[Secure-testing-commits] r20648 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2012-12-11 21:14:21 +0000 (Tue, 11 Dec 2012)
New Revision: 20648

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-11 20:19:30 UTC (rev 20647)
+++ data/CVE/list	2012-12-11 21:14:21 UTC (rev 20648)
@@ -1,3 +1,19 @@
+CVE-2012-6331
+	RESERVED
+CVE-2012-6330
+	RESERVED
+CVE-2012-6329
+	RESERVED
+CVE-2012-6328
+	RESERVED
+CVE-2012-6327
+	RESERVED
+CVE-2012-6326
+	RESERVED
+CVE-2012-6325
+	RESERVED
+CVE-2012-6324
+	RESERVED
 CVE-2013-0450
 	RESERVED
 CVE-2013-0449
@@ -718,10 +734,10 @@
 	RESERVED
 CVE-2012-6314
 	RESERVED
-CVE-2012-6313
-	RESERVED
-CVE-2012-6312
-	RESERVED
+CVE-2012-6313 (simple-gmail-login.php in the Simple Gmail Login plugin before 1.1.4 ...)
+	TODO: check
+CVE-2012-6312 (Cross-site scripting (XSS) vulnerability in the Video Lead Form plugin ...)
+	TODO: check
 CVE-2012-6311
 	RESERVED
 CVE-2012-6310
@@ -746,8 +762,8 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2012/12/10/2
 CVE-2012-6302
 	RESERVED
-CVE-2012-6301
-	RESERVED
+CVE-2012-6301 (The Browser application in Android 4.0.3 allows remote attackers to ...)
+	TODO: check
 CVE-2012-6300
 	RESERVED
 CVE-2012-6299
@@ -1664,8 +1680,8 @@
 	NOT-FOR-US: Tectia SSH
 CVE-2012-5974
 	RESERVED
-CVE-2012-5973
-	RESERVED
+CVE-2012-5973 (CA XCOM Data Transport r11.0 and r11.5 on UNIX and Linux allows remote ...)
+	TODO: check
 CVE-2012-5972
 	RESERVED
 CVE-2012-5971
@@ -1698,8 +1714,8 @@
 	RESERVED
 CVE-2012-5957
 	RESERVED
-CVE-2012-5956
-	RESERVED
+CVE-2012-5956 (Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ...)
+	TODO: check
 CVE-2012-5955
 	RESERVED
 CVE-2012-5954
@@ -2753,6 +2769,7 @@
 	- claws-mail-extra-plugins 3.8.1-2 (unimportant; bug #693391)
 	NOTE: More of a plain bug than a security vulnerability
 CVE-2012-5526 (CGI.pm module before 3.63 for Perl does not properly escape newlines ...)
+	{DSA-2587-1 DSA-2586-1}
 	- perl 5.14.2-16 (bug #693420)
 	- libcgi-pm-perl 3.61-2 (bug #693421)
 	NOTE: http://cpansearch.perl.org/src/MARKSTOS/CGI.pm-3.63/Changes
@@ -2941,6 +2958,7 @@
 	RESERVED
 CVE-2012-5468
 	RESERVED
+	{DSA-2585-1}
 	- bogofilter 1.2.2+dfsg1-2 (bug #695139)
 CVE-2012-5467
 	RESERVED
@@ -3561,6 +3579,7 @@
 	NOTE: Not exploitable according to upstream
 CVE-2012-5195 [perl: segfaults when echoing a very long string]
 	RESERVED
+	{DSA-2586-1}
 	- perl 5.14.2-14 (bug #689314)
 CVE-2012-5194
 	RESERVED
@@ -6024,8 +6043,8 @@
 	RESERVED
 CVE-2012-4350
 	RESERVED
-CVE-2012-4349
-	RESERVED
+CVE-2012-4349 (Unspecified vulnerability in Symantec Network Access Control allows ...)
+	TODO: check
 CVE-2012-4348
 	RESERVED
 CVE-2012-4347 (Multiple directory traversal vulnerabilities in Symantec Messaging ...)
@@ -13054,7 +13073,7 @@
 	{DSA-2430-1}
 	- python-pam 0.4.2-13
 CVE-2012-1501
-	RESERVED
+	REJECTED
 CVE-2012-1500
 	RESERVED
 CVE-2012-1499 (The JPEG 2000 codec (jp2.c) in OpenJPEG before 1.5 allows remote ...)
@@ -18491,7 +18510,7 @@
 CVE-2011-4434 (Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 ...)
 	NOT-FOR-US: Microsoft Windows
 CVE-2011-4433
-	RESERVED
+	REJECTED
 CVE-2011-4432 (www/include/configuration/nconfigObject/contact/DB-Func.php in ...)
 	NOT-FOR-US: Merethis Centreon
 CVE-2011-4431 (Directory traversal vulnerability in main.php in Merethis Centreon ...)