[Secure-testing-commits] r20661 - data/CVE

Joey Hess joeyh at alioth.debian.org
Thu Dec 13 21:14:21 UTC 2012 

Author: joeyh
Date: 2012-12-13 21:14:20 +0000 (Thu, 13 Dec 2012)
New Revision: 20661

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-13 10:43:34 UTC (rev 20660)
+++ data/CVE/list	2012-12-13 21:14:20 UTC (rev 20661)
@@ -1,3 +1,7 @@
+CVE-2012-6333 (Multiple HVM control operations in Xen 3.4 through 4.2 allow local HVM ...)
+	TODO: check
+CVE-2012-6332
+	RESERVED
 CVE-2012-XXXX [thttpd: Local DoS vulnerability]
 	- thttpd <removed> (low)
 	NOTE: http://www.openwall.com/lists/oss-security/2012/12/12/1
@@ -1697,8 +1701,8 @@
 	RESERVED
 CVE-2012-5967
 	RESERVED
-CVE-2012-5966
-	RESERVED
+CVE-2012-5966 (The restricted telnet shell on the D-Link DSL2730U router allows ...)
+	TODO: check
 CVE-2012-5965
 	RESERVED
 CVE-2012-5964
@@ -2361,10 +2365,10 @@
 	RESERVED
 CVE-2012-5681
 	RESERVED
-CVE-2012-5680
-	RESERVED
-CVE-2012-5679
-	RESERVED
+CVE-2012-5680 (Buffer overflow in Adobe Photoshop Camera Raw before 7.3 allows ...)
+	TODO: check
+CVE-2012-5679 (Buffer underflow in Adobe Photoshop Camera Raw before 7.3 allows ...)
+	TODO: check
 CVE-2012-5678 (Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on ...)
 	NOT-FOR-US: Adobe Flash
 CVE-2012-5677 (Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x ...)
@@ -2808,8 +2812,7 @@
 	NOTE: http://cpansearch.perl.org/src/MARKSTOS/CGI.pm-3.63/Changes
 	NOTE: https://github.com/markstos/CGI.pm/pull/23
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=877015
-CVE-2012-5525
-	RESERVED
+CVE-2012-5525 (The get_page_from_gfn hypercall function in Xen 4.2 allows local PV ...)
 	- xen <not-affected> (Only affects Xen 4.2 and xen-unstable)
 CVE-2012-5524
 	RESERVED
@@ -2838,27 +2841,21 @@
 CVE-2012-5516
 	RESERVED
 	NOT-FOR-US: Red Hat Enterprise Virtualisation Manager
-CVE-2012-5515
-	RESERVED
+CVE-2012-5515 (The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and ...)
 	{DSA-2582-1}
 	- xen 4.1.3-5
-CVE-2012-5514
-	RESERVED
+CVE-2012-5514 (The guest_physmap_mark_populate_on_demand function in Xen 4.2 and ...)
 	{DSA-2582-1}
 	- xen 4.1.3-6
-CVE-2012-5513
-	RESERVED
+CVE-2012-5513 (The XENMEM_exchange handler in Xen 4.2 and earlier does not properly ...)
 	{DSA-2582-1}
 	- xen 4.1.3-5
-CVE-2012-5512
-	RESERVED
+CVE-2012-5512 (Array index error in the HVMOP_set_mem_access handler in Xen 4.1 ...)
 	- xen 4.1.3-5
 	[squeeze] - xen <not-affected> (Only affects Xen 4.1)
-CVE-2012-5511
-	RESERVED
+CVE-2012-5511 (Stack-based buffer overflow in the dirty video RAM tracking ...)
 	- xen 4.1.3-5
-CVE-2012-5510
-	RESERVED
+CVE-2012-5510 (Xen 4.x, when downgrading the grant table version, does not properly ...)
 	{DSA-2582-1}
 	- xen 4.1.3-5
 CVE-2012-5509
@@ -4063,8 +4060,8 @@
 	NOT-FOR-US: RivetTracker
 CVE-2012-4992 (Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote ...)
 	NOT-FOR-US: FlashFXP
-CVE-2012-4991
-	RESERVED
+CVE-2012-4991 (Multiple directory traversal vulnerabilities in Axway SecureTransport ...)
+	TODO: check
 CVE-2012-4990 (SQL injection vulnerability in admin/campaign-zone-link.php in OpenX ...)
 	NOT-FOR-US: OpenX
 CVE-2012-4989 (Cross-site scripting (XSS) vulnerability in admin/plugin-index.php in ...)
@@ -8800,10 +8797,10 @@
 	RESERVED
 CVE-2012-3278
 	RESERVED
-CVE-2012-3277
-	RESERVED
-CVE-2012-3276
-	RESERVED
+CVE-2012-3277 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, ...)
+	TODO: check
+CVE-2012-3276 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, ...)
+	TODO: check
 CVE-2012-3275 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.1x and ...)
 	NOT-FOR-US: HP Network Node Manager
 CVE-2012-3274 (Stack-based buffer overflow in uam.exe in the User Access Manager ...)
@@ -22521,8 +22518,7 @@
 	NOT-FOR-US: TIBCO Spotfire Server
 CVE-2011-3132 (Cross-site scripting (XSS) vulnerability in TIBCO Spotfire Server ...)
 	NOT-FOR-US: TIBCO Spotfire Server
-CVE-2011-3131
-	RESERVED
+CVE-2011-3131 (Xen 4.1.1 and earlier allows local guest OS kernels with control of a ...)
 	{DSA-2582-1}
 	- xen 4.1.2-1
 CVE-2011-3130 (wp-includes/taxonomy.php in WordPress 3.1 before 3.1.3 and 3.2 before ...)

More information about the Secure-testing-commits mailing list