[Secure-testing-commits] r18675 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Wed Mar 14 21:14:33 UTC 2012
Author: joeyh
Date: 2012-03-14 21:14:32 +0000 (Wed, 14 Mar 2012)
New Revision: 18675
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-03-14 17:48:50 UTC (rev 18674)
+++ data/CVE/list 2012-03-14 21:14:32 UTC (rev 18675)
@@ -1,3 +1,7 @@
+CVE-2012-1663 (Double free vulnerability in libgnutls in GnuTLS before 3.0.14 allows ...)
+ TODO: check
+CVE-2012-1662
+ RESERVED
CVE-2012-1661
RESERVED
CVE-2012-1660
@@ -365,20 +369,20 @@
RESERVED
CVE-2012-1481
RESERVED
-CVE-2012-1480
- RESERVED
-CVE-2012-1479
- RESERVED
-CVE-2012-1478
- RESERVED
-CVE-2012-1477
- RESERVED
-CVE-2012-1476
- RESERVED
-CVE-2012-1475
- RESERVED
-CVE-2012-1474
- RESERVED
+CVE-2012-1480 (Unspecified vulnerability in the Pansi SMS (com.pansi.msg) application ...)
+ TODO: check
+CVE-2012-1479 (Unspecified vulnerability in the AContact (com.movester.quickcontact) ...)
+ TODO: check
+CVE-2012-1478 (Unspecified vulnerability in the UCMobile BloveStorm (com.blovestorm) ...)
+ TODO: check
+CVE-2012-1477 (Unspecified vulnerability in the Cnectd (mci.cnectd) application 3.1.0 ...)
+ TODO: check
+CVE-2012-1476 (Unspecified vulnerability in the KKtalk (com.kkliaotian.android) ...)
+ TODO: check
+CVE-2012-1475 (Unspecified vulnerability in the YagattaTalk Messenger ...)
+ TODO: check
+CVE-2012-1474 (Unspecified vulnerability in the Youni SMS (com.snda.youni) ...)
+ TODO: check
CVE-2012-1473
RESERVED
CVE-2012-1472 (VMware vCenter Chargeback Manager (aka CBM) before 2.0.1 does not ...)
@@ -507,10 +511,10 @@
RESERVED
CVE-2012-1410 (Multiple cross-site scripting (XSS) vulnerabilities in the History ...)
TODO: check
-CVE-2012-1409
- RESERVED
-CVE-2012-1408
- RESERVED
+CVE-2012-1409 (Unspecified vulnerability in the Tiny Password ...)
+ TODO: check
+CVE-2012-1408 (Unspecified vulnerability in the App Lock (com.cc.applock) application ...)
+ TODO: check
CVE-2012-1407 (Unspecified vulnerability in the GO Message Widget ...)
TODO: check
CVE-2012-1406 (Unspecified vulnerability in the GO Bookmark Widget ...)
@@ -2064,8 +2068,8 @@
RESERVED
CVE-2012-0771
RESERVED
-CVE-2012-0770
- RESERVED
+CVE-2012-0770 (Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash values for ...)
+ TODO: check
CVE-2012-0769 (Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on ...)
TODO: check
CVE-2012-0768 (The Matrix3D component in Adobe Flash Player before 10.3.183.16 and ...)
@@ -2815,6 +2819,7 @@
- iceweasel 10.0.3esr-1
- iceape <unfixed>
CVE-2012-0454
+ RESERVED
- iceweasel <not-affected> (Only affects Firefox on Windows)
CVE-2012-0453 (Cross-site request forgery (CSRF) vulnerability in xmlrpc.cgi in ...)
- bugzilla <removed>
@@ -4199,18 +4204,18 @@
RESERVED
CVE-2012-0158
RESERVED
-CVE-2012-0157
- RESERVED
-CVE-2012-0156
- RESERVED
+CVE-2012-0157 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
+ TODO: check
+CVE-2012-0156 (DirectWrite in Microsoft Windows Vista SP2, Windows Server 2008 SP2, ...)
+ TODO: check
CVE-2012-0155 (Microsoft Internet Explorer 9 does not properly handle objects in ...)
NOT-FOR-US: Microsoft
CVE-2012-0154 (Use-after-free vulnerability in win32k.sys in the kernel-mode drivers ...)
NOT-FOR-US: Microsoft
CVE-2012-0153
RESERVED
-CVE-2012-0152
- RESERVED
+CVE-2012-0152 (The Remote Desktop Protocol (RDP) service in Microsoft Windows Server ...)
+ TODO: check
CVE-2012-0151
RESERVED
CVE-2012-0150 (Buffer overflow in msvcrt.dll in Microsoft Windows Vista SP2, Windows ...)
@@ -4265,14 +4270,14 @@
RESERVED
CVE-2012-0125
RESERVED
-CVE-2012-0124
- RESERVED
-CVE-2012-0123
- RESERVED
-CVE-2012-0122
- RESERVED
-CVE-2012-0121
- RESERVED
+CVE-2012-0124 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...)
+ TODO: check
+CVE-2012-0123 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...)
+ TODO: check
+CVE-2012-0122 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...)
+ TODO: check
+CVE-2012-0121 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...)
+ TODO: check
CVE-2011-4814 (Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr 3.1.0 ...)
- dolibarr <itp> (bug #634783)
CVE-2011-4813 (Directory traversal vulnerability in clientarea.php in ...)
@@ -5534,8 +5539,8 @@
RESERVED
CVE-2012-0017 (Cross-site scripting (XSS) vulnerability in inplview.aspx in Microsoft ...)
NOT-FOR-US: Microsoft
-CVE-2012-0016
- RESERVED
+CVE-2012-0016 (Untrusted search path vulnerability in Microsoft Expression Design; ...)
+ TODO: check
CVE-2012-0015 (Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly calculate ...)
NOT-FOR-US: Microsoft
CVE-2012-0014 (Microsoft .NET Framework 2.0 SP2, 3.5.1, and 4, and Silverlight 4 ...)
@@ -5550,20 +5555,20 @@
NOT-FOR-US: Microsoft
CVE-2012-0009 (Untrusted search path vulnerability in the Windows Object Packager ...)
NOT-FOR-US: Microsoft Windows
-CVE-2012-0008
- RESERVED
+CVE-2012-0008 (Untrusted search path vulnerability in Microsoft Visual Studio 2008 ...)
+ TODO: check
CVE-2012-0007 (The Microsoft Anti-Cross Site Scripting (AntiXSS) Library 3.x and 4.0 ...)
NOT-FOR-US: Microsoft Anti-Cross Site Scripting Library
-CVE-2012-0006
- RESERVED
+CVE-2012-0006 (The DNS server in Microsoft Windows Server 2003 SP2 and Server 2008 ...)
+ TODO: check
CVE-2012-0005 (The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 ...)
NOT-FOR-US: Microsoft Windows
CVE-2012-0004 (Unspecified vulnerability in DirectShow in DirectX in Microsoft ...)
NOT-FOR-US: DirectX
CVE-2012-0003 (Unspecified vulnerability in winmm.dll in Windows Multimedia Library ...)
NOT-FOR-US: Microsoft Windows
-CVE-2012-0002
- RESERVED
+CVE-2012-0002 (The Remote Desktop Protocol (RDP) implementation in Microsoft Windows ...)
+ TODO: check
CVE-2012-0001 (The kernel in Microsoft Windows XP SP2, Windows Server 2003 SP2, ...)
NOT-FOR-US: Microsoft Windows
CVE-2011-4436 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
More information about the Secure-testing-commits
mailing list