[Secure-testing-commits] r18778 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2012-03-28 21:15:17 +0000 (Wed, 28 Mar 2012)
New Revision: 18778

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-03-28 18:54:48 UTC (rev 18777)
+++ data/CVE/list	2012-03-28 21:15:17 UTC (rev 18778)
@@ -1,3 +1,37 @@
+CVE-2012-1931 (Opera before 11.62 on UNIX, when used in conjunction with an ...)
+	TODO: check
+CVE-2012-1930 (Opera before 11.62 on UNIX uses world-readable permissions for ...)
+	TODO: check
+CVE-2012-1929 (Opera before 11.62 on Mac OS X allows remote attackers to spoof the ...)
+	TODO: check
+CVE-2012-1928 (Opera before 11.62 allows remote attackers to spoof the address field ...)
+	TODO: check
+CVE-2012-1927 (Opera before 11.62 allows remote attackers to spoof the address field ...)
+	TODO: check
+CVE-2012-1926 (Opera before 11.62 allows remote attackers to bypass the Same Origin ...)
+	TODO: check
+CVE-2012-1925 (Opera before 11.62 does not ensure that a dialog window is placed on ...)
+	TODO: check
+CVE-2012-1924 (Opera before 11.62 allows user-assisted remote attackers to trick ...)
+	TODO: check
+CVE-2012-1923
+	RESERVED
+CVE-2012-1922
+	RESERVED
+CVE-2012-1921
+	RESERVED
+CVE-2012-1920 (@Mail WebMail Client in AtMail Open-Source 1.04 and earlier allows ...)
+	TODO: check
+CVE-2012-1919 (CRLF injection vulnerability in mime.php in @Mail WebMail Client in ...)
+	TODO: check
+CVE-2012-1918 (Multiple directory traversal vulnerabilities in (1) compose.php and ...)
+	TODO: check
+CVE-2012-1917 (compose.php in @Mail WebMail Client in AtMail Open-Source before 1.05 ...)
+	TODO: check
+CVE-2012-1916 (@Mail WebMail Client in AtMail Open-Source before 1.05 allows remote ...)
+	TODO: check
+CVE-2007-6752 (** DISPUTED ** Cross-site request forgery (CSRF) vulnerability in ...)
+	TODO: check
 CVE-2012-1915
 	RESERVED
 CVE-2012-1914
@@ -3,5 +37,5 @@
 	RESERVED
 CVE-2012-1913
-	RESERVED
+	REJECTED
 CVE-2012-1912
 	RESERVED
@@ -14,14 +48,14 @@
 	RESERVED
 CVE-2012-1908
 	RESERVED
-CVE-2012-1907
-	RESERVED
+CVE-2012-1907 (The scanner engine in PrivaWall Antivirus 5.6 and earlier does not ...)
+	TODO: check
 CVE-2012-1906
 	RESERVED
 CVE-2012-1905
 	RESERVED
-CVE-2012-1904
-	RESERVED
+CVE-2012-1904 (mp4fformat.dll in the QuickTime File Format plugin in RealNetworks ...)
+	TODO: check
 CVE-2012-1903
 	RESERVED
 CVE-2012-1902 [phpmyadmin path disclosure]
@@ -715,8 +749,7 @@
 	{DSA-2422-1}
 	- file <unfixed> (low)
 	[squeeze] - file 5.04-5+squeeze1
-CVE-2012-1570
-	RESERVED
+CVE-2012-1570 (The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 ...)
 	- maradns <unfixed> (bug #665012)
 CVE-2012-1569 (The asn1_get_length_der function in decoding.c in GNU Libtasn1 before ...)
 	{DSA-2440-1}
@@ -4855,10 +4888,10 @@
 	RESERVED
 CVE-2012-0127
 	RESERVED
-CVE-2012-0126
-	RESERVED
-CVE-2012-0125
-	RESERVED
+CVE-2012-0126 (Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.11 ...)
+	TODO: check
+CVE-2012-0125 (Unspecified vulnerability in the WBEM implementation in HP HP-UX 11.31 ...)
+	TODO: check
 CVE-2012-0124 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...)
 	NOT-FOR-US: HP Data Protector Express
 CVE-2012-0123 (Unspecified vulnerability in HP Data Protector Express (aka DPX) ...)