[Secure-testing-commits] r20467 - data/CVE

Joey Hess joeyh at alioth.debian.org
Thu Nov 8 21:14:20 UTC 2012 

Author: joeyh
Date: 2012-11-08 21:14:20 +0000 (Thu, 08 Nov 2012)
New Revision: 20467

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-11-08 20:51:32 UTC (rev 20466)
+++ data/CVE/list	2012-11-08 21:14:20 UTC (rev 20467)
@@ -921,8 +921,8 @@
 	RESERVED
 CVE-2012-5425
 	RESERVED
-CVE-2012-5424
-	RESERVED
+CVE-2012-5424 (Cisco Secure Access Control System (ACS) 5.x before 5.2 Patch 11 and ...)
+	TODO: check
 CVE-2012-5423
 	RESERVED
 CVE-2012-5422
@@ -1496,8 +1496,8 @@
 	RESERVED
 CVE-2012-5172
 	RESERVED
-CVE-2012-5171
-	RESERVED
+CVE-2012-5171 (Directory traversal vulnerability in Be Graph BeZIP before 3.10 allows ...)
+	TODO: check
 CVE-2012-5170 (Open redirect vulnerability in Pebble before 2.6.4 allows remote ...)
 	NOT-FOR-US: Pebble blog
 CVE-2012-5169 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
@@ -4667,14 +4667,14 @@
 	- squashfs-tools <unfixed> (low; bug #683371)
 	[squeeze] - squashfs-tools <no-dsa> (Minor issue)
 	[wheezy] - squashfs-tools <no-dsa> (Minor issue)
-CVE-2012-4023
-	RESERVED
-CVE-2012-4022
-	RESERVED
-CVE-2012-4021
-	RESERVED
-CVE-2012-4020
-	RESERVED
+CVE-2012-4023 (CRLF injection vulnerability in Pebble before 2.6.4 allows remote ...)
+	TODO: check
+CVE-2012-4022 (Pebble before 2.6.4 allows remote attackers to trigger loss of ...)
+	TODO: check
+CVE-2012-4021 (MosP kintai kanri before 4.1.0 does not properly perform ...)
+	TODO: check
+CVE-2012-4020 (MosP kintai kanri before 4.1.0 does not enforce privilege ...)
+	TODO: check
 CVE-2012-4019 (Cross-site scripting (XSS) vulnerability in tokyo_bbs.cgi in Come on ...)
 	NOT-FOR-US: Come on Girls Interface (CGI) Tokyo BBS
 CVE-2012-4018 (Cross-site scripting (XSS) vulnerability in Final Beta Laboratory ...)
@@ -6509,8 +6509,8 @@
 	RESERVED
 CVE-2012-3316
 	RESERVED
-CVE-2012-3315
-	RESERVED
+CVE-2012-3315 (The Java servlets in the management console in IBM Tivoli Federated ...)
+	TODO: check
 CVE-2012-3314 (IBM Tivoli Federated Identity Manager (TFIM) and Tivoli Federated ...)
 	NOT-FOR-US: IBM Tivoli
 CVE-2012-3313 (Cross-site scripting (XSS) vulnerability in IBM Maximo Asset ...)
@@ -6601,10 +6601,10 @@
 	RESERVED
 CVE-2012-3271
 	RESERVED
-CVE-2012-3270
-	RESERVED
-CVE-2012-3269
-	RESERVED
+CVE-2012-3270 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
+	TODO: check
+CVE-2012-3269 (Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and ...)
+	TODO: check
 CVE-2012-3268
 	RESERVED
 CVE-2012-3267 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.20 ...)

More information about the Secure-testing-commits mailing list