[Secure-testing-commits] r23092 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Thu Jul 25 21:14:24 UTC 2013
Author: joeyh
Date: 2013-07-25 21:14:24 +0000 (Thu, 25 Jul 2013)
New Revision: 23092
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-07-25 21:12:43 UTC (rev 23091)
+++ data/CVE/list 2013-07-25 21:14:24 UTC (rev 23092)
@@ -1,3 +1,23 @@
+CVE-2013-4900
+ RESERVED
+CVE-2013-4899
+ RESERVED
+CVE-2013-4898
+ RESERVED
+CVE-2013-4897
+ RESERVED
+CVE-2013-4896
+ RESERVED
+CVE-2013-4895
+ RESERVED
+CVE-2013-4894
+ RESERVED
+CVE-2013-4893
+ RESERVED
+CVE-2013-4892
+ RESERVED
+CVE-2013-4891
+ RESERVED
CVE-2013-XXXX [the Yarom/Falkner flush+reload side-channel attack on RSA secret keys]
- gnupg <unfixed> (bug #717845)
- libgcrypt11 <unfixed>
@@ -1530,6 +1550,7 @@
RESERVED
- cmsms <itp> (bug #608888)
CVE-2013-4166 [problem in GPG key selection when encrypting mail]
+ RESERVED
- evolution <unfixed>
CVE-2013-4165 [timing leak]
RESERVED
@@ -2008,8 +2029,8 @@
RESERVED
CVE-2013-4000
RESERVED
-CVE-2013-3999
- RESERVED
+CVE-2013-3999 (Cross-site scripting (XSS) vulnerability in IBM Social Media Analytics ...)
+ TODO: check
CVE-2013-3998
RESERVED
CVE-2013-3997
@@ -2048,8 +2069,8 @@
RESERVED
CVE-2013-3980
RESERVED
-CVE-2013-3979
- RESERVED
+CVE-2013-3979 (Multiple cross-site scripting (XSS) vulnerabilities in the help pages ...)
+ TODO: check
CVE-2013-3978
RESERVED
CVE-2013-3977
@@ -5546,23 +5567,23 @@
CVE-2013-2474
RESERVED
CVE-2013-2473 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2472 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2471 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2470 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2469 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2468 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5575,7 +5596,7 @@
- openjdk-6 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
CVE-2013-2465 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2464 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5583,14 +5604,14 @@
- openjdk-7 <not-affected> (Specific to Oracle Java, not present in IcedTea)
NOTE: Due to the vague disclosure policy by Oracle the exact nature is unknown but since no patch landed in icedtea, we consider it not-affected
CVE-2013-2463 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2462 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 <not-affected> (Deployment components not part of OpenJDK, only present in Oracle Java)
CVE-2013-2461 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2460 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5598,7 +5619,7 @@
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2459 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2458 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5606,15 +5627,15 @@
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2457 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 <not-affected> (Only applies to Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2456 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2455 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2454 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5622,19 +5643,19 @@
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2453 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-7 7u25-2.3.10-1
- openjdk-6 6b27-1.12.6-1
CVE-2013-2452 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2451 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2450 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2449 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5642,27 +5663,27 @@
- openjdk-6 <not-affected> (Only affects Java 7)
- openjdk-7 7u25-2.3.10-1
CVE-2013-2448 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2447 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2446 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2445 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2444 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2443 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-7 7u25-2.3.10-1
- openjdk-6 6b27-1.12.6-1
CVE-2013-2442 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
@@ -5756,7 +5777,7 @@
CVE-2013-2413 (Unspecified vulnerability in the Siebel Enterprise Application ...)
NOT-FOR-US: Oracle Siebel CRM
CVE-2013-2412 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-7 7u25-2.3.10-1
- openjdk-6 6b27-1.12.6-1
CVE-2013-2411 (Unspecified vulnerability in the Primavera P6 Enterprise Project ...)
@@ -5768,7 +5789,7 @@
CVE-2013-2408 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
NOT-FOR-US: Oracle PeopleSoft Products
CVE-2013-2407 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-2406 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
@@ -6248,6 +6269,7 @@
[wheezy] - libzrtpcpp <no-dsa> (Minor issue)
CVE-2013-2220 [radius_get_vendor_attr vendor specific attributes size checks]
RESERVED
+ {DSA-2726-1}
- php-radius 1.2.5-2.4 (bug #714362)
NOTE: http://www.openwall.com/lists/oss-security/2013/06/28/2
CVE-2013-2219
@@ -8438,7 +8460,7 @@
NOTE: Upstream bug: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7871
NOTE: http://anonsvn.wireshark.org/viewvc?view=revision&revision=45646
CVE-2013-1571 (Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-1570 (Unspecified vulnerability in Oracle MySQL 5.6.10 and earlier allows ...)
@@ -8611,7 +8633,7 @@
CVE-2013-1501 (Unspecified vulnerability in the Oracle iStore component in Oracle ...)
NOT-FOR-US: Oracle E-Business Suite
CVE-2013-1500 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- {DSA-2722-1}
+ {DSA-2727-1 DSA-2722-1}
- openjdk-6 6b27-1.12.6-1
- openjdk-7 7u25-2.3.10-1
CVE-2013-1499 (Unspecified vulnerability in Oracle Sun Solaris 11 allows local users ...)
More information about the Secure-testing-commits
mailing list