[Secure-testing-commits] r22765 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Wed Jun 26 21:14:22 UTC 2013
Author: joeyh
Date: 2013-06-26 21:14:22 +0000 (Wed, 26 Jun 2013)
New Revision: 22765
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-26 20:52:41 UTC (rev 22764)
+++ data/CVE/list 2013-06-26 21:14:22 UTC (rev 22765)
@@ -1,8 +1,74 @@
-CVE-2013-4682
+CVE-2013-4716
+ RESERVED
+CVE-2013-4715
+ RESERVED
+CVE-2013-4714
+ RESERVED
+CVE-2013-4713
+ RESERVED
+CVE-2013-4712
+ RESERVED
+CVE-2013-4711
+ RESERVED
+CVE-2013-4710
+ RESERVED
+CVE-2013-4709
+ RESERVED
+CVE-2013-4708
+ RESERVED
+CVE-2013-4707
+ RESERVED
+CVE-2013-4706
+ RESERVED
+CVE-2013-4705
+ RESERVED
+CVE-2013-4704
+ RESERVED
+CVE-2013-4703
+ RESERVED
+CVE-2013-4702
+ RESERVED
+CVE-2013-4701
+ RESERVED
+CVE-2013-4700
+ RESERVED
+CVE-2013-4699
+ RESERVED
+CVE-2013-4698
+ RESERVED
+CVE-2013-4697
+ RESERVED
+CVE-2013-4695
+ RESERVED
+CVE-2013-4694
+ RESERVED
+CVE-2013-4693
+ RESERVED
+CVE-2013-4692
+ RESERVED
+CVE-2013-4691
+ RESERVED
+CVE-2013-4690
+ RESERVED
+CVE-2013-4689
+ RESERVED
+CVE-2013-4688
+ RESERVED
+CVE-2013-4687
+ RESERVED
+CVE-2013-4686
+ RESERVED
+CVE-2013-4685
+ RESERVED
+CVE-2013-4684
+ RESERVED
+CVE-2013-4683 (SQL injection vulnerability in the meta_feedit extension 0.1.10 and ...)
+ TODO: check
+CVE-2013-4682 (SQL injection vulnerability in the Multishop extension before 2.0.39 ...)
NOT-FOR-US: Multishop extension for TYPO3
-CVE-2013-4681
+CVE-2013-4681 (SQL injection vulnerability in the sofortueberweisung2commerce ...)
NOT-FOR-US: sofortueberweisung2commerce extension TYPO3
-CVE-2013-4680
+CVE-2013-4680 (Open redirect vulnerability in Maag Form Captcha extension 2.0.0 and ...)
NOT-FOR-US: meta_feedit extension for TYPO3
CVE-2013-4679
RESERVED
@@ -88,8 +154,7 @@
RESERVED
CVE-2013-4637
RESERVED
-CVE-2013-4669
- RESERVED
+CVE-2013-4669 (FortiClient before 4.3.5.472 on Windows, before 4.0.3.134 on Mac OS X, ...)
NOT-FOR-US: FortiClient
CVE-2013-4636 (The mget function in libmagic/softmagic.c in the Fileinfo component in ...)
- php5 5.5.0+dfsg-1
@@ -178,8 +243,7 @@
NOT-FOR-US: REDCap
CVE-2012-6564 (Cross-site scripting (XSS) vulnerability in REDCap before 4.14.5 ...)
NOT-FOR-US: REDCap
-CVE-2013-4604
- RESERVED
+CVE-2013-4604 (Fortinet FortiOS before 5.0.3 on FortiGate devices does not properly ...)
NOT-FOR-US: Fortinet FortiOS
CVE-2013-4603
RESERVED
@@ -4229,7 +4293,7 @@
NOT-FOR-US: Adobe Reader
CVE-2013-2717 (Multiple unspecified vulnerabilities in the System Management (aka ...)
NOT-FOR-US: EMC
-CVE-2012-6573
+CVE-2012-6573 (Cross-site scripting (XSS) vulnerability in the Apache Solr ...)
NOT-FOR-US: DRUPAL-SA-CONTRIB-2012-136
CVE-2012-6550 (Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.0.8 ...)
- db4o <unfixed> (unimportant)
@@ -5510,6 +5574,7 @@
CVE-2013-2215
RESERVED
CVE-2013-2214 [nagios3: information leak]
+ RESERVED
- nagios3 <unfixed> (bug #714171)
- icinga <not-affected> (vulnerable code not present)
CVE-2013-2213 [KRandom::random() Small Space of Random Values]
@@ -5630,8 +5695,7 @@
RESERVED
{DSA-2708-1}
- fail2ban 0.8.10-1
-CVE-2013-2177
- RESERVED
+CVE-2013-2177 (Cross-site scripting (XSS) vulnerability in the Display Suite module ...)
NOT-FOR-US: third party drupal module (Display Suite)
CVE-2013-2176
RESERVED
@@ -6392,8 +6456,7 @@
NOT-FOR-US: Drupal contributed module
CVE-2013-1972 (Cross-site request forgery (CSRF) vulnerability in the elFinder file ...)
NOT-FOR-US: Drupal contributed module
-CVE-2013-1971
- RESERVED
+CVE-2013-1971 (Cross-site scripting (XSS) vulnerability in the MP3 Player module for ...)
NOT-FOR-US: Drupal contributed module
CVE-2013-1970
REJECTED
@@ -7239,47 +7302,42 @@
RESERVED
CVE-2013-1701
RESERVED
-CVE-2013-1700
- RESERVED
+CVE-2013-1700 (The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on ...)
- iceweasel <not-affected> (Only affects Firefox > 17)
-CVE-2013-1699
- RESERVED
+CVE-2013-1699 (The Internationalized Domain Name (IDN) display algorithm in Mozilla ...)
- iceweasel <not-affected> (Only affects Firefox > 17)
-CVE-2013-1698
- RESERVED
+CVE-2013-1698 (The getUserMedia permission implementation in Mozilla Firefox before ...)
- iceweasel <not-affected> (Only affects Firefox > 17)
-CVE-2013-1697
- RESERVED
+CVE-2013-1697 (The XrayWrapper implementation in Mozilla Firefox before 22.0, Firefox ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
-CVE-2013-1696
- RESERVED
+CVE-2013-1696 (Mozilla Firefox before 22.0 does not properly enforce the ...)
- iceweasel <not-affected> (Only affects Firefox > 17)
-CVE-2013-1695
- RESERVED
+CVE-2013-1695 (Mozilla Firefox before 22.0 does not properly implement certain ...)
- iceweasel <not-affected> (Only affects Firefox > 17)
-CVE-2013-1694
- RESERVED
+CVE-2013-1694 (The PreserveWrapper implementation in Mozilla Firefox before 22.0, ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
-CVE-2013-1693
- RESERVED
+CVE-2013-1693 (The SVG filter implementation in Mozilla Firefox before 22.0, Firefox ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
-CVE-2013-1692
- RESERVED
+CVE-2013-1692 (Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
@@ -7288,8 +7346,8 @@
[squeeze] - iceape <end-of-life>
CVE-2013-1691
RESERVED
-CVE-2013-1690
- RESERVED
+CVE-2013-1690 (Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
@@ -7298,48 +7356,46 @@
[squeeze] - iceape <end-of-life>
CVE-2013-1689
RESERVED
-CVE-2013-1688
- RESERVED
+CVE-2013-1688 (The Profiler implementation in Mozilla Firefox before 22.0 parses ...)
- iceweasel <not-affected> (Only affects Firefox > 17)
-CVE-2013-1687
- RESERVED
+CVE-2013-1687 (The System Only Wrapper (SOW) and Chrome Object Wrapper (COW) ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
-CVE-2013-1686
- RESERVED
+CVE-2013-1686 (Use-after-free vulnerability in the mozilla::ResetDir function in ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
-CVE-2013-1685
- RESERVED
+CVE-2013-1685 (Use-after-free vulnerability in the nsIDocument::GetRootElement ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
-CVE-2013-1684
- RESERVED
+CVE-2013-1684 (Use-after-free vulnerability in the ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
[squeeze] - icedove <end-of-life>
- iceape <unfixed>
[squeeze] - iceape <end-of-life>
-CVE-2013-1683
- RESERVED
+CVE-2013-1683 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
- iceweasel <not-affected> (Only affects Firefox 21)
- icedove <not-affected> (Only affects Firefox 21)
- iceape <not-affected> (Only affects Firefox 21)
-CVE-2013-1682
- RESERVED
+CVE-2013-1682 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
+ {DSA-2716-1}
- iceweasel 17.0.7esr-1
[squeeze] - iceweasel <end-of-life>
- icedove <unfixed>
More information about the Secure-testing-commits
mailing list