[Secure-testing-commits] r18536 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Fri Feb 24 21:14:42 UTC 2012
Author: joeyh
Date: 2012-02-24 21:14:42 +0000 (Fri, 24 Feb 2012)
New Revision: 18536
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-02-24 16:40:14 UTC (rev 18535)
+++ data/CVE/list 2012-02-24 21:14:42 UTC (rev 18536)
@@ -1,4 +1,19 @@
+CVE-2012-1296
+ RESERVED
+CVE-2012-1295
+ RESERVED
+CVE-2012-1294 (SQL injection vulnerability in CONTIMEX Impulsio CMS allows remote ...)
+ TODO: check
+CVE-2012-1292 (Unspecified vulnerability in the MessagingSystem servlet in SAP ...)
+ TODO: check
+CVE-2012-1291 (Unspecified vulnerability in the ...)
+ TODO: check
+CVE-2012-1290 (Cross-site scripting (XSS) vulnerability in b2b/auction/container.jsp ...)
+ TODO: check
+CVE-2012-1289 (Multiple directory traversal vulnerabilities in SAP NetWeaver 7.0 ...)
+ TODO: check
CVE-2012-1293 [F*X XSS via from/to parameters in fup]
+ RESERVED
{DSA-2414-1}
- fex 20120215-1 (low; bug #660621)
CVE-2012-1288 (The UTC Fire & Security GE-MC100-NTP/GPS-ZB Master Clock device uses ...)
@@ -901,8 +916,8 @@
[lenny] - systemtap <not-affected> (Vulnerable code not present)
CVE-2012-0874
RESERVED
-CVE-2012-0873
- RESERVED
+CVE-2012-0873 (Multiple cross-site scripting (XSS) vulnerabilities in Boonex Dolphin ...)
+ TODO: check
CVE-2012-0872
RESERVED
CVE-2012-0871
@@ -1024,8 +1039,7 @@
RESERVED
- gnusound <removed> (low; bug #654270)
[squeeze] - gnusound <no-dsa> (Minor issue)
-CVE-2012-0823
- RESERVED
+CVE-2012-0823 (VP8 Codec SDK (libvpx) before 1.0.0 "Duclair" allows remote attackers ...)
- libvpx 1.0.0-1
[squeeze] - libvpx <not-affected> (Introduced in 0.9.7)
NOTE: http://blog.webmproject.org/2012/01/vp8-codec-sdk-duclair-released.html
More information about the Secure-testing-commits
mailing list