[Secure-testing-commits] r20129 - data/CVE

Raphael Geissert geissert at alioth.debian.org
Tue Sep 11 04:15:44 UTC 2012


Author: geissert
Date: 2012-09-11 04:15:43 +0000 (Tue, 11 Sep 2012)
New Revision: 20129

Modified:
   data/CVE/list
Log:
new otrs2 issue, unconfirmed gs issue, another freepbx issue
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-09-10 21:45:20 UTC (rev 20128)
+++ data/CVE/list	2012-09-11 04:15:43 UTC (rev 20129)
@@ -15,17 +15,18 @@
 CVE-2012-4876 (Stack-based buffer overflow in the UltraMJCam ActiveX Control in ...)
 	NOT-FOR-US: TRENDnet SecurView TV-IP121WN Wireless Internet Camera
 CVE-2012-4875 (** DISPUTED ** ...)
+	- ghostscript <undetermined>
 	TODO: check
 CVE-2012-4874 (Unspecified vulnerability in the Another WordPress Classifieds Plugin ...)
-	TODO: check
+	NOT-FOR-US: Another WordPress Classifieds Plugin for Wordpress
 CVE-2012-4873 (Cross-site scripting (XSS) vulnerability in the file_download function ...)
-	TODO: check
+	NOT-FOR-US: GNUBoard
 CVE-2012-4872 (Cross-site scripting (XSS) vulnerability in Tickets/Submit in Kayako ...)
 	NOT-FOR-US: Kayako Fusion
 CVE-2012-4871 (Cross-site scripting (XSS) vulnerability in service/graph_html.php in ...)
 	NOT-FOR-US: LiteSpeed Web Server
 CVE-2012-4870 (Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.9 and ...)
-	TODO: check
+	- freepbx <itp> (bug #464926)
 CVE-2012-4869 (The callme_startcall function in recordings/misc/callme_page.php in ...)
 	- freepbx <itp> (bug #464926)
 CVE-2012-4868 (SQL injection vulnerability in news.php in the Kunena component 1.7.2 ...)
@@ -952,6 +953,7 @@
 CVE-2012-4601
 	RESERVED
 CVE-2012-4600 (Cross-site scripting (XSS) vulnerability in Open Ticket Request System ...)
+	- otrs2 <unfixed>
 	TODO: check
 CVE-2011-5102 (The Investigative Reports web interface in the TRITON management ...)
 	NOT-FOR-US: Websense




More information about the Secure-testing-commits mailing list