[Secure-testing-commits] r18785 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2012-03-29 21:15:16 +0000 (Thu, 29 Mar 2012)
New Revision: 18785

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-03-29 20:42:28 UTC (rev 18784)
+++ data/CVE/list	2012-03-29 21:15:16 UTC (rev 18785)
@@ -1,3 +1,15 @@
+CVE-2012-1936
+	RESERVED
+CVE-2012-1935
+	RESERVED
+CVE-2012-1934
+	RESERVED
+CVE-2012-1933
+	RESERVED
+CVE-2012-1932
+	RESERVED
+CVE-2007-6753 (Untrusted search path vulnerability in Shell32.dll in Microsoft ...)
+	TODO: check
 CVE-2012-1931 (Opera before 11.62 on UNIX, when used in conjunction with an ...)
 	TODO: check
 CVE-2012-1930 (Opera before 11.62 on UNIX uses world-readable permissions for ...)
@@ -1269,18 +1281,18 @@
 	RESERVED
 CVE-2012-1316
 	RESERVED
-CVE-2012-1315
-	RESERVED
-CVE-2012-1314
-	RESERVED
+CVE-2012-1315 (Memory leak in the SIP inspection feature in the Zone-Based Firewall ...)
+	TODO: check
+CVE-2012-1314 (The WAAS Express feature in Cisco IOS 15.1 and 15.2 allows remote ...)
+	TODO: check
 CVE-2012-1313
 	RESERVED
-CVE-2012-1312
-	RESERVED
-CVE-2012-1311
-	RESERVED
-CVE-2012-1310
-	RESERVED
+CVE-2012-1312 (The MACE feature in Cisco IOS 15.1 and 15.2 allows remote attackers to ...)
+	TODO: check
+CVE-2012-1311 (The RSVP feature in Cisco IOS 15.0 and 15.1 and IOS XE 3.2.xS through ...)
+	TODO: check
+CVE-2012-1310 (Memory leak in the Zone-Based Firewall in Cisco IOS 12.4, 15.0, 15.1, ...)
+	TODO: check
 CVE-2012-1309
 	RESERVED
 CVE-2012-1308
@@ -2669,10 +2681,10 @@
 	RESERVED
 CVE-2012-0774
 	RESERVED
-CVE-2012-0773
-	RESERVED
-CVE-2012-0772
-	RESERVED
+CVE-2012-0773 (The NetStream class in Adobe Flash Player before 10.3.183.18 and 11.x ...)
+	TODO: check
+CVE-2012-0772 (An unspecified ActiveX control in Adobe Flash Player before ...)
+	TODO: check
 CVE-2012-0771
 	RESERVED
 CVE-2012-0770 (Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash values for ...)
@@ -3625,22 +3637,22 @@
 	- gnutls26 <not-affected> (lacks DTLS support and is not affected)
 CVE-2012-0389 (Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in ...)
 	NOT-FOR-US: MailEnable Professional
-CVE-2012-0388
-	RESERVED
-CVE-2012-0387
-	RESERVED
-CVE-2012-0386
-	RESERVED
-CVE-2012-0385
-	RESERVED
-CVE-2012-0384
-	RESERVED
-CVE-2012-0383
-	RESERVED
-CVE-2012-0382
-	RESERVED
-CVE-2012-0381
-	RESERVED
+CVE-2012-0388 (Memory leak in the H.323 inspection feature in the Zone-Based Firewall ...)
+	TODO: check
+CVE-2012-0387 (Memory leak in the HTTP Inspection Engine feature in the Zone-Based ...)
+	TODO: check
+CVE-2012-0386 (The SSHv2 implementation in Cisco IOS 12.2, 12.4, 15.0, 15.1, and 15.2 ...)
+	TODO: check
+CVE-2012-0385 (The Smart Install feature in Cisco IOS 12.2, 15.0, 15.1, and 15.2 ...)
+	TODO: check
+CVE-2012-0384 (Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 and IOS XE 2.1.x ...)
+	TODO: check
+CVE-2012-0383 (Memory leak in the NAT feature in Cisco IOS 12.4, 15.0, and 15.1 ...)
+	TODO: check
+CVE-2012-0382 (The Multicast Source Discovery Protocol (MSDP) implementation in Cisco ...)
+	TODO: check
+CVE-2012-0381 (The IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 ...)
+	TODO: check
 CVE-2012-0380
 	RESERVED
 CVE-2012-0379
@@ -126040,9 +126052,9 @@
 	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-0116 (Palm OS 3.5h and possibly other versions, as used in Handspring Visor ...)
 	NOT-FOR-US: Data pre-dating the Security Tracker
-CVE-2002-0114 (Legato NetWorker 6.1 stores passwords in plaintext in the daemon.log ...)
+CVE-2002-0114 (EMC NetWorker (formerly Legato NetWorker) before 7.0 stores passwords ...)
 	NOT-FOR-US: Data pre-dating the Security Tracker
-CVE-2002-0113 (Legato NetWorker 6.1 stores log files in the /nsr/logs/ directory with ...)
+CVE-2002-0113 (EMC NetWorker (formerly Legato NetWorker) before 7.0 stores log files ...)
 	NOT-FOR-US: Data pre-dating the Security Tracker
 CVE-2002-0112 (Etype Eserv 2.97 allows remote attackers to view password protected ...)
 	NOT-FOR-US: Data pre-dating the Security Tracker