[Secure-testing-commits] r18728 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Mar 21 21:14:42 UTC 2012 

Author: joeyh
Date: 2012-03-21 21:14:42 +0000 (Wed, 21 Mar 2012)
New Revision: 18728

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-03-21 19:02:17 UTC (rev 18727)
+++ data/CVE/list	2012-03-21 21:14:42 UTC (rev 18728)
@@ -1,3 +1,13 @@
+CVE-2012-1797 (IBM DB2 9.5 uses world-writable permissions for nodes.reg, which has ...)
+	TODO: check
+CVE-2012-1796 (Unspecified vulnerability in IBM Tivoli Monitoring Agent (ITMA), as ...)
+	TODO: check
+CVE-2012-1795 (webglimpse.cgi in Webglimpse before 2.20.0 allows remote attackers to ...)
+	TODO: check
+CVE-2012-1794
+	RESERVED
+CVE-2012-1793
+	RESERVED
 CVE-2012-1792
 	RESERVED
 CVE-2012-1791
@@ -460,6 +470,7 @@
 	RESERVED
 CVE-2012-1571 [CDF crasher bugs in file, found by CERT/CC BFF tool]
 	RESERVED
+	{DSA-2422-1}
 	- file <unfixed> (low)
 	[squeeze] - file 5.04-5+squeeze1
 CVE-2012-1570
@@ -687,96 +698,96 @@
 	NOT-FOR-US: NetMechanica NetDecision
 CVE-2012-1464 (Dashboard Server for NetMechanica NetDecision before 4.6.1 allows ...)
 	NOT-FOR-US: NetMechanica NetDecision
-CVE-2012-1463
-	RESERVED
-CVE-2012-1462
-	RESERVED
-CVE-2012-1461
-	RESERVED
-CVE-2012-1460
-	RESERVED
-CVE-2012-1459
-	RESERVED
-CVE-2012-1458
-	RESERVED
-CVE-2012-1457
-	RESERVED
-CVE-2012-1456
-	RESERVED
-CVE-2012-1455
-	RESERVED
-CVE-2012-1454
-	RESERVED
-CVE-2012-1453
-	RESERVED
-CVE-2012-1452
-	RESERVED
-CVE-2012-1451
-	RESERVED
-CVE-2012-1450
-	RESERVED
-CVE-2012-1449
-	RESERVED
-CVE-2012-1448
-	RESERVED
-CVE-2012-1447
-	RESERVED
-CVE-2012-1446
-	RESERVED
-CVE-2012-1445
-	RESERVED
-CVE-2012-1444
-	RESERVED
-CVE-2012-1443
-	RESERVED
-CVE-2012-1442
-	RESERVED
-CVE-2012-1441
-	RESERVED
-CVE-2012-1440
-	RESERVED
-CVE-2012-1439
-	RESERVED
-CVE-2012-1438
-	RESERVED
-CVE-2012-1437
-	RESERVED
-CVE-2012-1436
-	RESERVED
-CVE-2012-1435
-	RESERVED
-CVE-2012-1434
-	RESERVED
-CVE-2012-1433
-	RESERVED
-CVE-2012-1432
-	RESERVED
-CVE-2012-1431
-	RESERVED
-CVE-2012-1430
-	RESERVED
-CVE-2012-1429
-	RESERVED
-CVE-2012-1428
-	RESERVED
-CVE-2012-1427
-	RESERVED
-CVE-2012-1426
-	RESERVED
-CVE-2012-1425
-	RESERVED
-CVE-2012-1424
-	RESERVED
-CVE-2012-1423
-	RESERVED
-CVE-2012-1422
-	RESERVED
-CVE-2012-1421
-	RESERVED
-CVE-2012-1420
-	RESERVED
-CVE-2012-1419
-	RESERVED
+CVE-2012-1463 (The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, ...)
+	TODO: check
+CVE-2012-1462 (The ZIP file parser in AhnLab V3 Internet Security 2011.01.18.00, AVG ...)
+	TODO: check
+CVE-2012-1461 (The Gzip file parser in AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, ...)
+	TODO: check
+CVE-2012-1460 (The Gzip file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka ...)
+	TODO: check
+CVE-2012-1459 (The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, ...)
+	TODO: check
+CVE-2012-1458 (The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus ...)
+	TODO: check
+CVE-2012-1457 (The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK ...)
+	TODO: check
+CVE-2012-1456 (The TAR file parser in AVG Anti-Virus 10.0.0.1190, Quick Heal (aka Cat ...)
+	TODO: check
+CVE-2012-1455 (The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus ...)
+	TODO: check
+CVE-2012-1454 (The ELF file parser in Dr.Web 5.0.2.03300, eSafe 7.0.17.0, McAfee ...)
+	TODO: check
+CVE-2012-1453 (The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall ...)
+	TODO: check
+CVE-2012-1452 (The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Ikarus Virus ...)
+	TODO: check
+CVE-2012-1451 (The CAB file parser in Emsisoft Anti-Malware 5.1.0.1 and Ikarus Virus ...)
+	TODO: check
+CVE-2012-1450 (The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Sophos ...)
+	TODO: check
+CVE-2012-1449 (The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus ...)
+	TODO: check
+CVE-2012-1448 (The CAB file parser in Quick Heal (aka Cat QuickHeal) 11.00, Trend ...)
+	TODO: check
+CVE-2012-1447 (The ELF file parser in Fortinet Antivirus 4.2.254.0, eSafe 7.0.17.0, ...)
+	TODO: check
+CVE-2012-1446 (The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee ...)
+	TODO: check
+CVE-2012-1445 (The ELF file parser in eSafe 7.0.17.0, Rising Antivirus 22.83.00.03, ...)
+	TODO: check
+CVE-2012-1444 (The ELF file parser in eSafe 7.0.17.0, Prevx 3.0, Fortinet Antivirus ...)
+	TODO: check
+CVE-2012-1443 (The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, ...)
+	TODO: check
+CVE-2012-1442 (The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee ...)
+	TODO: check
+CVE-2012-1441 (The Microsoft EXE file parser in eSafe 7.0.17.0 and Prevx 3.0 allows ...)
+	TODO: check
+CVE-2012-1440 (The ELF file parser in Norman Antivirus 6.06.12, eSafe 7.0.17.0, CA ...)
+	TODO: check
+CVE-2012-1439 (The ELF file parser in eSafe 7.0.17.0, Rising Antivirus 22.83.00.03, ...)
+	TODO: check
+CVE-2012-1438 (The Microsoft Office file parser in Comodo Antivirus 7425 and Sophos ...)
+	TODO: check
+CVE-2012-1437 (The Microsoft Office file parser in Comodo Antivirus 7425 allows ...)
+	TODO: check
+CVE-2012-1436 (The Microsoft EXE file parser in AhnLab V3 Internet Security ...)
+	TODO: check
+CVE-2012-1435 (The Microsoft EXE file parser in AhnLab V3 Internet Security ...)
+	TODO: check
+CVE-2012-1434 (The Microsoft EXE file parser in AhnLab V3 Internet Security ...)
+	TODO: check
+CVE-2012-1433 (The Microsoft EXE file parser in AhnLab V3 Internet Security ...)
+	TODO: check
+CVE-2012-1432 (The Microsoft EXE file parser in Emsisoft Anti-Malware 5.1.0.1, eSafe ...)
+	TODO: check
+CVE-2012-1431 (The ELF file parser in Bitdefender 7.2, Command Antivirus 5.2.11.5, ...)
+	TODO: check
+CVE-2012-1430 (The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, eSafe ...)
+	TODO: check
+CVE-2012-1429 (The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, ...)
+	TODO: check
+CVE-2012-1428 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Norman ...)
+	TODO: check
+CVE-2012-1427 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Norman ...)
+	TODO: check
+CVE-2012-1426 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command ...)
+	TODO: check
+CVE-2012-1425 (The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK ...)
+	TODO: check
+CVE-2012-1424 (The TAR file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat ...)
+	TODO: check
+CVE-2012-1423 (The TAR file parser in Command Antivirus 5.2.11.5, Emsisoft ...)
+	TODO: check
+CVE-2012-1422 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, NOD32 ...)
+	TODO: check
+CVE-2012-1421 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Norman ...)
+	TODO: check
+CVE-2012-1420 (The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command ...)
+	TODO: check
+CVE-2012-1419 (The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat ...)
+	TODO: check
 CVE-2012-1418 (Multiple unspecified vulnerabilities in Google Chrome before ...)
 	TODO: check
 CVE-2012-1417
@@ -2491,14 +2502,14 @@
 	RESERVED
 CVE-2012-0713
 	RESERVED
-CVE-2012-0712
-	RESERVED
-CVE-2012-0711
-	RESERVED
-CVE-2012-0710
-	RESERVED
-CVE-2012-0709
-	RESERVED
+CVE-2012-0712 (The XML feature in IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 ...)
+	TODO: check
+CVE-2012-0711 (Integer signedness error in the db2dasrrm process in the DB2 ...)
+	TODO: check
+CVE-2012-0710 (IBM DB2 9.1 before FP11, 9.5 before FP9, 9.7 before FP5, and 9.8 ...)
+	TODO: check
+CVE-2012-0709 (IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 does not ...)
+	TODO: check
 CVE-2012-0708
 	RESERVED
 CVE-2012-0707 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Lombardi ...)
@@ -3085,7 +3096,7 @@
 	- iceape 2.7.3-1
 	[squeeze] - iceape <not-affected> (Vulnerable code not present)
 CVE-2012-0461 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
@@ -3104,7 +3115,7 @@
 	- iceape 2.7.3-1
 	[squeeze] - iceape <not-affected> (Vulnerable code not present)
 CVE-2012-0458 (Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
@@ -3116,12 +3127,12 @@
 	- iceape 2.7.3-1
 	[squeeze] - iceape <not-affected> (Vulnerable code not present)
 CVE-2012-0456 (The SVG Filters implementation in Mozilla Firefox before 3.6.28 and ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
 CVE-2012-0455 (Mozilla Firefox before 3.6.28 and 4.x through 10.0, Firefox ESR 10.x ...)
-	{DSA-2433-1}
+	{DSA-2437-1 DSA-2433-1}
 	- icedove <unfixed>
 	- iceweasel 10.0.3esr-1
 	- iceape 2.7.3-1
@@ -3282,20 +3293,15 @@
 	RESERVED
 CVE-2012-0404 (Cross-site scripting (XSS) vulnerability in EMC Documentum eRoom ...)
 	NOT-FOR-US: EMC Documentum eRoom
-CVE-2012-0403
-	RESERVED
+CVE-2012-0403 (Directory traversal vulnerability in EMC RSA enVision 4.x before 4.1 ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0402
-	RESERVED
+CVE-2012-0402 (EMC RSA enVision 4.x before 4.1 Patch 4 uses unspecified hardcoded ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0401
-	RESERVED
+CVE-2012-0401 (Multiple SQL injection vulnerabilities in EMC RSA enVision 4.x before ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0400
-	RESERVED
+CVE-2012-0400 (EMC RSA enVision 4.x before 4.1 Patch 4 does not properly restrict the ...)
 	NOT-FOR-US: EMC RSA enVision
-CVE-2012-0399
-	RESERVED
+CVE-2012-0399 (Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA ...)
 	NOT-FOR-US: EMC RSA enVision
 CVE-2012-0398 (EMC Documentum eRoom before 7.4.4 does not properly validate session ...)
 	NOT-FOR-US: EMC Documentum eRoom

More information about the Secure-testing-commits mailing list