[Secure-testing-commits] r21742 - data/CVE

Joey Hess joeyh at alioth.debian.org
Mon Mar 25 21:14:28 UTC 2013 

Author: joeyh
Date: 2013-03-25 21:14:28 +0000 (Mon, 25 Mar 2013)
New Revision: 21742

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-03-25 20:31:38 UTC (rev 21741)
+++ data/CVE/list	2013-03-25 21:14:28 UTC (rev 21742)
@@ -1,3 +1,99 @@
+CVE-2013-2684
+	RESERVED
+CVE-2013-2683
+	RESERVED
+CVE-2013-2682
+	RESERVED
+CVE-2013-2681
+	RESERVED
+CVE-2013-2680
+	RESERVED
+CVE-2013-2679
+	RESERVED
+CVE-2013-2678
+	RESERVED
+CVE-2013-2677
+	RESERVED
+CVE-2013-2676
+	RESERVED
+CVE-2013-2675
+	RESERVED
+CVE-2013-2674
+	RESERVED
+CVE-2013-2673
+	RESERVED
+CVE-2013-2672
+	RESERVED
+CVE-2013-2671
+	RESERVED
+CVE-2013-2670
+	RESERVED
+CVE-2013-2669
+	RESERVED
+CVE-2013-2668
+	RESERVED
+CVE-2013-2667
+	RESERVED
+CVE-2013-2666
+	RESERVED
+CVE-2013-2665
+	RESERVED
+CVE-2013-2664
+	RESERVED
+CVE-2013-2663
+	RESERVED
+CVE-2013-2662
+	RESERVED
+CVE-2013-2661
+	RESERVED
+CVE-2013-2660
+	RESERVED
+CVE-2013-2659
+	RESERVED
+CVE-2013-2658
+	RESERVED
+CVE-2013-2657
+	RESERVED
+CVE-2013-2656
+	RESERVED
+CVE-2013-2655
+	RESERVED
+CVE-2013-2654
+	RESERVED
+CVE-2013-2653
+	RESERVED
+CVE-2013-2652
+	RESERVED
+CVE-2013-2651
+	RESERVED
+CVE-2013-2650
+	RESERVED
+CVE-2013-2649
+	RESERVED
+CVE-2013-2648
+	RESERVED
+CVE-2013-2647
+	RESERVED
+CVE-2013-2646
+	RESERVED
+CVE-2013-2645
+	RESERVED
+CVE-2013-2644
+	RESERVED
+CVE-2013-2643
+	RESERVED
+CVE-2013-2642
+	RESERVED
+CVE-2013-2641
+	RESERVED
+CVE-2013-2640 (ajax.functions.php in the MailUp plugin before 1.3.2 for WordPress ...)
+	TODO: check
+CVE-2013-2639
+	RESERVED
+CVE-2013-2638
+	RESERVED
+CVE-2013-2637
+	RESERVED
 CVE-2013-2636 (net/bridge/br_mdb.c in the Linux kernel before 3.8.4 does not ...)
 	- linux <unfixed>
 	- linux-2.6 <removed>
@@ -329,8 +425,8 @@
 	NOTE: http://ijbswa.cvs.sourceforge.net/viewvc/ijbswa/current/ChangeLog?revision=1.188&view=markup
 CVE-2013-2502
 	RESERVED
-CVE-2013-2501
-	RESERVED
+CVE-2013-2501 (Cross-site scripting (XSS) vulnerability in the Terillion Reviews ...)
+	TODO: check
 CVE-2013-2500
 	RESERVED
 CVE-2013-2499
@@ -1709,8 +1805,7 @@
 	RESERVED
 CVE-2013-1866
 	RESERVED
-CVE-2013-1865 [Keystone PKI tokens online validation bypasses revocation check]
-	RESERVED
+CVE-2013-1865 (OpenStack Keystone Folsom (2012.2) does not properly perform ...)
 	- keystone <not-affected> (only affects folsom)
 	NOTE: fixed in experimental with keystone/2012.2.3-2
 CVE-2013-1864 [Ekiga billion laughs flaw in ptlib]
@@ -1803,16 +1898,14 @@
 	- libnet-server-perl <unfixed> (low; bug #702914)
 	[squeeze] - libnet-server-perl <no-dsa> (Minor issue)
 	NOTE: https://rt.cpan.org/Ticket/Display.html?id=83909
-CVE-2013-1840 [Backend credentials leak in Glance v1 API]
-	RESERVED
+CVE-2013-1840 (The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and ...)
 	- glance 2012.1.1-5 (bug #703063)
 CVE-2013-1839 [DoS (loop, 100% cpu) strHdrAcptLangGetItem() at errorpage.cc]
 	RESERVED
 	- squid3 <not-affected> (the errors were introduced in trunk rev.11496 in 3.2.0.9)
 	NOTE: According to http://seclists.org/bugtraq/2013/Mar/68 not affecting 3.1?
 	NOTE: http://bazaar.launchpad.net/~squid/squid/3.2/revision/11796
-CVE-2013-1838 [Nova DoS by allocating all Fixed IPs]
-	RESERVED
+CVE-2013-1838 (OpenStack Nova Grizzly, Folsom (2012.2), and Essex (2012.1) does not ...)
 	- nova 2012.1.1-15 (bug #703064)
 CVE-2013-1837
 	RESERVED
@@ -1861,6 +1954,7 @@
 	REJECTED
 CVE-2013-1824
 	RESERVED
+	{DSA-2639-1}
 	- php5 5.4.4-14
 	NOTE: See CVE-2013-1643
 	NOTE: http://git.php.net/?p=web/php.git;a=commitdiff;h=e8432b34ee7a196a14a6e0191a00fe73b5a095e7
@@ -4470,8 +4564,8 @@
 	RESERVED
 CVE-2013-0732
 	RESERVED
-CVE-2013-0731
-	RESERVED
+CVE-2013-0731 (ajax.functions.php in the MailUp plugin before 1.3.3 for WordPress ...)
+	TODO: check
 CVE-2013-0730 (Multiple cross-site scripting (XSS) vulnerabilities in Newscoop 4.x ...)
 	NOT-FOR-US: Newscoop
 CVE-2013-0729
@@ -5695,8 +5789,7 @@
 	[wheezy] - nginx <no-dsa> (Minor issue)
 CVE-2013-0336
 	RESERVED
-CVE-2013-0335 [VNC proxy can connect to the wrong VM]
-	RESERVED
+CVE-2013-0335 (OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) ...)
 	- nova 2012.1.1-14 (bug #701773)
 CVE-2013-0334
 	RESERVED

More information about the Secure-testing-commits mailing list