[Secure-testing-commits] r22729 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Mon Jun 24 21:14:25 UTC 2013
Author: joeyh
Date: 2013-06-24 21:14:25 +0000 (Mon, 24 Jun 2013)
New Revision: 22729
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-24 20:38:59 UTC (rev 22728)
+++ data/CVE/list 2013-06-24 21:14:25 UTC (rev 22729)
@@ -1,3 +1,9 @@
+CVE-2013-4636 (The mget function in libmagic/softmagic.c in the Fileinfo component in ...)
+ TODO: check
+CVE-2013-4635 (Integer overflow in the SdnToJewish function in jewish.c in the ...)
+ TODO: check
+CVE-2012-6572 (Cross-site scripting (XSS) vulnerability in the ...)
+ TODO: check
CVE-2013-4634 (SQL injection vulnerability in the jQuery autocomplete for ...)
TODO: check
CVE-2013-4633 (Huawei Seco Versatile Security Manager (VSM) before V200R002C00SPC300 ...)
@@ -44,14 +50,11 @@
RESERVED
CVE-2013-4616 (The WifiPasswordController generateDefaultPassword method in ...)
NOT-FOR-US: Apple iOS
-CVE-2013-4615
- RESERVED
+CVE-2013-4615 (The Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, ...)
NOT-FOR-US: EMC Smarts Network Configuration Manager
-CVE-2013-4614
- RESERVED
+CVE-2013-4614 (English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, ...)
NOT-FOR-US: EMC Smarts Network Configuration Manager
-CVE-2013-4613
- RESERVED
+CVE-2013-4613 (The default configuration of the administrative interface on the Canon ...)
NOT-FOR-US: EMC RSA Data Protection Manager Appliance
CVE-2013-4612 (Multiple cross-site scripting (XSS) vulnerabilities in REDCap before ...)
NOT-FOR-US: REDCap
@@ -2627,8 +2630,8 @@
RESERVED
CVE-2013-3393
RESERVED
-CVE-2013-3392
- RESERVED
+CVE-2013-3392 (Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco ...)
+ TODO: check
CVE-2013-3391
RESERVED
CVE-2013-3390
@@ -2948,8 +2951,8 @@
RESERVED
CVE-2013-3251
RESERVED
-CVE-2013-3250
- RESERVED
+CVE-2013-3250 (Cross-site request forgery (CSRF) vulnerability in the WP Maintenance ...)
+ TODO: check
CVE-2013-3249
RESERVED
CVE-2013-3248
@@ -3420,8 +3423,8 @@
RESERVED
CVE-2013-3036
RESERVED
-CVE-2013-3035
- RESERVED
+CVE-2013-3035 (The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, ...)
+ TODO: check
CVE-2013-3034
RESERVED
CVE-2013-3033
@@ -3568,10 +3571,10 @@
RESERVED
CVE-2013-2962
RESERVED
-CVE-2013-2961
- RESERVED
-CVE-2013-2960
- RESERVED
+CVE-2013-2961 (The internal web server in the Basic Services component in IBM Tivoli ...)
+ TODO: check
+CVE-2013-2960 (Buffer overflow in KDSMAIN in the Basic Services component in IBM ...)
+ TODO: check
CVE-2013-2959 (The Console in IBM InfoSphere Optim Data Growth for Oracle E-Business ...)
NOT-FOR-US: IBM
CVE-2013-2958
@@ -5522,6 +5525,7 @@
- haproxy 1.4.24-1
CVE-2013-2174 [URL decode buffer boundary flaw]
RESERVED
+ {DSA-2713-1}
- curl 7.31.0-1
CVE-2013-2173 (wp-includes/class-phpass.php in WordPress 3.5.1, when a ...)
- wordpress <unfixed> (bug #713947)
@@ -5759,8 +5763,7 @@
- dovecot <not-affected> (vulnerable code appeared in 2.2)
[squeeze] - dovecot <not-affected> (vulnerable code appeared in 2.2)
[wheezy] - dovecot <not-affected> (vulnerable code appeared in 2.2)
-CVE-2013-2110 [Heap based buffer overflow in quoted_printable_encode]
- RESERVED
+CVE-2013-2110 (Heap-based buffer overflow in the php_quot_print_encode function in ...)
- php5 5.5.0~rc3+dfsg-1
[jessie] - php5 <not-affected> (Vulnerable code not present)
[wheezy] - php5 <not-affected> (Vulnerable code not present)
@@ -10339,14 +10342,14 @@
NOT-FOR-US: IBM Sametime
CVE-2013-0552
RESERVED
-CVE-2013-0551
- RESERVED
+CVE-2013-0551 (The Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 ...)
+ TODO: check
CVE-2013-0550
RESERVED
CVE-2013-0549 (Cross-site scripting (XSS) vulnerability in the Web Content Manager - ...)
NOT-FOR-US: IBM WebSphere Portal
-CVE-2013-0548
- RESERVED
+CVE-2013-0548 (Multiple cross-site scripting (XSS) vulnerabilities in the Basic ...)
+ TODO: check
CVE-2013-0547
RESERVED
CVE-2013-0546
@@ -10369,12 +10372,12 @@
NOT-FOR-US: IBM Lotus Notes
CVE-2013-0537
RESERVED
-CVE-2013-0536
- RESERVED
+CVE-2013-0536 (ntmulti.exe in the Multi User Profile Cleanup service in IBM Notes ...)
+ TODO: check
CVE-2013-0535 (Multiple cross-site scripting (XSS) vulnerabilities in the Classic ...)
NOT-FOR-US: IBM Sametime
-CVE-2013-0534
- RESERVED
+CVE-2013-0534 (The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, and ...)
+ TODO: check
CVE-2013-0533 (Cross-site scripting (XSS) vulnerability in the Sametime Links server ...)
NOT-FOR-US: IBM Sametime
CVE-2013-0532 (Cross-site request forgery (CSRF) vulnerability in IBM Security ...)
@@ -10383,20 +10386,20 @@
RESERVED
CVE-2013-0530
RESERVED
-CVE-2013-0529
- RESERVED
+CVE-2013-0529 (The Browser in IBM Sterling Connect:Direct 1.4 before 1.4.0.11 and 1.5 ...)
+ TODO: check
CVE-2013-0528
RESERVED
-CVE-2013-0527
- RESERVED
+CVE-2013-0527 (The Browser in IBM Sterling Connect:Direct 1.4 before 1.4.0.11 and 1.5 ...)
+ TODO: check
CVE-2013-0526
RESERVED
CVE-2013-0525 (Multiple cross-site scripting (XSS) vulnerabilities in IBM iNotes ...)
NOT-FOR-US: IBM Domino
CVE-2013-0524
RESERVED
-CVE-2013-0523
- RESERVED
+CVE-2013-0523 (IBM WebSphere Commerce Enterprise 5.6.x through 5.6.1.5, 6.0.x through ...)
+ TODO: check
CVE-2013-0522
RESERVED
CVE-2013-0521
@@ -15806,7 +15809,7 @@
NOT-FOR-US: IBM Cognos Business Intelligence
CVE-2012-4846 (IBM Lotus Notes 8.5.x before 8.5.3 FP3 does not include the HTTPOnly ...)
NOT-FOR-US: IBM Lotus Notes
-CVE-2012-4845 (The FTP client in AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does ...)
+CVE-2012-4845 (The FTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, ...)
NOT-FOR-US: AIX
CVE-2012-4844 (Cross-site scripting (XSS) vulnerability in the web server in IBM ...)
NOT-FOR-US: IBM Lotus Domino
More information about the Secure-testing-commits
mailing list