[Secure-testing-commits] r22743 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Jun 25 21:14:31 UTC 2013 

Author: joeyh
Date: 2013-06-25 21:14:31 +0000 (Tue, 25 Jun 2013)
New Revision: 22743

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-06-25 20:55:59 UTC (rev 22742)
+++ data/CVE/list	2013-06-25 21:14:31 UTC (rev 22743)
@@ -1,4 +1,89 @@
+CVE-2013-4679
+	RESERVED
+CVE-2013-4678
+	RESERVED
+CVE-2013-4677
+	RESERVED
+CVE-2013-4676
+	RESERVED
+CVE-2013-4675
+	RESERVED
+CVE-2013-4674
+	RESERVED
+CVE-2013-4673
+	RESERVED
+CVE-2013-4672
+	RESERVED
+CVE-2013-4671
+	RESERVED
+CVE-2013-4670
+	RESERVED
+CVE-2013-4668
+	RESERVED
+CVE-2013-4667
+	RESERVED
+CVE-2013-4666
+	RESERVED
+CVE-2013-4665
+	RESERVED
+CVE-2013-4664
+	RESERVED
+CVE-2013-4663
+	RESERVED
+CVE-2013-4662
+	RESERVED
+CVE-2013-4661
+	RESERVED
+CVE-2013-4660
+	RESERVED
+CVE-2013-4659
+	RESERVED
+CVE-2013-4658
+	RESERVED
+CVE-2013-4657
+	RESERVED
+CVE-2013-4656
+	RESERVED
+CVE-2013-4655
+	RESERVED
+CVE-2013-4654
+	RESERVED
+CVE-2013-4653
+	RESERVED
+CVE-2013-4652
+	RESERVED
+CVE-2013-4651
+	RESERVED
+CVE-2013-4650
+	RESERVED
+CVE-2013-4649
+	RESERVED
+CVE-2013-4648
+	RESERVED
+CVE-2013-4647
+	RESERVED
+CVE-2013-4646
+	RESERVED
+CVE-2013-4645
+	RESERVED
+CVE-2013-4644
+	RESERVED
+CVE-2013-4643
+	RESERVED
+CVE-2013-4642
+	RESERVED
+CVE-2013-4641
+	RESERVED
+CVE-2013-4640
+	RESERVED
+CVE-2013-4639
+	RESERVED
+CVE-2013-4638
+	RESERVED
+CVE-2013-4637
+	RESERVED
 CVE-2013-4669
+	RESERVED
 	NOT-FOR-US: FortiClient
 CVE-2013-4636 (The mget function in libmagic/softmagic.c in the Fileinfo component in ...)
 	- php5 5.5.0+dfsg-1
@@ -88,6 +173,7 @@
 CVE-2012-6564 (Cross-site scripting (XSS) vulnerability in REDCap before 4.14.5 ...)
 	NOT-FOR-US: REDCap
 CVE-2013-4604
+	RESERVED
 	NOT-FOR-US: Fortinet FortiOS
 CVE-2013-4603
 	RESERVED
@@ -5546,6 +5632,7 @@
 	RESERVED
 CVE-2013-2171 [Privilege escalation via mmap]
 	RESERVED
+	{DSA-2714-1}
 	- kfreebsd-9 9.0-12 (bug #712664)
 	- kfreebsd-8 <not-affected> (Only affects 9.x)
 CVE-2013-2170
@@ -5691,8 +5778,7 @@
 	- znc <unfixed>
 	[squeeze] - znc <not-affected> (Vulnerable code not present)
 	[wheezy] - znc <not-affected> (Vulnerable code not present)
-CVE-2013-2129
-	RESERVED
+CVE-2013-2129 (Cross-site scripting (XSS) vulnerability in the Webform module 6.x-3.x ...)
 	NOT-FOR-US: Webform Drupal contributed module
 CVE-2013-2128 (The tcp_read_sock function in net/ipv4/tcp.c in the Linux kernel ...)
 	- linux-2.6 <removed>
@@ -6056,8 +6142,8 @@
 	[squeeze] - python-httplib2 <no-dsa> (Minor issue)
 	[wheezy] - python-httplib2 <no-dsa> (Minor issue)
 	NOTE: http://openwall.com/lists/oss-security/2013/05/01/5
-CVE-2013-2036
-	RESERVED
+CVE-2013-2036 (Cross-site scripting (XSS) vulnerability in the Filebrowser module ...)
+	TODO: check
 CVE-2013-2035
 	RESERVED
 	- hawtjni <unfixed> (bug #708293)
@@ -6286,8 +6372,7 @@
 CVE-2013-1973
 	RESERVED
 	NOT-FOR-US: Drupal contributed module
-CVE-2013-1972
-	RESERVED
+CVE-2013-1972 (Cross-site request forgery (CSRF) vulnerability in the elFinder file ...)
 	NOT-FOR-US: Drupal contributed module
 CVE-2013-1971
 	RESERVED
@@ -6528,8 +6613,8 @@
 	RESERVED
 CVE-2013-1907
 	RESERVED
-CVE-2013-1906
-	RESERVED
+CVE-2013-1906 (Cross-site scripting (XSS) vulnerability in the Rules module 7.x-2.x ...)
+	TODO: check
 CVE-2013-1905 (Cross-site scripting (XSS) vulnerability in the Zero Point theme ...)
 	TODO: check
 CVE-2013-1904 [roundcube variable overwrite]

More information about the Secure-testing-commits mailing list