[Secure-testing-commits] r20661 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Thu Dec 13 21:14:21 UTC 2012
Author: joeyh
Date: 2012-12-13 21:14:20 +0000 (Thu, 13 Dec 2012)
New Revision: 20661
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-12-13 10:43:34 UTC (rev 20660)
+++ data/CVE/list 2012-12-13 21:14:20 UTC (rev 20661)
@@ -1,3 +1,7 @@
+CVE-2012-6333 (Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM ...)
+ TODO: check
+CVE-2012-6332
+ RESERVED
CVE-2012-XXXX [thttpd: Local DoS vulnerability]
- thttpd <removed> (low)
NOTE: http://www.openwall.com/lists/oss-security/2012/12/12/1
@@ -1697,8 +1701,8 @@
RESERVED
CVE-2012-5967
RESERVED
-CVE-2012-5966
- RESERVED
+CVE-2012-5966 (The restricted telnet shell on the D-Link DSL2730U router allows ...)
+ TODO: check
CVE-2012-5965
RESERVED
CVE-2012-5964
@@ -2361,10 +2365,10 @@
RESERVED
CVE-2012-5681
RESERVED
-CVE-2012-5680
- RESERVED
-CVE-2012-5679
- RESERVED
+CVE-2012-5680 (Buffer overflow in Adobe Photoshop Camera Raw before 7.3 allows ...)
+ TODO: check
+CVE-2012-5679 (Buffer underflow in Adobe Photoshop Camera Raw before 7.3 allows ...)
+ TODO: check
CVE-2012-5678 (Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on ...)
NOT-FOR-US: Adobe Flash
CVE-2012-5677 (Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x ...)
@@ -2808,8 +2812,7 @@
NOTE: http://cpansearch.perl.org/src/MARKSTOS/CGI.pm-3.63/Changes
NOTE: https://github.com/markstos/CGI.pm/pull/23
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=877015
-CVE-2012-5525
- RESERVED
+CVE-2012-5525 (The get_page_from_gfn hypercall function in Xen 4.2 allows local PV ...)
- xen <not-affected> (Only affects Xen 4.2 and xen-unstable)
CVE-2012-5524
RESERVED
@@ -2838,27 +2841,21 @@
CVE-2012-5516
RESERVED
NOT-FOR-US: Red Hat Enterprise Virtualisation Manager
-CVE-2012-5515
- RESERVED
+CVE-2012-5515 (The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and ...)
{DSA-2582-1}
- xen 4.1.3-5
-CVE-2012-5514
- RESERVED
+CVE-2012-5514 (The guest_physmap_mark_populate_on_demand function in Xen 4.2 and ...)
{DSA-2582-1}
- xen 4.1.3-6
-CVE-2012-5513
- RESERVED
+CVE-2012-5513 (The XENMEM_exchange handler in Xen 4.2 and earlier does not properly ...)
{DSA-2582-1}
- xen 4.1.3-5
-CVE-2012-5512
- RESERVED
+CVE-2012-5512 (Array index error in the HVMOP_set_mem_access handler in Xen 4.1 ...)
- xen 4.1.3-5
[squeeze] - xen <not-affected> (Only affects Xen 4.1)
-CVE-2012-5511
- RESERVED
+CVE-2012-5511 (Stack-based buffer overflow in the dirty video RAM tracking ...)
- xen 4.1.3-5
-CVE-2012-5510
- RESERVED
+CVE-2012-5510 (Xen 4.x, when downgrading the grant table version, does not properly ...)
{DSA-2582-1}
- xen 4.1.3-5
CVE-2012-5509
@@ -4063,8 +4060,8 @@
NOT-FOR-US: RivetTracker
CVE-2012-4992 (Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote ...)
NOT-FOR-US: FlashFXP
-CVE-2012-4991
- RESERVED
+CVE-2012-4991 (Multiple directory traversal vulnerabilities in Axway SecureTransport ...)
+ TODO: check
CVE-2012-4990 (SQL injection vulnerability in admin/campaign-zone-link.php in OpenX ...)
NOT-FOR-US: OpenX
CVE-2012-4989 (Cross-site scripting (XSS) vulnerability in admin/plugin-index.php in ...)
@@ -8800,10 +8797,10 @@
RESERVED
CVE-2012-3278
RESERVED
-CVE-2012-3277
- RESERVED
-CVE-2012-3276
- RESERVED
+CVE-2012-3277 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, ...)
+ TODO: check
+CVE-2012-3276 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, ...)
+ TODO: check
CVE-2012-3275 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.1x and ...)
NOT-FOR-US: HP Network Node Manager
CVE-2012-3274 (Stack-based buffer overflow in uam.exe in the User Access Manager ...)
@@ -22521,8 +22518,7 @@
NOT-FOR-US: TIBCO Spotfire Server
CVE-2011-3132 (Cross-site scripting (XSS) vulnerability in TIBCO Spotfire Server ...)
NOT-FOR-US: TIBCO Spotfire Server
-CVE-2011-3131
- RESERVED
+CVE-2011-3131 (Xen 4.1.1 and earlier allows local guest OS kernels with control of a ...)
{DSA-2582-1}
- xen 4.1.2-1
CVE-2011-3130 (wp-includes/taxonomy.php in WordPress 3.1 before 3.1.3 and 3.2 before ...)
More information about the Secure-testing-commits
mailing list