[Secure-testing-commits] r22041 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2013-04-25 21:14:36 +0000 (Thu, 25 Apr 2013)
New Revision: 22041

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-04-25 17:03:29 UTC (rev 22040)
+++ data/CVE/list	2013-04-25 21:14:36 UTC (rev 22041)
@@ -1,3 +1,5 @@
+CVE-2013-3269 (Cross-site request forgery (CSRF) vulnerability in Cybozu Office ...)
+	TODO: check
 CVE-2013-3268 (Novell iManager 2.7 before SP6 Patch 1 does not refresh a token after ...)
 	NOT-FOR-US: Novell iManager
 CVE-2013-3267
@@ -439,8 +441,8 @@
 	RESERVED
 CVE-2013-3056
 	RESERVED
-CVE-2013-3055
-	RESERVED
+CVE-2013-3055 (Lexmark Markvision Enterprise before 1.8 provides a diagnostic ...)
+	TODO: check
 CVE-2013-3054
 	RESERVED
 CVE-2013-3053
@@ -2114,8 +2116,8 @@
 	RESERVED
 CVE-2013-2306
 	RESERVED
-CVE-2013-2305
-	RESERVED
+CVE-2013-2305 (Cross-site request forgery (CSRF) vulnerability in Cybozu Office ...)
+	TODO: check
 CVE-2013-2304 (The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile ...)
 	NOT-FOR-US: Sleipnir
 CVE-2013-2303 (Sleipnir 4.0.0.4000 and earlier on Windows allows remote attackers to ...)
@@ -2840,14 +2842,11 @@
 	RESERVED
 CVE-2013-1959
 	RESERVED
-CVE-2013-1958 [Linux Kernel namespaces scm: Require CAP_SYS_ADMIN over the current pidns to spoof pids]
-	RESERVED
+CVE-2013-1958 (The scm_check_creds function in net/core/scm.c in the Linux kernel ...)
 	- linux <unfixed>
-CVE-2013-1957 [Linux Kernel namespaces vfs: Carefully propogate mounts across user namespaces]
-	RESERVED
+CVE-2013-1957 (The clone_mnt function in fs/namespace.c in the Linux kernel before ...)
 	- linux <unfixed>
-CVE-2013-1956 [Linux Kernel namespaces userns:  Don't allow creation if the user is chrooted]
-	RESERVED
+CVE-2013-1956 (The create_user_ns function in kernel/user_namespace.c in the Linux ...)
 	- linux <unfixed>
 CVE-2013-1955
 	RESERVED
@@ -4873,8 +4872,8 @@
 	NOT-FOR-US: Cisco
 CVE-2013-1193 (The Secure Shell (SSH) implementation on Cisco Adaptive Security ...)
 	NOT-FOR-US: Cisco
-CVE-2013-1192
-	RESERVED
+CVE-2013-1192 (The JAR files on Cisco Device Manager for Cisco MDS 9000 devices ...)
+	TODO: check
 CVE-2013-1191
 	RESERVED
 CVE-2013-1190
@@ -4885,24 +4884,24 @@
 	RESERVED
 CVE-2013-1187 (The Connection Manager in Cisco Jabber Extensible Communications ...)
 	NOT-FOR-US: Cisco
-CVE-2013-1186
-	RESERVED
-CVE-2013-1185
-	RESERVED
-CVE-2013-1184
-	RESERVED
-CVE-2013-1183
-	RESERVED
-CVE-2013-1182
-	RESERVED
-CVE-2013-1181
-	RESERVED
-CVE-2013-1180
-	RESERVED
-CVE-2013-1179
-	RESERVED
-CVE-2013-1178
-	RESERVED
+CVE-2013-1186 (Cisco Unified Computing System (UCS) 1.x before 1.4(4) and 2.x before ...)
+	TODO: check
+CVE-2013-1185 (The web interface in the Manager component in Cisco Unified Computing ...)
+	TODO: check
+CVE-2013-1184 (The management API in the XML API management service in the Manager ...)
+	TODO: check
+CVE-2013-1183 (Buffer overflow in the Intelligent Platform Management Interface ...)
+	TODO: check
+CVE-2013-1182 (The login page in the Web Console in the Manager component in Cisco ...)
+	TODO: check
+CVE-2013-1181 (Cisco NX-OS on Nexus 5500 devices 4.x and 5.x before 5.0(3)N2(2), ...)
+	TODO: check
+CVE-2013-1180 (Buffer overflow in the SNMP implementation in Cisco NX-OS on Nexus ...)
+	TODO: check
+CVE-2013-1179 (Multiple buffer overflows in the (1) SNMP and (2) License Manager ...)
+	TODO: check
+CVE-2013-1178 (Multiple buffer overflows in the Cisco Discovery Protocol (CDP) ...)
+	TODO: check
 CVE-2013-1177 (SQL injection vulnerability in Cisco Network Admission Control (NAC) ...)
 	NOT-FOR-US: Cisco Network Admission Control Manager
 CVE-2013-1176 (The DSP card on Cisco TelePresence MCU 4500 and 4501 devices before ...)
@@ -5932,8 +5931,8 @@
 	NOT-FOR-US: Newscoop
 CVE-2013-0729
 	RESERVED
-CVE-2013-0728
-	RESERVED
+CVE-2013-0728 (Multiple stack-based buffer overflows in NCSAddOn.dll in the ERDAS ...)
+	TODO: check
 CVE-2013-0727
 	RESERVED
 CVE-2013-0726