[Secure-testing-commits] r22952 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Mon Jul 15 21:14:27 UTC 2013
Author: joeyh
Date: 2013-07-15 21:14:27 +0000 (Mon, 15 Jul 2013)
New Revision: 22952
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-07-15 20:43:25 UTC (rev 22951)
+++ data/CVE/list 2013-07-15 21:14:27 UTC (rev 22952)
@@ -1,3 +1,113 @@
+CVE-2013-4846
+ RESERVED
+CVE-2013-4845
+ RESERVED
+CVE-2013-4844
+ RESERVED
+CVE-2013-4843
+ RESERVED
+CVE-2013-4842
+ RESERVED
+CVE-2013-4841
+ RESERVED
+CVE-2013-4840
+ RESERVED
+CVE-2013-4839
+ RESERVED
+CVE-2013-4838
+ RESERVED
+CVE-2013-4837
+ RESERVED
+CVE-2013-4836
+ RESERVED
+CVE-2013-4835
+ RESERVED
+CVE-2013-4834
+ RESERVED
+CVE-2013-4833
+ RESERVED
+CVE-2013-4832
+ RESERVED
+CVE-2013-4831
+ RESERVED
+CVE-2013-4830
+ RESERVED
+CVE-2013-4829
+ RESERVED
+CVE-2013-4828
+ RESERVED
+CVE-2013-4827
+ RESERVED
+CVE-2013-4826
+ RESERVED
+CVE-2013-4825
+ RESERVED
+CVE-2013-4824
+ RESERVED
+CVE-2013-4823
+ RESERVED
+CVE-2013-4822
+ RESERVED
+CVE-2013-4821
+ RESERVED
+CVE-2013-4820
+ RESERVED
+CVE-2013-4819
+ RESERVED
+CVE-2013-4818
+ RESERVED
+CVE-2013-4817
+ RESERVED
+CVE-2013-4816
+ RESERVED
+CVE-2013-4815
+ RESERVED
+CVE-2013-4814
+ RESERVED
+CVE-2013-4813
+ RESERVED
+CVE-2013-4812
+ RESERVED
+CVE-2013-4811
+ RESERVED
+CVE-2013-4810
+ RESERVED
+CVE-2013-4809
+ RESERVED
+CVE-2013-4808
+ RESERVED
+CVE-2013-4807
+ RESERVED
+CVE-2013-4806
+ RESERVED
+CVE-2013-4805
+ RESERVED
+CVE-2013-4804
+ RESERVED
+CVE-2013-4803
+ RESERVED
+CVE-2013-4802
+ RESERVED
+CVE-2013-4801
+ RESERVED
+CVE-2013-4800
+ RESERVED
+CVE-2013-4799
+ RESERVED
+CVE-2013-4798
+ RESERVED
+CVE-2013-4797
+ RESERVED
+CVE-2013-4796
+ RESERVED
+CVE-2013-4795
+ RESERVED
+CVE-2013-4794
+ RESERVED
+CVE-2013-4793
+ RESERVED
+CVE-2011-5266
+ RESERVED
CVE-2013-4792
RESERVED
CVE-2013-4791
@@ -1437,8 +1547,7 @@
[wheezy] - nagstamon <no-dsa> (Minor issue)
[squeeze] - nagstamon <no-dsa> (Minor issue)
NOTE: update checks are disabled in Debian by default, see debian/patches/check-for-new-version.patch
-CVE-2013-4113 [php5: heap corruption in the XML parser]
- RESERVED
+CVE-2013-4113 (ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing ...)
- php5 <unfixed>
NOTE: https://bugs.php.net/bug.php?id=65236
CVE-2013-4112
@@ -2361,8 +2470,8 @@
RESERVED
CVE-2013-3693
RESERVED
-CVE-2013-3692
- RESERVED
+CVE-2013-3692 (BlackBerry 10 OS before 10.0.10.648 on BlackBerry Z10 smartphones uses ...)
+ TODO: check
CVE-2013-3691
RESERVED
CVE-2013-3690
@@ -2473,8 +2582,8 @@
RESERVED
CVE-2013-3656
RESERVED
-CVE-2013-3655
- RESERVED
+CVE-2013-3655 (The Sharp AQUOS PhotoPlayer HN-PP150 with firmware before 1.04.00.04 ...)
+ TODO: check
CVE-2013-3654 (Directory traversal vulnerability in LOCKON EC-CUBE 2.12.0 through ...)
NOT-FOR-US: EC-CUBE
CVE-2013-3653 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
@@ -2968,14 +3077,14 @@
RESERVED
CVE-2013-3425
RESERVED
-CVE-2013-3424
- RESERVED
-CVE-2013-3423
- RESERVED
-CVE-2013-3422
- RESERVED
-CVE-2013-3421
- RESERVED
+CVE-2013-3424 (Cross-site request forgery (CSRF) vulnerability in Administration and ...)
+ TODO: check
+CVE-2013-3423 (Cross-site scripting (XSS) vulnerability in the web interface in Cisco ...)
+ TODO: check
+CVE-2013-3422 (Cross-site scripting (XSS) vulnerability in Administration pages in ...)
+ TODO: check
+CVE-2013-3421 (Cross-site scripting (XSS) vulnerability in the Help index page in ...)
+ TODO: check
CVE-2013-3420
RESERVED
CVE-2013-3419 (Cross-site scripting (XSS) vulnerability in Cisco Unified MeetingPlace ...)
@@ -4570,8 +4679,8 @@
RESERVED
CVE-2013-2705
RESERVED
-CVE-2013-2704
- RESERVED
+CVE-2013-2704 (Cross-site request forgery (CSRF) vulnerability in the Dropdown Menu ...)
+ TODO: check
CVE-2013-2703 (Cross-site request forgery (CSRF) vulnerability in the Facebook ...)
NOT-FOR-US: Facebook Members plugin for WordPres
CVE-2013-2702 (Cross-site request forgery (CSRF) vulnerability in the Easy AdSense ...)
@@ -4602,10 +4711,10 @@
NOT-FOR-US: Synchroweb Technology SynConnect 2.0
CVE-2013-2689
RESERVED
-CVE-2013-2688
- RESERVED
-CVE-2013-2687
- RESERVED
+CVE-2013-2688 (Buffer overflow in phrelay in BlackBerry QNX Neutrino RTOS through ...)
+ TODO: check
+CVE-2013-2687 (Stack-based buffer overflow in the bpe_decompress function in (1) ...)
+ TODO: check
CVE-2013-2686 (main/http.c in the HTTP server in Asterisk Open Source 1.8.x before ...)
- asterisk 1:1.8.13.1~dfsg-2 (bug #704114)
[squeeze] - asterisk <not-affected> (httpd code does not read HTTP POST variables)
@@ -5202,18 +5311,23 @@
CVE-2013-2474
RESERVED
CVE-2013-2473 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2472 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2471 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2470 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2469 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2468 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5226,6 +5340,7 @@
- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
CVE-2013-2465 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2464 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5233,66 +5348,86 @@
- openjdk-7 <not-affected> (Specific to Oracle Java, not present in IcedTea)
NOTE: Due to the vague disclosure policy by Oracle the exact nature is unknown but since no patch landed in icedtea, we consider it not-affected
CVE-2013-2463 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2462 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
CVE-2013-2461 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2460 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2459 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2458 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2457 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 <not-affected> (Only applies to Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2456 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2455 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2454 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 <unfixed>
- openjdk-7 <unfixed>
CVE-2013-2453 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-7 7u25-2.3.10-1
- openjdk-6 6b27-1.12.6-1
CVE-2013-2452 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2451 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2450 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2449 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2448 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2447 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2446 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2445 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2444 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2443 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-7 7u25-2.3.10-1
- openjdk-6 6b27-1.12.6-1
CVE-2013-2442 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5386,6 +5521,7 @@
CVE-2013-2413 (Unspecified vulnerability in the Siebel Enterprise Application ...)
NOT-FOR-US: Oracle Siebel CRM
CVE-2013-2412 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-7 7u25-2.3.10-1
- openjdk-6 6b27-1.12.6-1
CVE-2013-2411 (Unspecified vulnerability in the Primavera P6 Enterprise Project ...)
@@ -5397,6 +5533,7 @@
CVE-2013-2408 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-2407 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2406 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
@@ -5527,8 +5664,8 @@
RESERVED
CVE-2013-2352 (LeftHand OS (aka SAN iQ) 10.5 and earlier on HP StoreVirtual Storage ...)
NOT-FOR-US: HP
-CVE-2013-2351
- RESERVED
+CVE-2013-2351 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.00, ...)
+ TODO: check
CVE-2013-2350
RESERVED
CVE-2013-2349
@@ -8052,6 +8189,7 @@
NOTE: Upstream bug: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7871
NOTE: http://anonsvn.wireshark.org/viewvc?view=revision&revision=45646
CVE-2013-1571 (Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-1570 (Unspecified vulnerability in Oracle MySQL 5.6.10 and earlier allows ...)
@@ -8224,6 +8362,7 @@
CVE-2013-1501 (Unspecified vulnerability in the Oracle iStore component in Oracle ...)
NOT-FOR-US: Oracle E-Business Suite
CVE-2013-1500 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
+ {DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-1499 (Unspecified vulnerability in Oracle Sun Solaris 11 allows local users ...)
More information about the Secure-testing-commits
mailing list