[Secure-testing-commits] r21529 - data/CVE

Joey Hess joeyh at alioth.debian.org
Tue Mar 5 21:14:29 UTC 2013


Author: joeyh
Date: 2013-03-05 21:14:28 +0000 (Tue, 05 Mar 2013)
New Revision: 21529

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-03-05 17:22:58 UTC (rev 21528)
+++ data/CVE/list	2013-03-05 21:14:28 UTC (rev 21529)
@@ -1,3 +1,155 @@
+CVE-2013-2373
+	RESERVED
+CVE-2013-2372
+	RESERVED
+CVE-2013-2371
+	RESERVED
+CVE-2013-2370
+	RESERVED
+CVE-2013-2369
+	RESERVED
+CVE-2013-2368
+	RESERVED
+CVE-2013-2367
+	RESERVED
+CVE-2013-2366
+	RESERVED
+CVE-2013-2365
+	RESERVED
+CVE-2013-2364
+	RESERVED
+CVE-2013-2363
+	RESERVED
+CVE-2013-2362
+	RESERVED
+CVE-2013-2361
+	RESERVED
+CVE-2013-2360
+	RESERVED
+CVE-2013-2359
+	RESERVED
+CVE-2013-2358
+	RESERVED
+CVE-2013-2357
+	RESERVED
+CVE-2013-2356
+	RESERVED
+CVE-2013-2355
+	RESERVED
+CVE-2013-2354
+	RESERVED
+CVE-2013-2353
+	RESERVED
+CVE-2013-2352
+	RESERVED
+CVE-2013-2351
+	RESERVED
+CVE-2013-2350
+	RESERVED
+CVE-2013-2349
+	RESERVED
+CVE-2013-2348
+	RESERVED
+CVE-2013-2347
+	RESERVED
+CVE-2013-2346
+	RESERVED
+CVE-2013-2345
+	RESERVED
+CVE-2013-2344
+	RESERVED
+CVE-2013-2343
+	RESERVED
+CVE-2013-2342
+	RESERVED
+CVE-2013-2341
+	RESERVED
+CVE-2013-2340
+	RESERVED
+CVE-2013-2339
+	RESERVED
+CVE-2013-2338
+	RESERVED
+CVE-2013-2337
+	RESERVED
+CVE-2013-2336
+	RESERVED
+CVE-2013-2335
+	RESERVED
+CVE-2013-2334
+	RESERVED
+CVE-2013-2333
+	RESERVED
+CVE-2013-2332
+	RESERVED
+CVE-2013-2331
+	RESERVED
+CVE-2013-2330
+	RESERVED
+CVE-2013-2329
+	RESERVED
+CVE-2013-2328
+	RESERVED
+CVE-2013-2327
+	RESERVED
+CVE-2013-2326
+	RESERVED
+CVE-2013-2325
+	RESERVED
+CVE-2013-2324
+	RESERVED
+CVE-2013-2323
+	RESERVED
+CVE-2013-2322
+	RESERVED
+CVE-2013-2321
+	RESERVED
+CVE-2013-2320
+	RESERVED
+CVE-2013-2319
+	RESERVED
+CVE-2013-2318
+	RESERVED
+CVE-2013-2317
+	RESERVED
+CVE-2013-2316
+	RESERVED
+CVE-2013-2315
+	RESERVED
+CVE-2013-2314
+	RESERVED
+CVE-2013-2313
+	RESERVED
+CVE-2013-2312
+	RESERVED
+CVE-2013-2311
+	RESERVED
+CVE-2013-2310
+	RESERVED
+CVE-2013-2309
+	RESERVED
+CVE-2013-2308
+	RESERVED
+CVE-2013-2307
+	RESERVED
+CVE-2013-2306
+	RESERVED
+CVE-2013-2305
+	RESERVED
+CVE-2013-2304
+	RESERVED
+CVE-2013-2303
+	RESERVED
+CVE-2013-2302
+	RESERVED
+CVE-2013-2301
+	RESERVED
+CVE-2013-2300
+	RESERVED
+CVE-2013-2299
+	RESERVED
+CVE-2013-2298
+	RESERVED
 CVE-2013-2297
 	RESERVED
 CVE-2013-2296
@@ -1090,8 +1242,7 @@
 CVE-2013-1776
 	RESERVED
 	- sudo 1.8.5p2-1+nmu1 (bug #701839)
-CVE-2013-1775
-	RESERVED
+CVE-2013-1775 (sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows ...)
 	- sudo 1.8.5p2-1+nmu1 (bug #701838)
 	NOTE: severity depends a lot on the environment
 CVE-2013-1774 (The chase_port function in drivers/usb/serial/io_ti.c in the Linux ...)
@@ -1414,6 +1565,7 @@
 	RESERVED
 CVE-2013-1643
 	RESERVED
+	{DSA-2639-1}
 	- php5 5.4.4-14 (bug #702221)
 	NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=c737b89473df9dba6742b8fc8fbf6d009bf05c36
 CVE-2013-1642
@@ -1432,6 +1584,7 @@
 	RESERVED
 CVE-2013-1635
 	RESERVED
+	{DSA-2639-1}
 	- php5 5.4.4-14 (unimportant; bug #702221)
 	NOTE: open_basedir not supported
 	NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=702b436ef470cc02f8e2cc21f2fadeee42103c74
@@ -1727,8 +1880,7 @@
 	RESERVED
 CVE-2013-1494
 	RESERVED
-CVE-2013-1493
-	RESERVED
+CVE-2013-1493 (The color management (CMM) functionality in the 2D component in Oracle ...)
 	- openjdk-6 6b27-1.12.4-1
 	- openjdk-7 <unfixed>
 	TODO: check (openjdk-7)
@@ -1880,7 +2032,7 @@
 	- joomla <itp> (bug #571794)
 CVE-2013-1454 (Joomla! 3.0.x through 3.0.2 allows attackers to obtain sensitive ...)
 	- joomla <itp> (bug #571794)
-CVE-2013-1453 (Joomla! 3.0.x through 3.0.2 and 2.5.x through 2.5.8 allows attackers ...)
+CVE-2013-1453 (plugins/system/highlight/highlight.php in Joomla! 3.0.x through 3.0.2 ...)
 	- joomla <itp> (bug #571794)
 CVE-2013-1452
 	RESERVED
@@ -3047,35 +3199,25 @@
 	RESERVED
 CVE-2013-0912
 	RESERVED
-CVE-2013-0911
-	RESERVED
+CVE-2013-0911 (Directory traversal vulnerability in Google Chrome before ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0910
-	RESERVED
+CVE-2013-0910 (Google Chrome before 25.0.1364.152 does not properly manage the ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0909
-	RESERVED
+CVE-2013-0909 (The XSS Auditor in Google Chrome before 25.0.1364.152 allows remote ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0908
-	RESERVED
+CVE-2013-0908 (Google Chrome before 25.0.1364.152 does not properly manage bindings ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0907
-	RESERVED
+CVE-2013-0907 (Race condition in Google Chrome before 25.0.1364.152 allows remote ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0906
-	RESERVED
+CVE-2013-0906 (The IndexedDB implementation in Google Chrome before 25.0.1364.152 ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0905
-	RESERVED
+CVE-2013-0905 (Use-after-free vulnerability in Google Chrome before 25.0.1364.152 ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0904
-	RESERVED
+CVE-2013-0904 (The Web Audio implementation in Google Chrome before 25.0.1364.152 ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0903
-	RESERVED
+CVE-2013-0903 (Use-after-free vulnerability in Google Chrome before 25.0.1364.152 ...)
 	- chromium-browser 25.0.1364.152-1
-CVE-2013-0902
-	RESERVED
+CVE-2013-0902 (Use-after-free vulnerability in the frame-loader implementation in ...)
 	- chromium-browser 25.0.1364.152-1
 CVE-2013-0901
 	RESERVED
@@ -3269,8 +3411,7 @@
 	RESERVED
 CVE-2013-0810
 	RESERVED
-CVE-2013-0809
-	RESERVED
+CVE-2013-0809 (Unspecified vulnerability in the 2D component in the Java Runtime ...)
 	- openjdk-6 6b27-1.12.4-1
 	- openjdk-7 <unfixed>
 	TODO: check (openjdk-7)
@@ -4892,8 +5033,7 @@
 CVE-2013-0293 [Lock screen accepts F2 to drop to shell]
 	RESERVED
 	- ovirt-node <itp> (bug #502024)
-CVE-2013-0292 [Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received]
-	RESERVED
+CVE-2013-0292 (The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib ...)
 	- dbus-glib 0.100.1-1 (bug #700638; high)
 	[squeeze] - dbus-glib 0.88-2.1+squeeze1
 CVE-2013-0291
@@ -4906,8 +5046,7 @@
 	- isync 1.0.4-2.2 (low; bug #701052)
 	[squeeze] - isync <no-dsa> (Minor issue)
 	NOTE: http://isync.git.sourceforge.net/git/gitweb.cgi?p=isync/isync;a=patch;h=914ede18664980925628a9ed2a73ad05f85aeedb
-CVE-2013-0288
-	RESERVED
+CVE-2013-0288 (nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows ...)
 	{DSA-2628-1}
 	- nss-pam-ldapd 0.8.10-3 (bug #690319)
 CVE-2013-0287
@@ -5212,8 +5351,7 @@
 CVE-2013-0199
 	RESERVED
 	NOT-FOR-US: FreeIPA
-CVE-2013-0198 [dnsmasq: Incomplete fix for the CVE-2012-3411 issue]
-	RESERVED
+CVE-2013-0198 (Dnsmasq before 2.66test2, when used with certain libvirt ...)
 	- dnsmasq <unfixed> (low)
 	[wheezy] - dnsmasq <no-dsa> (Minor issue)
 	[squeeze] - dnsmasq <no-dsa> (Minor issue)
@@ -9416,8 +9554,8 @@
 	NOT-FOR-US: IBM Informix
 CVE-2012-4856 (The Service Processor in the IBM Power 5 91##-### and 940#-### before ...)
 	NOT-FOR-US: IBM Power 5
-CVE-2012-4855
-	RESERVED
+CVE-2012-4855 (Unspecified vulnerability in the web services framework in IBM ...)
+	TODO: check
 CVE-2012-4854
 	RESERVED
 CVE-2012-4853 (Cross-site request forgery (CSRF) vulnerability in IBM WebSphere ...)
@@ -13454,8 +13592,7 @@
 	- linux 3.2.29-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 2.6.32-36
-CVE-2012-3411
-	RESERVED
+CVE-2012-3411 (Dnsmasq before 2.63test1, when used with certain libvirt ...)
 	- dnsmasq 2.63-1 (low; bug #683372)
 	[wheezy] - dnsmasq <no-dsa> (Minor issue)
 	[squeeze] - dnsmasq <no-dsa> (Minor issue)
@@ -23889,8 +24026,7 @@
 CVE-2011-4356 (Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before ...)
 	- celery 2.4.6-1
 	- django-celery <not-affected> (Vulnerable code not present)
-CVE-2011-4355 [gdb: arbitrary code execution via .debug_gdb_scripts]
-	RESERVED
+CVE-2011-4355 (GNU Project Debugger (GDB) before 7.5, when .debug_gdb_scripts is ...)
 	- gdb <unfixed> (unimportant)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=703238
 CVE-2011-4354 (crypto/bn/bn_nist.c in OpenSSL before 0.9.8h on 32-bit platforms, as ...)




More information about the Secure-testing-commits mailing list