[Secure-testing-commits] r22274 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed May 15 21:14:35 UTC 2013 

Author: joeyh
Date: 2013-05-15 21:14:34 +0000 (Wed, 15 May 2013)
New Revision: 22274

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-05-15 20:59:12 UTC (rev 22273)
+++ data/CVE/list	2013-05-15 21:14:34 UTC (rev 22274)
@@ -2139,7 +2139,7 @@
 	NOT-FOR-US: Windows 7
 CVE-2013-2552 (Unspecified vulnerability in Microsoft Internet Explorer 10 on Windows ...)
 	NOT-FOR-US: Internet Explorer
-CVE-2013-2551 (Unspecified vulnerability in Microsoft Internet Explorer 10 on Windows ...)
+CVE-2013-2551 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
 	NOT-FOR-US: Internet Explorer
 CVE-2013-2550 (Unspecified vulnerability in Adobe Reader 11.0.02 allows attackers to ...)
 	NOT-FOR-US: Adobe Reader
@@ -3203,8 +3203,7 @@
 	RESERVED
 CVE-2013-2095
 	RESERVED
-CVE-2013-2094 [out-of-bounds access of the perf_swevent_enabled array]
-	RESERVED
+CVE-2013-2094 (The perf_swevent_init function in kernel/events/core.c in the Linux ...)
 	- linux 3.8.11-1
 	[squeeze] - linux-2.6 <not-affected> (Vulnerable code not present)
 CVE-2013-2093
@@ -5353,8 +5352,8 @@
 	RESERVED
 CVE-2013-1347 (Microsoft Internet Explorer 8 does not properly handle objects in ...)
 	NOT-FOR-US: Microsoft Internet Explorer
-CVE-2013-1346
-	RESERVED
+CVE-2013-1346 (mpengine.dll in Microsoft Malware Protection Engine before 1.1.9506.0 ...)
+	TODO: check
 CVE-2013-1345
 	RESERVED
 CVE-2013-1344
@@ -5371,88 +5370,88 @@
 	RESERVED
 CVE-2013-1338 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
 	NOT-FOR-US: Microsoft Internet Explorer
-CVE-2013-1337
-	RESERVED
-CVE-2013-1336
-	RESERVED
-CVE-2013-1335
-	RESERVED
-CVE-2013-1334
-	RESERVED
-CVE-2013-1333
-	RESERVED
-CVE-2013-1332
-	RESERVED
+CVE-2013-1337 (Microsoft .NET Framework 4.5 does not properly create policy ...)
+	TODO: check
+CVE-2013-1336 (The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP2, ...)
+	TODO: check
+CVE-2013-1335 (Microsoft Word 2003 SP3 and Word Viewer allow remote attackers to ...)
+	TODO: check
+CVE-2013-1334 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
+	TODO: check
+CVE-2013-1333 (Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft ...)
+	TODO: check
+CVE-2013-1332 (dxgkrnl.sys (aka the DirectX graphics kernel subsystem) in the ...)
+	TODO: check
 CVE-2013-1331
 	RESERVED
 CVE-2013-1330
 	RESERVED
-CVE-2013-1329
-	RESERVED
-CVE-2013-1328
-	RESERVED
-CVE-2013-1327
-	RESERVED
+CVE-2013-1329 (Integer signedness error in Microsoft Publisher 2003 SP3 allows remote ...)
+	TODO: check
+CVE-2013-1328 (Microsoft Publisher 2003 SP3, 2007 SP3, and 2010 SP1 allows remote ...)
+	TODO: check
+CVE-2013-1327 (Integer signedness error in Microsoft Publisher 2003 SP3 allows remote ...)
+	TODO: check
 CVE-2013-1326
 	RESERVED
 CVE-2013-1325
 	RESERVED
 CVE-2013-1324
 	RESERVED
-CVE-2013-1323
-	RESERVED
-CVE-2013-1322
-	RESERVED
-CVE-2013-1321
-	RESERVED
-CVE-2013-1320
-	RESERVED
-CVE-2013-1319
-	RESERVED
-CVE-2013-1318
-	RESERVED
-CVE-2013-1317
-	RESERVED
-CVE-2013-1316
-	RESERVED
+CVE-2013-1323 (Microsoft Publisher 2003 SP3 does not properly handle NULL values for ...)
+	TODO: check
+CVE-2013-1322 (Microsoft Publisher 2003 SP3 does not properly check table range data, ...)
+	TODO: check
+CVE-2013-1321 (Microsoft Publisher 2003 SP3 does not properly check the data type of ...)
+	TODO: check
+CVE-2013-1320 (Buffer overflow in Microsoft Publisher 2003 SP3 allows remote ...)
+	TODO: check
+CVE-2013-1319 (Microsoft Publisher 2003 SP3 does not properly check the return value ...)
+	TODO: check
+CVE-2013-1318 (Microsoft Publisher 2003 SP3 allows remote attackers to execute ...)
+	TODO: check
+CVE-2013-1317 (Integer overflow in Microsoft Publisher 2003 SP3 allows remote ...)
+	TODO: check
+CVE-2013-1316 (Microsoft Publisher 2003 SP3 does not properly validate the size of an ...)
+	TODO: check
 CVE-2013-1315
 	RESERVED
 CVE-2013-1314
 	RESERVED
 CVE-2013-1313 (Object Linking and Embedding (OLE) Automation in Microsoft Windows XP ...)
 	NOT-FOR-US: Microsoft Windows XP
-CVE-2013-1312
-	RESERVED
-CVE-2013-1311
-	RESERVED
-CVE-2013-1310
-	RESERVED
-CVE-2013-1309
-	RESERVED
-CVE-2013-1308
-	RESERVED
-CVE-2013-1307
-	RESERVED
-CVE-2013-1306
-	RESERVED
-CVE-2013-1305
-	RESERVED
+CVE-2013-1312 (Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 ...)
+	TODO: check
+CVE-2013-1311 (Use-after-free vulnerability in Microsoft Internet Explorer 8 allows ...)
+	TODO: check
+CVE-2013-1310 (Use-after-free vulnerability in Microsoft Internet Explorer 6 and 7 ...)
+	TODO: check
+CVE-2013-1309 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
+	TODO: check
+CVE-2013-1308 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
+	TODO: check
+CVE-2013-1307 (Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 ...)
+	TODO: check
+CVE-2013-1306 (Use-after-free vulnerability in Microsoft Internet Explorer 9 allows ...)
+	TODO: check
+CVE-2013-1305 (HTTP.sys in Microsoft Windows 8, Windows Server 2012, and Windows RT ...)
+	TODO: check
 CVE-2013-1304 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
 	NOT-FOR-US: Microsoft Internet Explorer
 CVE-2013-1303 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)
 	NOT-FOR-US: Microsoft Internet Explorer
-CVE-2013-1302
-	RESERVED
-CVE-2013-1301
-	RESERVED
+CVE-2013-1302 (Microsoft Communicator 2007 R2, Lync 2010, Lync 2010 Attendee, and ...)
+	TODO: check
+CVE-2013-1301 (Microsoft Visio 2003 SP3 2007 SP3, and 2010 SP1 allows remote ...)
+	TODO: check
 CVE-2013-1300
 	RESERVED
 CVE-2013-1299 (Microsoft Windows Modern Mail allows remote attackers to spoof link ...)
 	NOT-FOR-US: Microsoft Windows Modern Mail
 CVE-2013-1298
 	RESERVED
-CVE-2013-1297
-	RESERVED
+CVE-2013-1297 (Microsoft Internet Explorer 6 through 8 does not properly restrict ...)
+	TODO: check
 CVE-2013-1296 (The Remote Desktop ActiveX control in mstscax.dll in Microsoft Remote ...)
 	NOT-FOR-US: Microsoft Remote Desktop Connection Client
 CVE-2013-1295 (The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows XP ...)
@@ -6456,8 +6455,8 @@
 	RESERVED
 CVE-2013-0812
 	RESERVED
-CVE-2013-0811
-	RESERVED
+CVE-2013-0811 (Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 ...)
+	TODO: check
 CVE-2013-0810
 	RESERVED
 CVE-2013-0809 (Unspecified vulnerability in the 2D component in the Java Runtime ...)
@@ -9410,8 +9409,8 @@
 	RESERVED
 CVE-2013-0097
 	RESERVED
-CVE-2013-0096
-	RESERVED
+CVE-2013-0096 (Writer in Microsoft Windows Essentials 2011 and 2012 allows remote ...)
+	TODO: check
 CVE-2013-0095 (Outlook in Microsoft Office for Mac 2008 before 12.3.6 and Office for ...)
 	NOT-FOR-US: Outlook in Microsoft Office for Mac
 CVE-2013-0094 (Use-after-free vulnerability in Microsoft Internet Explorer 6 through ...)

More information about the Secure-testing-commits mailing list