[Secure-testing-commits] r20426 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Oct 31 21:14:19 UTC 2012 

Author: joeyh
Date: 2012-10-31 21:14:19 +0000 (Wed, 31 Oct 2012)
New Revision: 20426

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-10-31 20:27:11 UTC (rev 20425)
+++ data/CVE/list	2012-10-31 21:14:19 UTC (rev 20426)
@@ -1,3 +1,6 @@
+CVE-2012-5979
+	REJECTED
+	TODO: check
 CVE-2012-5697
 	RESERVED
 CVE-2012-5696
@@ -8,8 +11,8 @@
 	RESERVED
 CVE-2012-5693
 	RESERVED
-CVE-2012-5692
-	RESERVED
+CVE-2012-5692 (Unspecified vulnerability in admin/sources/base/core.php in Invision ...)
+	TODO: check
 CVE-2012-5691
 	RESERVED
 CVE-2012-5690
@@ -56,7 +59,8 @@
 	TODO: check
 CVE-2011-5232 (Double free vulnerability in the Free_All_Memory function in ...)
 	TODO: check
-CVE-2011-5231 (Double free vulnerability in the get_chunk_header function in ...)
+CVE-2011-5231
+	REJECTED
 	TODO: check
 CVE-2011-5230 (Multiple SQL injection vulnerabilities in the selectUserIdByLoginPass ...)
 	TODO: check
@@ -1700,8 +1704,8 @@
 	RESERVED
 CVE-2012-4935
 	RESERVED
-CVE-2012-4934
-	RESERVED
+CVE-2012-4934 (TomatoCart 1.1.7, when the PayPal Express Checkout module is enabled ...)
+	TODO: check
 CVE-2012-4933 (The rtrlet web application in the Web Console in Novell ZENworks Asset ...)
 	NOT-FOR-US: Novell ZENworks
 CVE-2012-4932
@@ -2645,8 +2649,8 @@
 	RESERVED
 CVE-2012-4611
 	RESERVED
-CVE-2012-4610
-	RESERVED
+CVE-2012-4610 (EMC Avamar Client for VMware 6.1 stores the cleartext server root ...)
+	TODO: check
 CVE-2012-4609
 	RESERVED
 CVE-2012-4608
@@ -2968,8 +2972,7 @@
 CVE-2012-4548
 	RESERVED
 	- cgit <itp> (bug #515793)
-CVE-2012-4547
-	RESERVED
+CVE-2012-4547 (Unspecified vulnerability in awredir.pl in AWStats before 7.1 has ...)
 	- awstats <not-affected>
 	NOTE: awredir.pl is not installed into the binary package
 CVE-2012-4546
@@ -3798,10 +3801,11 @@
 	RESERVED
 CVE-2012-4233
 	RESERVED
+	{DSA-2570-1}
 	- libreoffice 1:3.5.4+dfsg-3
 	- openoffice.org 1:3.3.0-1
 	NOTE: Since 3.3.0 openoffice.org is a transitional source package
-  NOTE: https://www.htbridge.com/advisory/HTB23106
+	NOTE: https://www.htbridge.com/advisory/HTB23106
 CVE-2012-4232 (SQL injection vulnerability in admin/index.php in jCore before 1.0pre2 ...)
 	TODO: check
 CVE-2012-4231 (Cross-site scripting (XSS) vulnerability in admin/index.php in jCore ...)
@@ -15237,8 +15241,7 @@
 	[squeeze] - maradns <no-dsa> (Minor issue)
 	[lenny] - maradns <no-dsa> (Minor issue)
 	NOTE: a DoS that requires being able to do recursive queries. Allowing recursive queries to the general public is already a security issue to begin with, so this issue can better be addressed in a point update.
-CVE-2012-0023 [http://www.videolan.org/security/sa1108.html]
-	RESERVED
+CVE-2012-0023 (Double free vulnerability in the get_chunk_header function in ...)
 	- vlc 1.1.13-1
 CVE-2012-0022 (Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before ...)
 	{DSA-2401-1}

More information about the Secure-testing-commits mailing list