[Secure-testing-commits] r18399 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Tue Feb 7 21:14:24 UTC 2012
Author: joeyh
Date: 2012-02-07 21:14:24 +0000 (Tue, 07 Feb 2012)
New Revision: 18399
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-02-07 12:51:24 UTC (rev 18398)
+++ data/CVE/list 2012-02-07 21:14:24 UTC (rev 18399)
@@ -1,7 +1,19 @@
+CVE-2012-1009
+ RESERVED
+CVE-2012-1008
+ RESERVED
+CVE-2012-1007 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts ...)
+ TODO: check
+CVE-2012-1006 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts ...)
+ TODO: check
+CVE-2012-1005
+ RESERVED
+CVE-2012-1004
+ RESERVED
CVE-2010-XXXX [pam_shield default configuration does not take any action]
- pam-shield <unfixed> (medium; bug #658830)
-CVE-2012-1003
- RESERVED
+CVE-2012-1003 (Multiple integer overflows in Opera 11.60 and earlier allow remote ...)
+ TODO: check
CVE-2002-2483
- linux-2.6 2.4.20
CVE-2012-1002
@@ -368,8 +380,7 @@
RESERVED
CVE-2012-0831
RESERVED
-CVE-2012-0830
- RESERVED
+CVE-2012-0830 (The php_register_variable_ex function in php_variables.c in PHP 5.3.9 ...)
{DSA-2403-1}
- php5 5.3.10-1
NOTE: http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/
@@ -1373,8 +1384,8 @@
RESERVED
CVE-2012-0397
RESERVED
-CVE-2012-0396
- RESERVED
+CVE-2012-0396 (EMC Documentum xPlore 1.0, 1.1 before P07, and 1.2 does not properly ...)
+ TODO: check
CVE-2012-0395 (Buffer overflow in the server in EMC NetWorker 7.5.x and 7.6.x before ...)
TODO: check
CVE-2012-0394 (** DISPUTED ** The DebuggingInterceptor component in Apache Struts ...)
@@ -1599,8 +1610,8 @@
RESERVED
CVE-2012-0291
RESERVED
-CVE-2012-0290
- RESERVED
+CVE-2012-0290 (Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite ...)
+ TODO: check
CVE-2012-0289
RESERVED
CVE-2011-5052 (Stack-based buffer overflow in CoCSoft Stream Down 6.8.0 allows remote ...)
@@ -2433,8 +2444,8 @@
RESERVED
CVE-2012-0195
RESERVED
-CVE-2012-0194
- RESERVED
+CVE-2012-0194 (The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large ...)
+ TODO: check
CVE-2012-0193 (IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.43, 6.1 ...)
NOT-FOR-US: IBM WebSphere Application Server
CVE-2012-0192 (Multiple integer overflows in vclmi.dll in the visual class library ...)
@@ -2828,7 +2839,7 @@
NOT-FOR-US: Scan to PDF Free (com.scan.to.pdf.trial) application
CVE-2011-4770 (The QIWI Wallet (ru.mw) application before 1.14.2 for Android does not ...)
NOT-FOR-US: QIWI Wallet (ru.mw) application
-CVE-2011-4769 (The 360 MobileSafe (com.qihoo360.mobilesafe) application 2.1.0 and ...)
+CVE-2011-4769 (The 360 MobileSafe (com.qihoo360.mobilesafe) application 2.x before ...)
NOT-FOR-US: 360 MobileSafe (com.qihoo360.mobilesafe) application
CVE-2011-4768 (The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small ...)
NOT-FOR-US: Plesk
@@ -2968,7 +2979,7 @@
NOT-FOR-US: Nimbuzz (com.nimbuzz) application
CVE-2011-4701 (The CallConfirm (jp.gr.java_conf.ofnhwx.callconfirm) application 2.0.0 ...)
NOT-FOR-US: CallConfirm (jp.gr.java_conf.ofnhwx.callconfirm) application
-CVE-2011-4700 (The UberMedia UberSocial (com.twidroid) application 7.1.5 and 7.2.2 ...)
+CVE-2011-4700 (The UberMedia UberSocial (com.twidroid) application 7.x before 7.2.4 ...)
NOT-FOR-US: UberMedia UberSocial (com.twidroid) application
CVE-2011-4699 (The Ubermedia Twidroyd Legacy (com.twidroydlegacy) application 4.3.11 ...)
NOT-FOR-US: Ubermedia Twidroyd Legacy (com.twidroydlegacy) application
@@ -5090,8 +5101,8 @@
RESERVED
CVE-2011-4042
RESERVED
-CVE-2011-4041
- RESERVED
+CVE-2011-4041 (webvrpcs.exe in Advantech/BroadWin WebAccess allows remote attackers ...)
+ TODO: check
CVE-2011-4040 (Buffer overflow in MiniSmtp 3.0.11818 in NJStar Communicator allows ...)
NOT-FOR-US: NJStar Communicator
CVE-2011-4039
More information about the Secure-testing-commits
mailing list