[Secure-testing-commits] r19304 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed May 23 21:14:26 UTC 2012 

Author: joeyh
Date: 2012-05-23 21:14:26 +0000 (Wed, 23 May 2012)
New Revision: 19304

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-05-23 19:25:23 UTC (rev 19303)
+++ data/CVE/list	2012-05-23 21:14:26 UTC (rev 19304)
@@ -1,3 +1,9 @@
+CVE-2012-2928 (The Gliffy plugin before 3.7.1 for Atlassian JIRA, and before 4.2 for ...)
+	TODO: check
+CVE-2012-2927 (The TM Software Tempo plugin before 6.4.3.1, 6.5.x before 6.5.0.2, and ...)
+	TODO: check
+CVE-2012-2926 (Atlassian JIRA before 5.0.1; Confluence before 3.5.16, 4.0 before ...)
+	TODO: check
 CVE-2012-2925 (SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 ...)
 	TODO: check
 CVE-2012-2924 (PHP remote file inclusion vulnerability in admin/setup.inc.php in ...)
@@ -331,8 +337,8 @@
 CVE-2012-2760
 	RESERVED
 	- libapache2-mod-auth-openid <unfixed> (bug #674165)
-CVE-2012-2759
-	RESERVED
+CVE-2012-2759 (Cross-site scripting (XSS) vulnerability in login-with-ajax.php in the ...)
+	TODO: check
 CVE-2012-2758
 	RESERVED
 CVE-2012-2757
@@ -719,8 +725,8 @@
 	RESERVED
 CVE-2012-2568
 	RESERVED
-CVE-2012-2567
-	RESERVED
+CVE-2012-2567 (The Xelex MobileTrack application 2.3.7 and earlier for Android uses ...)
+	TODO: check
 CVE-2012-2566
 	RESERVED
 CVE-2012-2565
@@ -729,8 +735,8 @@
 	RESERVED
 CVE-2012-2563
 	RESERVED
-CVE-2012-2562
-	RESERVED
+CVE-2012-2562 (The Xelex MobileTrack application 2.3.7 and earlier for Android does ...)
+	TODO: check
 CVE-2012-2561 (HP Business Service Management (BSM) 9.12 does not properly restrict ...)
 	TODO: check
 CVE-2012-2560
@@ -1376,6 +1382,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2012/05/10/5
 	NOTE: http://www.openwall.com/lists/oss-security/2012/05/11/1
 CVE-2012-2337 (sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does ...)
+	{DSA-2478-1}
 	- sudo <unfixed> (bug #673766)
 CVE-2012-2336 (sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when ...)
 	- php5 5.4.3 (unimportant)
@@ -2265,8 +2272,8 @@
 	NOT-FOR-US: CMD Made Simple
 CVE-2012-1991
 	RESERVED
-CVE-2012-1990
-	RESERVED
+CVE-2012-1990 (Multiple cross-site scripting (XSS) vulnerabilities in Schneider ...)
+	TODO: check
 CVE-2012-1989
 	RESERVED
 	- puppet 2.7.13-1
@@ -13038,6 +13045,7 @@
 CVE-2011-3103
 	RESERVED
 CVE-2011-3102 (Off-by-one error in libxml2, as used in Google Chrome before ...)
+	{DSA-2479-1}
 	- libxml2 <unfixed>
 	NOTE: http://git.gnome.org/browse/libxml2/commit/?id=d8e1faeaa99c7a7c07af01c1c72de352eb590a3e
 CVE-2011-3101 (Google Chrome before 19.0.1084.46 on Linux does not properly mitigate ...)

More information about the Secure-testing-commits mailing list