[Secure-testing-commits] r23397 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Thu Aug 22 21:14:52 UTC 2013
Author: joeyh
Date: 2013-08-22 21:14:52 +0000 (Thu, 22 Aug 2013)
New Revision: 23397
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-22 16:56:54 UTC (rev 23396)
+++ data/CVE/list 2013-08-22 21:14:52 UTC (rev 23397)
@@ -1,3 +1,43 @@
+CVE-2013-5368
+ RESERVED
+CVE-2013-5367
+ RESERVED
+CVE-2013-5366
+ RESERVED
+CVE-2013-5365
+ RESERVED
+CVE-2013-5364
+ RESERVED
+CVE-2013-5363
+ RESERVED
+CVE-2013-5362
+ RESERVED
+CVE-2013-5361
+ RESERVED
+CVE-2013-5360
+ RESERVED
+CVE-2013-5359
+ RESERVED
+CVE-2013-5358
+ RESERVED
+CVE-2013-5357
+ RESERVED
+CVE-2013-5356
+ RESERVED
+CVE-2013-5355
+ RESERVED
+CVE-2013-5354
+ RESERVED
+CVE-2013-5353
+ RESERVED
+CVE-2013-5352
+ RESERVED
+CVE-2013-5351
+ RESERVED
+CVE-2013-5350
+ RESERVED
+CVE-2013-5349
+ RESERVED
CVE-2013-5348
RESERVED
CVE-2013-5347
@@ -1421,14 +1461,13 @@
RESERVED
CVE-2013-4702
RESERVED
-CVE-2013-4701 [XML External Entity issue allows for reading arbitrary files or excessive resource consumption]
- RESERVED
+CVE-2013-4701 (Auth/Yadis/XML.php in PHP OpenID Library 2.2.2 and earlier allows ...)
- php-openid <unfixed>
TODO: check, potentially also simplesamlphp, typo3-src and wordpress-openid (including a Auth/Yadis/XML.php in source)
-CVE-2013-4700
- RESERVED
-CVE-2013-4699
- RESERVED
+CVE-2013-4700 (The Yahoo! Japan Shopping application 1.4 and earlier for Android does ...)
+ TODO: check
+CVE-2013-4699 (The Yahoo! Japan Yafuoku! application 4.3.0 and earlier for iOS and ...)
+ TODO: check
CVE-2013-4698 (Cybozu Mailwise 5.0.4 and 5.0.5 allows remote authenticated users to ...)
NOT-FOR-US: Cybozu Mailwise
CVE-2013-4697 (Multiple unspecified vulnerabilities in Hitachi JP1/IT Desktop ...)
@@ -2465,11 +2504,9 @@
RESERVED
- tiff <unfixed> (bug #719303)
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
-CVE-2013-4230
- RESERVED
+CVE-2013-4230 (The mm_webform submodule in the Monster Menus module 6.x-6.x before ...)
NOT-FOR-US: Monster Menus Drupal contributed module
-CVE-2013-4229
- RESERVED
+CVE-2013-4229 (Cross-site scripting (XSS) vulnerability in the Monster Menus module ...)
NOT-FOR-US: Monster Menus Drupal contributed module
CVE-2013-4228
RESERVED
@@ -3150,10 +3187,10 @@
NOT-FOR-US: IBM
CVE-2013-4006
RESERVED
-CVE-2013-4005
- RESERVED
-CVE-2013-4004
- RESERVED
+CVE-2013-4005 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
+ TODO: check
+CVE-2013-4004 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
+ TODO: check
CVE-2013-4003
RESERVED
CVE-2013-4002 (Unspecified vulnerability in the Java Runtime Environment (JRE) in IBM ...)
@@ -5323,8 +5360,8 @@
RESERVED
CVE-2013-3030
RESERVED
-CVE-2013-3029
- RESERVED
+CVE-2013-3029 (Cross-site request forgery (CSRF) vulnerability in the Administrative ...)
+ TODO: check
CVE-2013-3028 (Multiple buffer overflows in mqm programs in IBM WebSphere MQ 7.0.x ...)
NOT-FOR-US: IBM WebSphere
CVE-2013-3027 (Integer overflow in the DWA9W ActiveX control in iNotes in IBM Domino ...)
@@ -5349,8 +5386,8 @@
RESERVED
CVE-2013-3017
RESERVED
-CVE-2013-3016
- RESERVED
+CVE-2013-3016 (IBM WebSphere Portal 6.1, 7.0, and 8.0 allows remote attackers to ...)
+ TODO: check
CVE-2013-3015
RESERVED
CVE-2013-3014
@@ -5429,8 +5466,8 @@
RESERVED
CVE-2013-2977 (Integer overflow in IBM Notes 8.5.x before 8.5.3 FP4 Interim Fix 1 and ...)
NOT-FOR-US: IBM Notes
-CVE-2013-2976
- RESERVED
+CVE-2013-2976 (The Administrative console in IBM WebSphere Application Server (WAS) ...)
+ TODO: check
CVE-2013-2975
RESERVED
CVE-2013-2974
@@ -5447,8 +5484,8 @@
NOT-FOR-US: IBM Sterling Control Center
CVE-2013-2968 (An unspecified buffer-read method in IBM Sterling Control Center (SCC) ...)
NOT-FOR-US: IBM Sterling Control Center
-CVE-2013-2967
- RESERVED
+CVE-2013-2967 (Cross-site scripting (XSS) vulnerability in the Administrative console ...)
+ TODO: check
CVE-2013-2966
RESERVED
CVE-2013-2965
@@ -5881,12 +5918,12 @@
RESERVED
CVE-2013-2803
RESERVED
-CVE-2013-2802
- RESERVED
-CVE-2013-2801
- RESERVED
-CVE-2013-2800
- RESERVED
+CVE-2013-2802 (The universal protocol implementation in Sixnet UDR before 2.0 and RTU ...)
+ TODO: check
+CVE-2013-2801 (The OSIsoft PI Interface for IEEE C37.118 before 1.0.6.158 allows ...)
+ TODO: check
+CVE-2013-2800 (The OSIsoft PI Interface for IEEE C37.118 before 1.0.6.158 allows ...)
+ TODO: check
CVE-2013-2799
RESERVED
CVE-2013-2798 (Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and ...)
@@ -5907,8 +5944,8 @@
RESERVED
CVE-2013-2790 (The master-station DNP3 driver before driver19.exe, and Beta2041.exe, ...)
NOT-FOR-US: IOServer
-CVE-2013-2789
- RESERVED
+CVE-2013-2789 (The Kepware DNP Master Driver for the KEPServerEX Communications ...)
+ TODO: check
CVE-2013-2788
RESERVED
CVE-2013-2787
@@ -7196,8 +7233,8 @@
NOT-FOR-US: OpenWnn application
CVE-2013-2300 (The FlickWnn (aka OpenWnn/Flick support) application 2.02 and earlier ...)
NOT-FOR-US: FlickWnn Android App
-CVE-2013-2299
- RESERVED
+CVE-2013-2299 (Cross-site scripting (XSS) vulnerability in Advantech WebAccess ...)
+ TODO: check
CVE-2013-2298
RESERVED
- boinc 7.0.65+dfsg-1 (low)
@@ -12382,8 +12419,8 @@
NOT-FOR-US: IBM
CVE-2013-0598
RESERVED
-CVE-2013-0597
- RESERVED
+CVE-2013-0597 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Application ...)
+ TODO: check
CVE-2013-0596
RESERVED
CVE-2013-0595
@@ -12524,8 +12561,7 @@
RESERVED
CVE-2013-0527 (The Browser in IBM Sterling Connect:Direct 1.4 before 1.4.0.11 and 1.5 ...)
NOT-FOR-US: IBM Sterling Connect:Direct
-CVE-2013-0526
- RESERVED
+CVE-2013-0526 (ping.php in Global Console Manager 16 (GCM16) and Global Console ...)
NOT-FOR-US: IBM GCM16
CVE-2013-0525 (Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes ...)
NOT-FOR-US: IBM Domino
More information about the Secure-testing-commits
mailing list