[Secure-testing-commits] r21857 - data/CVE

Joey Hess joeyh at alioth.debian.org
Fri Apr 5 21:14:29 UTC 2013 

Author: joeyh
Date: 2013-04-05 21:14:29 +0000 (Fri, 05 Apr 2013)
New Revision: 21857

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-04-05 21:09:54 UTC (rev 21856)
+++ data/CVE/list	2013-04-05 21:14:29 UTC (rev 21857)
@@ -1082,8 +1082,8 @@
 	RESERVED
 CVE-2013-2303
 	RESERVED
-CVE-2013-2302
-	RESERVED
+CVE-2013-2302 (TransWARE Active! mail 6, when an external public interface is used, ...)
+	TODO: check
 CVE-2013-2301 (The OMRON OpenWnn application before 1.3.6 for Android uses weak ...)
 	NOT-FOR-US: OpenWnn application
 CVE-2013-2300 (The FlickWnn (aka OpenWnn/Flick support) application 2.02 and earlier ...)
@@ -1909,21 +1909,18 @@
 	RESERVED
 	- roundcube 0.7.2-9
 	[squeeze] - roundcube <not-affected> (Vulnerable code not present)
-CVE-2013-1903
-	RESERVED
-CVE-2013-1902
-	RESERVED
-CVE-2013-1901
-	RESERVED
+CVE-2013-1903 (PostgreSQL, possibly 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x ...)
+	TODO: check
+CVE-2013-1902 (PostgreSQL, 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before ...)
+	TODO: check
+CVE-2013-1901 (PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9 does not properly ...)
 	{DSA-2658-1}
 	- postgresql-9.1 9.1.9-1
-CVE-2013-1900
-	RESERVED
+CVE-2013-1900 (PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before ...)
 	{DSA-2658-1 DSA-2657-1}
 	- postgresql-9.1 9.1.9-1
 	- postgresql-8.4 8.4.17-1
-CVE-2013-1899
-	RESERVED
+CVE-2013-1899 (Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, ...)
 	{DSA-2658-1}
 	- postgresql-9.1 9.1.9-1 (bug #704479)
 CVE-2013-1898 [ruby gem Thumbshooter RCE]
@@ -6666,14 +6663,14 @@
 	NOT-FOR-US: Core FTP
 CVE-2013-0129
 	RESERVED
-CVE-2013-0128
-	RESERVED
+CVE-2013-0128 (The Contact Customer Support feature in the TigerText Free Private ...)
+	TODO: check
 CVE-2013-0127
 	RESERVED
 CVE-2013-0126 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
 	NOT-FOR-US: Verizon router
-CVE-2013-0125
-	RESERVED
+CVE-2013-0125 (Cross-site scripting (XSS) vulnerability in fileview.asp in C2 ...)
+	TODO: check
 CVE-2013-0124 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
 	NOT-FOR-US: ASKIA
 CVE-2013-0123 (Multiple SQL injection vulnerabilities in the administration interface ...)
@@ -11170,8 +11167,8 @@
 	NOT-FOR-US: Moxa EDR-G903
 CVE-2012-4711 (Buffer overflow in kingMess.exe 65.20.2003.10300 in WellinTech ...)
 	NOT-FOR-US: WellinTech KingView
-CVE-2012-4710
-	RESERVED
+CVE-2012-4710 (Invensys Wonderware Win-XML Exporter 1522.148.0.0 allows remote ...)
+	TODO: check
 CVE-2012-4709
 	RESERVED
 CVE-2012-4708 (Stack-based buffer overflow in 3S CODESYS Gateway-Server before ...)

More information about the Secure-testing-commits mailing list