[Secure-testing-commits] r21548 - data/CVE

Thu Mar 7 21:14:28 UTC 2013

Author: joeyh
Date: 2013-03-07 21:14:28 +0000 (Thu, 07 Mar 2013)
New Revision: 21548

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2013-03-07 19:48:29 UTC (rev 21547)
+++ data/CVE/list	2013-03-07 21:14:28 UTC (rev 21548)
@@ -1,3 +1,41 @@
+CVE-2013-2492
+	RESERVED
+CVE-2013-2491
+	RESERVED
+CVE-2013-2490
+	RESERVED
+CVE-2013-2489
+	RESERVED
+CVE-2013-2488
+	RESERVED
+CVE-2013-2487
+	RESERVED
+CVE-2013-2486
+	RESERVED
+CVE-2013-2485
+	RESERVED
+CVE-2013-2484
+	RESERVED
+CVE-2013-2483
+	RESERVED
+CVE-2013-2482
+	RESERVED
+CVE-2013-2481
+	RESERVED
+CVE-2013-2480
+	RESERVED
+CVE-2013-2479
+	RESERVED
+CVE-2013-2478
+	RESERVED
+CVE-2013-2477
+	RESERVED
+CVE-2013-2476
+	RESERVED
+CVE-2013-2475
+	RESERVED
+CVE-2013-2474
+	RESERVED
 CVE-2013-2473
 	RESERVED
 CVE-2013-2472
@@ -1315,8 +1353,7 @@
 	NOTE: http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/
 CVE-2013-1820
 	RESERVED
-CVE-2013-1819 [xfs: _xfs_buf_find NULL pointer dereference]
-	RESERVED
+CVE-2013-1819 (The _xfs_buf_find function in fs/xfs/xfs_buf.c in the Linux kernel ...)
 	- linux <unfixed> (low)
 	- linux-2.6 <removed> (low)
 CVE-2013-1818 [mediawiki mwdoc-filter.php information disclosure]
@@ -5499,8 +5536,7 @@
 	- linux 3.2.39-1
 	- linux-2.6 <removed>
 	[squeeze] - linux-2.6 2.6.32-48
-CVE-2013-0215
-	RESERVED
+CVE-2013-0215 (oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly ...)
 	- xen <not-affected> (ocaml version of the xenstore daemon not used in Debian)
 CVE-2013-0214 (Cross-site request forgery (CSRF) vulnerability in the Samba Web ...)
 	{DSA-2617-1}
@@ -5548,8 +5584,7 @@
 	- owncloud 4.0.8debian-1.4 (bug #698737)
 	[wheezy] - owncloud 4.0.4debian2-3.3
 	NOTE: http://owncloud.org/about/security/advisories/oC-SA-2013-001/
-CVE-2013-0200 [insecure temporary file handling flaws]
-	RESERVED
+CVE-2013-0200 (HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local ...)
 	- hplip 3.12.6-3.1 (bug #701185)
 CVE-2013-0199
 	RESERVED
@@ -5728,8 +5763,7 @@
 	- xen 4.1.4-2
 CVE-2013-0152 (Memory leak in Xen 4.2 and unstable allows local HVM guests to cause a ...)
 	- xen <not-affected> (Only applies to Xen 4.2, which is only available in experimental)
-CVE-2013-0151
-	RESERVED
+CVE-2013-0151 (The do_hvm_op function in xen/arch/x86/hvm/hvm.c in Xen 4.2.x on the ...)
 	- xen <not-affected> (Only applies to Xen 4.2, which is only available in experimental)
 CVE-2013-0150
 	RESERVED
@@ -9261,8 +9295,8 @@
 	NOT-FOR-US: VMware
 CVE-2012-5054 (Integer overflow in the copyRawDataTo method in the Matrix3D class in ...)
 	NOT-FOR-US: Adobe Flash player
-CVE-2012-5053
-	RESERVED
+CVE-2012-5053 (Cross-site scripting (XSS) vulnerability in the Receiver Web User ...)
+	TODO: check
 CVE-2012-5052
 	RESERVED
 CVE-2012-5051 (Directory traversal vulnerability in VMware CapacityIQ 1.5.x allows ...)
@@ -24346,8 +24380,7 @@
 	NOTE: https://support.process-one.net/browse/EJAB-1498
 CVE-2011-4319 (Cross-site scripting (XSS) vulnerability in the i18n translations ...)
 	- rails <not-affected> (Only affects RoR 3.0 and above)
-CVE-2011-4318
-	RESERVED
+CVE-2011-4318 (Dovecot 2.0.x before 2.0.16, when ssl or starttls is enabled and ...)
 	- dovecot <unfixed> (unimportant; bug #649511)
 	NOTE: Additional hardening
 CVE-2011-4317 (The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, ...)


