[Secure-testing-commits] r23168 - data/CVE

Joey Hess joeyh at alioth.debian.org
Thu Aug 1 21:14:29 UTC 2013 

Author: joeyh
Date: 2013-08-01 21:14:28 +0000 (Thu, 01 Aug 2013)
New Revision: 23168

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-08-01 20:57:33 UTC (rev 23167)
+++ data/CVE/list	2013-08-01 21:14:28 UTC (rev 23168)
@@ -1,3 +1,31 @@
+CVE-2013-5034
+	RESERVED
+CVE-2013-5033
+	RESERVED
+CVE-2013-5032
+	RESERVED
+CVE-2013-5031
+	RESERVED
+CVE-2013-5030
+	RESERVED
+CVE-2013-5029
+	RESERVED
+CVE-2013-5028
+	RESERVED
+CVE-2013-5027
+	RESERVED
+CVE-2013-5026
+	RESERVED
+CVE-2013-5025
+	RESERVED
+CVE-2013-5024
+	RESERVED
+CVE-2013-5023
+	RESERVED
+CVE-2013-5022
+	RESERVED
+CVE-2013-5021
+	RESERVED
 CVE-2013-5020 (Multiple cross-site scripting (XSS) vulnerabilities in bb_admin.php in ...)
 	NOT-FOR-US: miniBB
 CVE-2013-5019 (Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote ...)
@@ -249,10 +277,10 @@
 	RESERVED
 CVE-2013-4913
 	RESERVED
-CVE-2013-4912
-	RESERVED
-CVE-2013-4911
-	RESERVED
+CVE-2013-4912 (Open redirect vulnerability in Siemens WinCC (TIA Portal) 11 and 12 ...)
+	TODO: check
+CVE-2013-4911 (Cross-site request forgery (CSRF) vulnerability in Siemens WinCC (TIA ...)
+	TODO: check
 CVE-2013-4910
 	RESERVED
 CVE-2013-4909
@@ -280,7 +308,7 @@
 CVE-2013-4898
 	RESERVED
 CVE-2013-4897
-	RESERVED
+	REJECTED
 CVE-2013-4896
 	RESERVED
 CVE-2013-4895
@@ -781,14 +809,14 @@
 	RESERVED
 CVE-2013-4674 (Cross-site scripting (XSS) vulnerability in the Web Email Protection ...)
 	NOT-FOR-US: Symantec
-CVE-2013-4673
-	RESERVED
-CVE-2013-4672
-	RESERVED
-CVE-2013-4671
-	RESERVED
-CVE-2013-4670
-	RESERVED
+CVE-2013-4673 (The management console on the Symantec Web Gateway (SWG) appliance ...)
+	TODO: check
+CVE-2013-4672 (The management console on the Symantec Web Gateway (SWG) appliance ...)
+	TODO: check
+CVE-2013-4671 (Cross-site request forgery (CSRF) vulnerability in the management ...)
+	TODO: check
+CVE-2013-4670 (Multiple cross-site scripting (XSS) vulnerabilities in the management ...)
+	TODO: check
 CVE-2013-4668 (Directory traversal vulnerability in File Roller 3.6.x before 3.6.4, ...)
 	- file-roller 3.8.3-1
 	[squeeze] - file-roller <not-affected> (Doesn't use libarchive)
@@ -824,10 +852,10 @@
 	RESERVED
 CVE-2013-4653
 	RESERVED
-CVE-2013-4652
-	RESERVED
-CVE-2013-4651
-	RESERVED
+CVE-2013-4652 (Unspecified vulnerability in the command-line management interface on ...)
+	TODO: check
+CVE-2013-4651 (Siemens Scalance W7xx devices with firmware before 4.5.4 use the same ...)
+	TODO: check
 CVE-2013-4650 (MongoDB 2.4.x before 2.4.5 and 2.5.x before 2.5.1 allows remote ...)
 	- mongodb 1:2.4.5-1 (bug #715007)
 	[squeeze] - mongodb <not-affected> (Only affects 2.4.x)
@@ -2927,8 +2955,7 @@
 	REJECTED
 CVE-2013-3725
 	RESERVED
-CVE-2013-3724 [monkeyd Denial of Service]
-	RESERVED
+CVE-2013-3724 (The mk_request_header_process function in mk_request.c in Monkey 1.1.1 ...)
 	- monkey <removed> (low)
 	[squeeze] - monkey <no-dsa> (Minor issue)
 	NOTE: http://bugs.monkey-project.com/ticket/181
@@ -3562,11 +3589,9 @@
 	RESERVED
 CVE-2013-3445 (The firewall subsystem in Cisco Identity Services Engine has an ...)
 	NOT-FOR-US: Cisco Identity Services Engine
-CVE-2013-3444
-	RESERVED
+CVE-2013-3444 (The web framework in Cisco WAAS Software before 4.x and 5.x before ...)
 	NOT-FOR-US: Cisco
-CVE-2013-3443
-	RESERVED
+CVE-2013-3443 (The web service framework in Cisco WAAS Software 4.x and 5.x before ...)
 	NOT-FOR-US: Cisco
 CVE-2013-3442
 	RESERVED
@@ -4553,10 +4578,10 @@
 	RESERVED
 CVE-2013-2995
 	RESERVED
-CVE-2013-2994
-	RESERVED
-CVE-2013-2993
-	RESERVED
+CVE-2013-2994 (IBM WebSphere Commerce 7.0 Feature Pack 4 and Feature Pack 5 ...)
+	TODO: check
+CVE-2013-2993 (IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.7 ...)
+	TODO: check
 CVE-2013-2992
 	RESERVED
 CVE-2013-2991
@@ -8663,10 +8688,10 @@
 	- gnutls28 3.0.22-3
 CVE-2013-1618 (The TLS implementation in Opera before 12.13 does not properly ...)
 	NOT-FOR-US: Opera
-CVE-2013-1617
-	RESERVED
-CVE-2013-1616
-	RESERVED
+CVE-2013-1617 (Multiple SQL injection vulnerabilities in the management console on ...)
+	TODO: check
+CVE-2013-1616 (The management console on the Symantec Web Gateway (SWG) appliance ...)
+	TODO: check
 CVE-2013-1615 (The management console (aka Java console) on the Symantec Security ...)
 	NOT-FOR-US: Symantec
 CVE-2013-1614 (Multiple cross-site scripting (XSS) vulnerabilities in the management ...)
@@ -15579,8 +15604,8 @@
 	RESERVED
 CVE-2012-5461
 	RESERVED
-CVE-2012-5460
-	RESERVED
+CVE-2012-5460 (Cross-site scripting (XSS) vulnerability in the help page in Juniper ...)
+	TODO: check
 CVE-2012-5459 (Untrusted search path vulnerability in VMware Workstation 8.x before ...)
 	NOT-FOR-US: VMware
 CVE-2012-5458 (VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before 4.0.5 ...)
@@ -19929,8 +19954,8 @@
 	NOT-FOR-US: Cisco IOS
 CVE-2012-3914
 	RESERVED
-CVE-2012-3913
-	RESERVED
+CVE-2012-3913 (The Cisco VC220 and VC240 cameras allow remote attackers to cause a ...)
+	TODO: check
 CVE-2012-3912
 	RESERVED
 CVE-2012-3911

More information about the Secure-testing-commits mailing list