[Secure-testing-commits] r20530 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Wed Nov 21 21:14:38 UTC 2012
Author: joeyh
Date: 2012-11-21 21:14:38 +0000 (Wed, 21 Nov 2012)
New Revision: 20530
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-11-21 14:09:12 UTC (rev 20529)
+++ data/CVE/list 2012-11-21 21:14:38 UTC (rev 20530)
@@ -1,3 +1,33 @@
+CVE-2012-5935
+ RESERVED
+CVE-2012-5934
+ RESERVED
+CVE-2012-5933
+ RESERVED
+CVE-2012-5932
+ RESERVED
+CVE-2012-5931
+ RESERVED
+CVE-2012-5930
+ RESERVED
+CVE-2012-5929
+ RESERVED
+CVE-2012-5928
+ RESERVED
+CVE-2012-5927
+ RESERVED
+CVE-2012-5926
+ RESERVED
+CVE-2012-5925
+ RESERVED
+CVE-2012-5924
+ RESERVED
+CVE-2012-5923
+ RESERVED
+CVE-2012-5922
+ RESERVED
+CVE-2012-5921
+ RESERVED
CVE-2012-5920 (Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) ...)
- gwt <unfixed> (bug #691900)
[squeeze] - gwt <not-affected> (Vulnerable code not present)
@@ -166,53 +196,43 @@
RESERVED
CVE-2012-5844
RESERVED
-CVE-2012-5843
- RESERVED
+CVE-2012-5843 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-5842
- RESERVED
+CVE-2012-5842 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-5841
- RESERVED
+CVE-2012-5841 (Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-5840
- RESERVED
+CVE-2012-5840 (Use-after-free vulnerability in the nsTextEditorState::PrepareEditor ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-5839
- RESERVED
+CVE-2012-5839 (Heap-based buffer overflow in the ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-5838
- RESERVED
+CVE-2012-5838 (The copyTexImage2D implementation in the WebGL subsystem in Mozilla ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-5837
- RESERVED
+CVE-2012-5837 (The Web Developer Toolbar in Mozilla Firefox before 17.0 executes ...)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-5836
- RESERVED
+CVE-2012-5836 (Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-5835
- RESERVED
+CVE-2012-5835 (Integer overflow in the WebGL subsystem in Mozilla Firefox before ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
CVE-2012-5834
RESERVED
-CVE-2012-5833
- RESERVED
+CVE-2012-5833 (The texImage2D implementation in the WebGL subsystem in Mozilla ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
@@ -220,13 +240,11 @@
RESERVED
CVE-2012-5831
RESERVED
-CVE-2012-5830
- RESERVED
+CVE-2012-5830 (Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-5829
- RESERVED
+CVE-2012-5829 (Heap-based buffer overflow in the nsWindow::OnExposeEvent function in ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
@@ -1062,16 +1080,13 @@
- keystone <not-affected> (Debian packaging enforces correct permissions)
CVE-2012-5482 (The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex ...)
- glance 2012.1.1-3 (bug #692641)
-CVE-2012-5481
- RESERVED
+CVE-2012-5481 (Moodle 2.3.x before 2.3.3 allows remote authenticated users to bypass ...)
- moodle <not-affected> (Doesn't affect 1.9 or 2.2)
-CVE-2012-5480
- RESERVED
+CVE-2012-5480 (The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x ...)
- moodle 2.2.3.dfsg-2.6
[wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
[squeeze] - moodle <not-affected> (Doesn't affect 1.9)
-CVE-2012-5479
- RESERVED
+CVE-2012-5479 (The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 2.2.6, ...)
- moodle 2.2.3.dfsg-2.6
[wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
[squeeze] - moodle <not-affected> (Doesn't affect 1.9)
@@ -1090,18 +1105,15 @@
CVE-2012-5474
RESERVED
- horizon 2012.1.1-7
-CVE-2012-5473
- RESERVED
+CVE-2012-5473 (The Database activity module in Moodle 2.1.x before 2.1.9, 2.2.x ...)
- moodle 2.2.3.dfsg-2.6
[wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
[squeeze] - moodle <not-affected> (Doesn't affect 1.9)
-CVE-2012-5472
- RESERVED
+CVE-2012-5472 (lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 2.3.3 ...)
- moodle 2.2.3.dfsg-2.6
[wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
[squeeze] - moodle <not-affected> (Doesn't affect 1.9)
-CVE-2012-5471
- RESERVED
+CVE-2012-5471 (The Dropbox Repository File Picker in Moodle 2.1.x before 2.1.9, 2.2.x ...)
- moodle 2.2.3.dfsg-2.6
[wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
[squeeze] - moodle <not-affected> (Doesn't affect 1.9)
@@ -3551,12 +3563,16 @@
- gwt <unfixed> (bug #691900)
[squeeze] - gwt <not-affected> (Vulnerable code not present)
CVE-2012-4562
+ RESERVED
- libssh 0.5.3-1
CVE-2012-4561
+ RESERVED
- libssh 0.5.3-1
CVE-2012-4560
+ RESERVED
- libssh 0.5.3-1
CVE-2012-4559
+ RESERVED
- libssh 0.5.3-1
CVE-2012-4558
RESERVED
@@ -4459,84 +4475,67 @@
CVE-2012-4219 (show_config_errors.php in phpMyAdmin 3.5.x before 3.5.2.1 allows ...)
- phpmyadmin <unfixed> (unimportant)
NOTE: Path disclosure irrelevant in Debian
-CVE-2012-4218
- RESERVED
+CVE-2012-4218 (Use-after-free vulnerability in the ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-4217
- RESERVED
+CVE-2012-4217 (Use-after-free vulnerability in the ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-4216
- RESERVED
+CVE-2012-4216 (Use-after-free vulnerability in the gfxFont::GetFontEntry function in ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-4215
- RESERVED
+CVE-2012-4215 (Use-after-free vulnerability in the ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-4214
- RESERVED
+CVE-2012-4214 (Use-after-free vulnerability in the nsTextEditorState::PrepareEditor ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-4213
- RESERVED
+CVE-2012-4213 (Use-after-free vulnerability in the nsEditor::FindNextLeafNode ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-4212
- RESERVED
+CVE-2012-4212 (Use-after-free vulnerability in the XPCWrappedNative::Mark function in ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
CVE-2012-4211
RESERVED
-CVE-2012-4210
- RESERVED
+CVE-2012-4210 (The Style Inspector in Mozilla Firefox before 17.0 and Firefox ESR ...)
- iceweasel 10.0.11esr-1
-CVE-2012-4209
- RESERVED
+CVE-2012-4209 (Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-4208
- RESERVED
+CVE-2012-4208 (The XrayWrapper implementation in Mozilla Firefox before 17.0, ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-4207
- RESERVED
+CVE-2012-4207 (The HZ-GB-2312 character-set implementation in Mozilla Firefox before ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-4206
- RESERVED
+CVE-2012-4206 (Untrusted search path vulnerability in the installer in Mozilla ...)
- iceweasel <not-affected> (Windows-specific)
-CVE-2012-4205
- RESERVED
+CVE-2012-4205 (Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-4204
- RESERVED
+CVE-2012-4204 (The str_unescape function in the JavaScript engine in Mozilla Firefox ...)
- iceape <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
- icedove <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-4203
- RESERVED
+CVE-2012-4203 (The New Tab page in Mozilla Firefox before 17.0 uses a privileged ...)
- iceweasel <not-affected> (Doesn't affect the ESR series, only releases from experimental)
-CVE-2012-4202
- RESERVED
+CVE-2012-4202 (Heap-based buffer overflow in the image::RasterImage::DrawFrameTo ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
-CVE-2012-4201
- RESERVED
+CVE-2012-4201 (The evalInSandbox implementation in Mozilla Firefox before 17.0, ...)
- iceweasel 10.0.11esr-1
- icedove <unfixed>
- iceape <unfixed>
@@ -13164,6 +13163,7 @@
RESERVED
CVE-2012-0698
RESERVED
+ {DSA-2576-1}
- trousers <unfixed> (bug #692649)
CVE-2011-5066 (The SibRaRecoverableSiXaResource class in the Default Messaging ...)
NOT-FOR-US: WebSphere
More information about the Secure-testing-commits
mailing list