[Secure-testing-commits] r20385 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Oct 22 21:16:06 UTC 2012 

Author: joeyh
Date: 2012-10-22 21:16:05 +0000 (Mon, 22 Oct 2012)
New Revision: 20385

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-10-22 10:18:12 UTC (rev 20384)
+++ data/CVE/list	2012-10-22 21:16:05 UTC (rev 20385)
@@ -214,7 +214,7 @@
 CVE-2012-XXXX [ssmpt doesn't validate server TLS certificates]
 	- ssmtp <unfixed> (unimportant; bug #662960)
 	NOTE: http://www.openwall.com/lists/oss-security/2012/10/10/6
-CVE-2012-5353 (Eduserv allows remote attackers to forge messages and bypass ...)
+CVE-2012-5353 (Eduserv OpenAthens SP 2.0 for Java allows remote attackers to forge ...)
 	NOT-FOR-US: Eduserv
 CVE-2012-5352 (Java Open Single Sign-On Project Home (JOSSO) allows remote attackers ...)
 	NOT-FOR-US: josso
@@ -1156,8 +1156,8 @@
 	RESERVED
 CVE-2012-4934
 	RESERVED
-CVE-2012-4933
-	RESERVED
+CVE-2012-4933 (The rtrlet web application in the Web Console in Novell ZENworks Asset ...)
+	TODO: check
 CVE-2012-4932
 	RESERVED
 CVE-2012-4931
@@ -1380,8 +1380,8 @@
 	RESERVED
 CVE-2012-4846
 	RESERVED
-CVE-2012-4845
-	RESERVED
+CVE-2012-4845 (The FTP client in AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does ...)
+	TODO: check
 CVE-2012-4844
 	RESERVED
 CVE-2012-4843
@@ -1418,8 +1418,8 @@
 	RESERVED
 CVE-2012-4827
 	RESERVED
-CVE-2012-4826
-	RESERVED
+CVE-2012-4826 (Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored ...)
+	TODO: check
 CVE-2012-4825 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
 	NOT-FOR-US: Lotus Notes
 CVE-2012-4824 (Open redirect vulnerability in servlet/traveler in IBM Lotus Notes ...)
@@ -6230,10 +6230,10 @@
 	NOT-FOR-US: SMC SMC8024L2 switch
 CVE-2012-2973
 	RESERVED
-CVE-2012-2972
-	RESERVED
-CVE-2012-2971
-	RESERVED
+CVE-2012-2972 (The (1) server and (2) agent components in CA ARCserve Backup r12.5, ...)
+	TODO: check
+CVE-2012-2971 (The server in CA ARCserve Backup r12.5, r15, and r16 on Windows does ...)
+	TODO: check
 CVE-2012-2970 (The Synel SY-780/A Time & Attendance terminal allows remote attackers ...)
 	NOT-FOR-US: Synel terminal
 CVE-2012-2969 (Caucho Quercus, as distributed in Resin before 4.0.29, allows remote ...)
@@ -8305,8 +8305,8 @@
 	NOT-FOR-US: IBM Rational ClearQuest
 CVE-2012-2168 (IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3 ...)
 	NOT-FOR-US: IBM Rational ClearQuest
-CVE-2012-2167
-	RESERVED
+CVE-2012-2167 (The IBM XIV Storage System Gen3 before 11.1.0.a allows remote ...)
+	TODO: check
 CVE-2012-2166
 	RESERVED
 CVE-2012-2165 (IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3, ...)

More information about the Secure-testing-commits mailing list