Request: Piwik < 0.6.4 Arbitrary file inclusion	CVE-2010-2786
MLIST:[oss-security] 20100729 Re: CVE Request -- KVIrc -- Remote CTCP commands execution via specially-crafted CTCP parameter	CVE-2010-2785
MLIST:[oss-security] 20100729 Re: CVE Request: Piwik < 0.6.4 Arbitrary file inclusion	CVE-2010-2786
MLIST:[oss-security] 20100729 Re: CVE request: mediawiki	CVE-2010-2787 CVE-2010-2788 CVE-2010-2789
MLIST:[oss-security] 20100730 CVE-2010-2791: mod_proxy information leak affecting 2.2.9 only	CVE-2010-2791
MLIST:[oss-security] 20100801 CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates	CVE-2010-3901
MLIST:[oss-security] 20100802 CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode	CVE-2010-2800 CVE-2010-2801
MLIST:[oss-security] 20100802 CVE request: cmsmadesimple < 1.8.1	CVE-2010-2797
MLIST:[oss-security] 20100802 CVE request: kernel: gfs2: rename cases kernel panic	CVE-2010-2798
MLIST:[oss-security] 20100802 CVE-2010-2524 kernel: dns_resolver upcall security issue	CVE-2010-2524
MLIST:[oss-security] 20100802 Re: CVE Request -- OpenConnect < v2.25 did not verify SSL server certificates	CVE-2010-3901
MLIST:[oss-security] 20100802 Re: CVE Request [two ids] -- cabextract -- 1, Infinite loop in MS-ZIP and Quantum decoders (minor) 2, Integer wrap-around (crash) by processing certain *.cab files in test archive mode	CVE-2010-2800 CVE-2010-2801
MLIST:[oss-security] 20100802 Re: CVE request: cmsmadesimple < 1.8.1	CVE-2010-2797
MLIST:[oss-security] 20100802 Re: CVE request: kernel: gfs2: rename cases kernel panic	CVE-2010-2798
MLIST:[oss-security] 20100802 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow	CVE-2008-7258
MLIST:[oss-security] 20100802 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue	CVE-2010-2524
MLIST:[oss-security] 20100803 CVE 2009 request: twiki before 4.3.2 CSRF	CVE-2009-4898
MLIST:[oss-security] 20100803 CVE request: Attachment XSS in mantis < 1.2.2	CVE-2010-2802
MLIST:[oss-security] 20100803 Re: CVE 2009 request: twiki before 4.3.2 CSRF	CVE-2009-4898
MLIST:[oss-security] 20100803 Re: CVE request: Attachment XSS in mantis < 1.2.2	CVE-2010-2802
MLIST:[oss-security] 20100803 Re: CVE-2010-2524 kernel: dns_resolver upcall security issue	CVE-2010-2524
MLIST:[oss-security] 20100806 CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts	CVE-2010-2808
MLIST:[oss-security] 20100806 CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config	CVE-2010-2809
MLIST:[oss-security] 20100806 Re: CVE Request -- FreeType -- Memory corruption flaw by processing certain LWFN fonts + three more	CVE-2010-2805 CVE-2010-2806 CVE-2010-2807 CVE-2010-2808
MLIST:[oss-security] 20100806 Re: CVE request: uzbl before 2010.08.05: User-assisted execution of arbitrary commands caused by faulty default config	CVE-2010-2809
MLIST:[oss-security] 20100809 CVE Request - ZNC	CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100809 CVE request: Lynx	CVE-2010-2810
MLIST:[oss-security] 20100809 Re: CVE Request - ZNC	CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100809 Re: CVE request: Lynx	CVE-2010-2810
MLIST:[oss-security] 20100810 Re: Re: CVE Request - ZNC	CVE-2010-2812 CVE-2010-2934
MLIST:[oss-security] 20100811 CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow	CVE-2010-2935 CVE-2010-2936
MLIST:[oss-security] 20100811 Re: CVE Request -- OpenOffice.org [two ids]: 1, integer truncation error 2, short integer overflow	CVE-2010-2935 CVE-2010-2936
MLIST:[oss-security] 20100812 Re: CVE Request: openssl double free	CVE-2010-2939
MLIST:[oss-security] 20100816 CVE request - kernel: integer overflow in ext4_ext_get_blocks()	CVE-2010-3015
MLIST:[oss-security] 20100816 Minor security flaw with pam_xauth	CVE-2010-3316
MLIST:[oss-security] 20100816 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks()	CVE-2010-3015
MLIST:[oss-security] 20100817 Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks()	CVE-2010-3015
MLIST:[oss-security] 20100818 CVE request - kernel: net sched memleak	CVE-2010-2942
MLIST:[oss-security] 20100818 CVE request - kernel: xfs: stale data exposure	CVE-2010-2943
MLIST:[oss-security] 20100818 CVE request: zope-ldapuser	CVE-2010-2944
MLIST:[oss-security] 20100819 CVE Request: SLiM insecure PATH assignment	CVE-2010-2945
MLIST:[oss-security] 20100819 Re: CVE request - kernel: net sched memleak	CVE-2010-2942
MLIST:[oss-security] 20100819 Re: CVE request - kernel: xfs: stale data exposure	CVE-2010-2943
MLIST:[oss-security] 20100819 Re: CVE request: zope-ldapuser	CVE-2010-2944
MLIST:[oss-security] 20100819 Re: CVE-2008-id Request -- ssmtp -- standardise() -- Buffer overflow	CVE-2008-7258
MLIST:[oss-security] 20100820 CVE Request: heap-based buffer overflow in libHX	CVE-2010-2947
MLIST:[oss-security] 20100820 CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others	CVE-2010-2946
MLIST:[oss-security] 20100820 Re: CVE Request: SLiM insecure PATH assignment	CVE-2010-2945
MLIST:[oss-security] 20100820 Re: CVE Request: heap-based buffer overflow in libHX	CVE-2010-2947
MLIST:[oss-security] 20100820 Re: CVE request - kernel: jfs: don't allow os2 xattr namespace overlap with others	CVE-2010-2946
MLIST:[oss-security] 20100820 kernel: can: add limit for nframes and clean up signed/unsigned variables	CVE-2010-2959
MLIST:[oss-security] 20100824 CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request	CVE-2010-2948 CVE-2010-2949
MLIST:[oss-security] 20100824 CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present	CVE-2010-2951
MLIST:[oss-security] 20100825 CVE id request: libc fortify source information disclosure	CVE-2010-3192
MLIST:[oss-security] 20100825 CVE request: CouchDB insecure library loading (Debian/Ubuntu only)	CVE-2010-2953
MLIST:[oss-security] 20100825 CVE request: VLC media player - DLL preloading vulnerability	CVE-2010-3124
MLIST:[oss-security] 20100825 Re: CVE Request -- Quagga (bgpd) [two ids] -- 1, Stack buffer overflow by processing crafted Refresh-Route msgs 2, NULL ptr deref by parsing certain AS paths by BGP update request	CVE-2010-2948 CVE-2010-2949
MLIST:[oss-security] 20100825 Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present	CVE-2010-2951
MLIST:[oss-security] 20100825 Re: CVE request: VLC media player - DLL preloading vulnerability	CVE-2010-3124
MLIST:[oss-security] 20100826 Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only)	CVE-2010-2953
MLIST:[oss-security] 20100829 CVE request: serendipity < 1.5.4 xss	CVE-2010-2957
MLIST:[oss-security] 20100829 Hardening the linker (was Re: CVE request: CouchDB insecure library loading (Debian/Ubuntu only))	CVE-2010-2953
MLIST:[oss-security] 20100831 CVE-2010-2955 kernel: wireless: fix 64K kernel heap content leak via ioctl	CVE-2010-2955
MLIST:[oss-security] 20100831 Re: CVE id request: libc fortify source information disclosure	CVE-2010-3192
MLIST:[oss-security] 20100831 Re: CVE request: serendipity < 1.5.4 xss	CVE-2010-2957
MLIST:[oss-security] 20100901 CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion)	CVE-2010-2958
MLIST:[oss-security] 20100901 CVE-2010-2954 kernel: irda null ptr deref	CVE-2010-2954
MLIST:[oss-security] 20100901 Re: CVE Request -- phpMyAdmin - v3.6.6 -- XSS attack using debugging messages (CVE-2010-3056 discussion)	CVE-2010-2958
MLIST:[oss-security] 20100902 CVE-2010-2960 kernel: keyctl_session_to_parent null ptr deref	CVE-2010-2960
MLIST:[oss-security] 20100902 Re: CVE id request: libc fortify source information disclosure	CVE-2010-3192
MLIST:[oss-security] 20100903 CVE request: XSS in nusoap	CVE-2010-3070
MLIST:[oss-security] 20100905 CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials	CVE-2010-3071
MLIST:[oss-security] 20100905 CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS	CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100905 CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3)	CVE-2010-3072
MLIST:[oss-security] 20100905 CVE request: smbind Sql Injection	CVE-2010-3076
MLIST:[oss-security] 20100905 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS	CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100907 CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak	CVE-2010-3078
MLIST:[oss-security] 20100907 Re: CVE Request -- Bip -- Remote Dos (crash) by exchanging user credentials	CVE-2010-3071
MLIST:[oss-security] 20100907 Re: CVE Request -- EncFS / fuse-encfs [three ids] -- Multiple Vulnerabilities in EncFS	CVE-2010-3073 CVE-2010-3074 CVE-2010-3075
MLIST:[oss-security] 20100907 Re: CVE Request -- Squid -- Denial of service due internal error in string handling (SQUID-2010:3)	CVE-2010-3072
MLIST:[oss-security] 20100907 Re: CVE request: XSS in nusoap	CVE-2010-3070
MLIST:[oss-security] 20100907 Re: CVE request: kernel: xfs: XFS_IOC_FSGETXATTR ioctl memory leak	CVE-2010-3078
MLIST:[oss-security] 20100907 Re: CVE request: smbind Sql Injection	CVE-2010-3076
MLIST:[oss-security] 20100908 CVE-2010-3080 kernel: /dev/sequencer open failure is not handled correctly	CVE-2010-3080
MLIST:[oss-security] 20100909 CVE Assignment: django	CVE-2010-3082
MLIST:[oss-security] 20100909 CVE Request -- Python -- accept() implementation in async core is broken => more subcases	CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100909 CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL	CVE-2010-3084
MLIST:[oss-security] 20100909 CVE request: mednafen stack manipulation	CVE-2010-3085
MLIST:[oss-security] 20100910 Re: CVE Request -- Python -- accept() implementation in async core is broken => more subcases	CVE-2009-5010 CVE-2010-3492 CVE-2010-3493 CVE-2010-3494 CVE-2010-3495
MLIST:[oss-security] 20100910 Re: CVE request: kernel: niu buffer overflow for ETHTOOL_GRXCLSRLALL	CVE-2010-3084
MLIST:[oss-security] 20100910 Re: CVE request: mednafen stack manipulation	CVE-2010-3085
MLIST:[oss-security] 20100911 CVE id requests: drupal	CVE-2010-3091 CVE-2010-3092 CVE-2010-3093 CVE-2010-3094 CVE-2010-3685 CVE-2010-3686
MLIST:[oss-security] 20100913 CVE Request: mailman	CVE-2010-3089
MLIST:[oss-security] 20100913 CVE Request: pidgin-knotify remote command injection	CVE-2010-3088
MLIST:[oss-security] 20100913 Re: CVE Request: mailman	CVE-2010-3089
MLIST:[oss-security] 20100913 Re: CVE Request: pidgin-knotify remote command injection	CVE-2010-3088
MLIST:[oss-security] 20100913 Re: CVE id requests: drupal	CVE-2010-3091 CVE-2010-3092 CVE-2010-3093 CVE-2010-3094 CVE-2010-3685 CVE-2010-3686
MLIST:[oss-security] 20100914 CVE request: kernel: numerous infoleaks	CVE-2010-3296 CVE-2010-3297 CVE-2010-3298
MLIST:[oss-security] 20100914 CVE request: mantis before 1.2.3 (XSS)	CVE-2010-2574 CVE-2010-3070 CVE-2010-3303 CVE-2010-3763
MLIST:[oss-security] 20100914 CVE request: xss in pecl-apc before 3.1.4	CVE-2010-3294
MLIST:[oss-security] 20100914 Re: CVE request: kernel: numerous infoleaks	CVE-2010-3296 CVE-2010-3297 CVE-2010-3298
MLIST:[oss-security] 20100914 Re: CVE request: mantis before 1.2.3 (XSS)	CVE-2010-2574 CVE-2010-3070 CVE-2010-3303 CVE-2010-3763
MLIST:[oss-security] 20100914 Re: CVE request: xss in pecl-apc before 3.1.4	CVE-2010-3294
MLIST:[oss-security] 20100916 CVE request: weborf: directory traversal	CVE-2010-3306
MLIST:[oss-security] 20100916 CVE-2010-3081 kernel: 64-bit Compatibility Mode Stack Pointer Underflow	CVE-2010-3081
MLIST:[oss-security] 20100916 CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability	CVE-2010-3301
MLIST:[oss-security] 20100916 CVE-identifier request for Dovecot ACL security bug	CVE-2010-3304
MLIST:[oss-security] 20100916 Re: CVE request: mantis before 1.2.3 (XSS)	CVE-2010-3303
MLIST:[oss-security] 20100916 Re: CVE-2010-3301 kernel: IA32 System Call Entry Point Vulnerability	CVE-2010-3301
MLIST:[oss-security] 20100916 Re: CVE-identifier request for Dovecot ACL security bug	CVE-2010-3304
MLIST:[oss-security] 20100917 CVE request: epiphany not ch