[Secure-testing-commits] r20626 - in data: CVE DSA

Moritz Muehlenhoff jmm at alioth.debian.org
Fri Dec 7 14:57:44 UTC 2012 

Author: jmm
Date: 2012-12-07 14:57:44 +0000 (Fri, 07 Dec 2012)
New Revision: 20626

Modified:
   data/CVE/list
   data/DSA/list
Log:
add new libssh ID to existing DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-07 14:54:05 UTC (rev 20625)
+++ data/CVE/list	2012-12-07 14:57:44 UTC (rev 20626)
@@ -2791,13 +2791,13 @@
 CVE-2012-4986
 	RESERVED
 CVE-2012-4985 (The Forescout CounterACT NAC device 6.3.4.1 does not block ARP and ...)
-	NOT-FOR-US: device
+	NOT-FOR-US: Forescout device
 CVE-2012-4984
 	RESERVED
 CVE-2012-4983 (Multiple cross-site scripting (XSS) vulnerabilities on the Forescout ...)
-	NOT-FOR-US: device
+	NOT-FOR-US: Forescout device
 CVE-2012-4982 (Open redirect vulnerability in assets/login on the Forescout ...)
-	NOT-FOR-US: device
+	NOT-FOR-US: Forescout device
 CVE-2012-4981
 	RESERVED
 CVE-2012-4980
@@ -3112,7 +3112,7 @@
 CVE-2012-4863
 	RESERVED
 CVE-2012-4862 (The Host Connect emulator in IBM Rational Developer for System z 7.1 ...)
-	NOT-FOR-US: IBM
+	NOT-FOR-US: IBM Rational
 CVE-2012-4861
 	RESERVED
 CVE-2012-4860
@@ -7411,7 +7411,7 @@
 CVE-2012-3318
 	RESERVED
 CVE-2012-3317 (IBM WebSphere Message Broker 6.1 before 6.1.0.11, 7.0 before 7.0.0.5, ...)
-	TODO: check
+	NOT-FOR-US: IBM WebSphere
 CVE-2012-3316
 	RESERVED
 CVE-2012-3315 (The Java servlets in the management console in IBM Tivoli Federated ...)
@@ -7501,9 +7501,9 @@
 CVE-2012-3274 (Stack-based buffer overflow in uam.exe in the User Access Manager ...)
 	TODO: check
 CVE-2012-3273 (Multiple unspecified vulnerabilities on the HP LaserJet Pro 400 MFP ...)
-	TODO: check
+	NOT-FOR-US: HP LaserJet
 CVE-2012-3272 (Cross-site scripting (XSS) vulnerability on the HP Color LaserJet ...)
-	TODO: check
+	NOT-FOR-US: HP LaserJet
 CVE-2012-3271 (Unspecified vulnerability on the HP Integrated Lights-Out 3 (aka iLO3) ...)
 	NOT-FOR-US: HP ILO
 CVE-2012-3270 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
@@ -48925,7 +48925,7 @@
 CVE-2009-2900
 	RESERVED
 CVE-2009-2899 (The monitor perl script in the Sybase database plug-in in SpringSource ...)
-	TODO: check
+	NOT-FOR-US: SpringSource Hyperic HQ
 CVE-2009-2898 (Cross-site scripting (XSS) vulnerability in the Alerts list feature in ...)
 	NOT-FOR-US: SpringSource Hyperic HQ
 CVE-2009-2897 (Multiple cross-site scripting (XSS) vulnerabilities in ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2012-12-07 14:54:05 UTC (rev 20625)
+++ data/DSA/list	2012-12-07 14:57:44 UTC (rev 20626)
@@ -11,7 +11,7 @@
 	{CVE-2012-2251 CVE-2012-2252}
 	[squeeze] - rssh 2.3.2-13squeeze3
 [01 Dec 2012] DSA-2577-1 libssh - several
-	{CVE-2012-4559 CVE-2012-4561 CVE-2012-4562}
+	{CVE-2012-4559 CVE-2012-4561 CVE-2012-4562 CVE-2012-6063}
 	[squeeze] - libssh 0.4.5-3+squeeze1
 [23 Nov 2012] DSA-2576-1 trousers - denial of service
 	{CVE-2012-0698}

More information about the Secure-testing-commits mailing list