[Secure-testing-commits] r20418 - data/CVE

Mon Oct 29 21:17:10 UTC 2012

Author: joeyh
Date: 2012-10-29 21:17:10 +0000 (Mon, 29 Oct 2012)
New Revision: 20418

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-10-29 20:20:15 UTC (rev 20417)
+++ data/CVE/list	2012-10-29 21:17:10 UTC (rev 20418)
@@ -3173,8 +3173,7 @@
 	RESERVED
 CVE-2012-4448 (Cross-site request forgery (CSRF) vulnerability in wp-admin/index.php ...)
 	- wordpress <unfixed> (bug #689031)
-CVE-2012-4447 [libtiff: Heap-buffer overflow when processing a TIFF image with PixarLog Compression]
-	RESERVED
+CVE-2012-4447 (Heap-based buffer overflow in tif_pixarlog.c in LibTIFF before 4.0.3 ...)
 	{DSA-2561-1}
 	- tiff 4.0.2-4 (bug #688944)
 	- tiff3 3.9.6-9 (bug #688944)
@@ -3859,7 +3858,7 @@
 CVE-2012-4189
 	RESERVED
 CVE-2012-4188 (Heap-based buffer overflow in the Convolve3x3 function in Mozilla ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
@@ -3871,7 +3870,7 @@
 	[squeeze] - icedove <not-affected> (Vulnerable code not present)
 	[squeeze] - iceweasel <not-affected> (Vulnerable code not present)
 CVE-2012-4186 (Heap-based buffer overflow in the nsWaveReader::DecodeAudioData ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
@@ -3894,7 +3893,7 @@
 	- icedove 10.0.9-1
 	- iceape <unfixed>
 CVE-2012-4182 (Use-after-free vulnerability in the nsTextEditRules::WillInsert ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
@@ -3906,12 +3905,12 @@
 	[squeeze] - icedove <not-affected> (Vulnerable code not present)
 	[squeeze] - iceweasel <not-affected> (Vulnerable code not present)
 CVE-2012-4180 (Heap-based buffer overflow in the ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
 CVE-2012-4179 (Use-after-free vulnerability in the ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
@@ -4346,12 +4345,12 @@
 	[squeeze] - icedove <not-affected> (Vulnerable code not present)
 	[squeeze] - iceweasel <not-affected> (Vulnerable code not present)
 CVE-2012-3991 (Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
 CVE-2012-3990 (Use-after-free vulnerability in the IME State Manager implementation ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
@@ -4369,7 +4368,7 @@
 CVE-2012-3987 (Mozilla Firefox before 16.0 on Android assigns chrome privileges to ...)
 	- iceweasel <not-affected> (Android-specific)
 CVE-2012-3986 (Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
@@ -4387,7 +4386,7 @@
 	- icedove <not-affected> (Only affects Firefox >= 10)
 	- iceape <not-affected> (Only affects Firefox >= 10)
 CVE-2012-3982 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
-	{DSA-2565-1}
+	{DSA-2569-1 DSA-2565-1}
 	- iceweasel 10.0.8esr-1
 	- icedove 10.0.9-1
 	- iceape 2.7.9-1
@@ -83018,7 +83017,7 @@
 	NOT-FOR-US: Office Viewer OCX ActiveX
 CVE-2007-2587 (The IOS FTP Server in Cisco IOS 11.3 through 12.4 allows remote ...)
 	NOT-FOR-US: Cisco
-CVE-2007-2586 (The IOS FTP Server in Cisco IOS 11.3 through 12.4 does not properly ...)
+CVE-2007-2586 (The FTP Server in Cisco IOS 11.3 through 12.4 does not properly check ...)
 	NOT-FOR-US: Cisco
 CVE-2007-2585 (Stack-based buffer overflow in the Verify function in the BarCodeWiz ...)
 	NOT-FOR-US: BarCodeWiz ActiveX control


