[Secure-testing-commits] r22035 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed Apr 24 21:14:23 UTC 2013 

Author: joeyh
Date: 2013-04-24 21:14:23 +0000 (Wed, 24 Apr 2013)
New Revision: 22035

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-04-24 21:01:46 UTC (rev 22034)
+++ data/CVE/list	2013-04-24 21:14:23 UTC (rev 22035)
@@ -1,3 +1,11 @@
+CVE-2013-3268 (Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after ...)
+	TODO: check
+CVE-2013-3267
+	RESERVED
+CVE-2013-3266
+	RESERVED
+CVE-2013-3265
+	RESERVED
 CVE-2013-3264
 	RESERVED
 CVE-2013-3263
@@ -45,14 +53,18 @@
 CVE-2013-3242
 	RESERVED
 CVE-2013-3241 [phpmyadmin PMASA-2013-5]
+	RESERVED
 	- phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2013-3240 [phpmyadmin PMASA-2013-4]
+	RESERVED
 	- phpmyadmin <not-affected> (Vulnerable code not present)
 CVE-2013-3239 [phpmyadmin PMASA-2013-3]
+	RESERVED
 	- phpmyadmin 4:3.4.11.1-2
 	[squeeze] - phpmyadmin <no-dsa> (Minor issue)
 	NOTE: Requires non-default option saveDir to be enabled, an authenticated untrusted user and Apache mod_mime
 CVE-2013-3238 [phpmyadmin PMASA-2013-2]
+	RESERVED
 	- phpmyadmin <not-affected> (exploitable PHP on Windows only)
 	NOTE: code patched in 4:3.4.11.1-2 nonetheless
 CVE-2013-3237 (The vsock_stream_sendmsg function in net/vmw_vsock/af_vsock.c in the ...)
@@ -4808,14 +4820,14 @@
 	RESERVED
 CVE-2013-1218
 	RESERVED
-CVE-2013-1217
-	RESERVED
+CVE-2013-1217 (The generic input/output control implementation in Cisco IOS does not ...)
+	TODO: check
 CVE-2013-1216
 	RESERVED
 CVE-2013-1215
 	RESERVED
-CVE-2013-1214
-	RESERVED
+CVE-2013-1214 (The scripts editor in Cisco Unified Contact Center Express (aka ...)
+	TODO: check
 CVE-2013-1213
 	RESERVED
 CVE-2013-1212
@@ -4852,8 +4864,8 @@
 	NOT-FOR-US: Cisco Unified Presence
 CVE-2013-1196
 	RESERVED
-CVE-2013-1195
-	RESERVED
+CVE-2013-1195 (The time-based ACL implementation on Cisco Adaptive Security ...)
+	TODO: check
 CVE-2013-1194 (The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) ...)
 	NOT-FOR-US: Cisco
 CVE-2013-1193 (The Secure Shell (SSH) implementation on Cisco Adaptive Security ...)
@@ -5066,8 +5078,8 @@
 	RESERVED
 CVE-2013-1089
 	RESERVED
-CVE-2013-1088
-	RESERVED
+CVE-2013-1088 (Cross-site request forgery (CSRF) vulnerability in Apache Tomcat, as ...)
+	TODO: check
 CVE-2013-1087
 	RESERVED
 CVE-2013-1086 (Cross-site scripting (XSS) vulnerability in WebAccess in Novell ...)
@@ -6395,8 +6407,8 @@
 	RESERVED
 CVE-2013-0566
 	RESERVED
-CVE-2013-0565
-	RESERVED
+CVE-2013-0565 (Cross-site scripting (XSS) vulnerability in the RPC adapter for the ...)
+	TODO: check
 CVE-2013-0564
 	RESERVED
 CVE-2013-0563
@@ -6437,16 +6449,16 @@
 	RESERVED
 CVE-2013-0545
 	RESERVED
-CVE-2013-0544
-	RESERVED
-CVE-2013-0543
-	RESERVED
-CVE-2013-0542
-	RESERVED
-CVE-2013-0541
-	RESERVED
-CVE-2013-0540
-	RESERVED
+CVE-2013-0544 (Directory traversal vulnerability in the Administrative Console in IBM ...)
+	TODO: check
+CVE-2013-0543 (IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before ...)
+	TODO: check
+CVE-2013-0542 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
+	TODO: check
+CVE-2013-0541 (Buffer overflow in IBM WebSphere Application Server (WAS) 6.1 before ...)
+	TODO: check
+CVE-2013-0540 (IBM WebSphere Application Server (WAS) Liberty Profile 8.5 before ...)
+	TODO: check
 CVE-2013-0539
 	RESERVED
 CVE-2013-0538
@@ -8217,8 +8229,7 @@
 	RESERVED
 CVE-2012-6141
 	RESERVED
-CVE-2012-6140 [google-authenticator secret file user readable]
-	RESERVED
+CVE-2012-6140 (pam_google_authenticator.c in the PAM module in Google Authenticator ...)
 	- google-authenticator <unfixed> (bug #666129)
 CVE-2012-6139 (libxslt before 1.1.28 allows remote attackers to cause a denial of ...)
 	{DSA-2654-1}
@@ -10908,8 +10919,8 @@
 	RESERVED
 CVE-2012-5219
 	RESERVED
-CVE-2012-5218
-	RESERVED
+CVE-2012-5218 (HP ElitePad 900 PCs with BIOS F.0x before F.01 Update 1.0.0.8 do not ...)
+	TODO: check
 CVE-2012-5217
 	RESERVED
 CVE-2012-5216 (Cross-site request forgery (CSRF) vulnerability on HP ProCurve 1700-8 ...)

More information about the Secure-testing-commits mailing list