[Secure-testing-commits] r20355 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Mon Oct 15 21:14:25 UTC 2012
Author: joeyh
Date: 2012-10-15 21:14:25 +0000 (Mon, 15 Oct 2012)
New Revision: 20355
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-10-15 19:15:13 UTC (rev 20354)
+++ data/CVE/list 2012-10-15 21:14:25 UTC (rev 20355)
@@ -1,3 +1,7 @@
+CVE-2012-5388
+ RESERVED
+CVE-2012-5387
+ RESERVED
CVE-2012-5386 (Directory traversal vulnerability in index.php in phpPaleo 4.8b180 ...)
NOT-FOR-US: phpPaleo
CVE-2012-5385 (install/index.php in Craig Knudsen WebCalendar before 1.2.5 allows ...)
@@ -159,7 +163,8 @@
NOT-FOR-US: Snitz Forums
CVE-2012-5312 (SQL injection vulnerability in Tribiq CMS allows remote attackers to ...)
NOT-FOR-US: Tribiq CMS
-CVE-2012-5311 (Buffer overflow in the VSFlex7.VSFlexGrid ActiveX control in ...)
+CVE-2012-5311
+ REJECTED
NOT-FOR-US: VSFlex7.VSFlexGrid
CVE-2012-5310 (SQL injection vulnerability in the WP e-Commerce plugin before 3.8.7.6 ...)
NOT-FOR-US: WP e-Commerce plugin
@@ -13330,8 +13335,8 @@
NOT-FOR-US: GE Intelligent Platforms Proficy Historian
CVE-2012-0228 (Invensys Wonderware Information Server 4.0 SP1 and 4.5 does not ...)
NOT-FOR-US: Invensys Wonderware Information Server
-CVE-2012-0227
- RESERVED
+CVE-2012-0227 (Buffer overflow in the VSFlex7.VSFlexGrid ActiveX control in ...)
+ TODO: check
CVE-2012-0226 (SQL injection vulnerability in Invensys Wonderware Information Server ...)
NOT-FOR-US: Invensys Wonderware Information Server
CVE-2012-0225 (Cross-site scripting (XSS) vulnerability in Invensys Wonderware ...)
More information about the Secure-testing-commits
mailing list