[Secure-testing-commits] r22361 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Sat May 25 08:58:27 UTC 2013
Author: carnil
Date: 2013-05-25 08:58:26 +0000 (Sat, 25 May 2013)
New Revision: 22361
Modified:
data/CVE/list
Log:
- various NFU, elgg ITP
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-05-24 21:25:27 UTC (rev 22360)
+++ data/CVE/list 2013-05-25 08:58:26 UTC (rev 22361)
@@ -1,25 +1,25 @@
CVE-2012-6563 (engine/lib/access.php in Elgg before 1.8.5 does not properly clear ...)
- TODO: check
+ - elgg <itp> (bug #526197)
CVE-2012-6562 (engine/lib/users.php in Elgg before 1.8.5 does not properly specify ...)
- TODO: check
+ - elgg <itp> (bug #526197)
CVE-2012-6561 (Cross-site scripting (XSS) vulnerability in engine/lib/views.php in ...)
- TODO: check
+ - elgg <itp> (bug #526197)
CVE-2012-6560 (SQL injection vulnerability in deviceadd.php in FreeNAC 3.02 allows ...)
- TODO: check
+ NOT-FOR-US: FreeNAC
CVE-2012-6559 (Multiple cross-site scripting (XSS) vulnerabilities in FreeNAC 3.02 ...)
- TODO: check
+ NOT-FOR-US: FreeNAC
CVE-2012-6558 (Heap-based buffer overflow in HeavenTools PE Explorer 1.99 R6 allows ...)
- TODO: check
+ NOT-FOR-US: HeavenTools PE Explorer
CVE-2012-6557 (Multiple cross-site scripting (XSS) vulnerabilities in the AboutMe ...)
- TODO: check
+ NOT-FOR-US: Vanilla Forums
CVE-2012-6556 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Vanilla Forums
CVE-2012-6555 (Cross-site scripting (XSS) vulnerability in the LatestComment plugin ...)
- TODO: check
+ NOT-FOR-US: Vanilla Forums
CVE-2012-6554 (functions/html_to_text.php in the Chat module before 1.5.2 for ...)
- TODO: check
+ NOT-FOR-US: activeCollab
CVE-2012-6553 (Heap-based buffer overflow in Resource Hacker 3.6.0.92 allows remote ...)
- TODO: check
+ NOT-FOR-US: Resource Hacker
CVE-2013-3659
RESERVED
CVE-2013-3658
@@ -375,7 +375,7 @@
CVE-2013-3497 (Juniper Junos Space before 12.3P2.8, as used on the JA1500 appliance ...)
NOT-FOR-US: Juniper
CVE-2013-3496 (Infotecs ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator ...)
- TODO: check
+ NOT-FOR-US: Infotecs ViPNet Client
CVE-2013-3495
RESERVED
CVE-2013-3494
@@ -1886,7 +1886,7 @@
CVE-2013-2782
RESERVED
CVE-2013-2781 (Use-after-free vulnerability in the server application in 3S CODESYS ...)
- TODO: check
+ NOT-FOR-US: 3S CODESYS Gateway
CVE-2013-2780 (Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to ...)
NOT-FOR-US: Siemens SIMATIC
CVE-2013-2779 (Cisco IOS XE 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on ...)
@@ -6080,7 +6080,7 @@
CVE-2013-1205
RESERVED
CVE-2013-1204 (Memory leak in the SNMP process in Cisco IOS XR allows remote ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS XR
CVE-2013-1203
RESERVED
CVE-2013-1202
@@ -6448,79 +6448,79 @@
CVE-2013-1023
RESERVED
CVE-2013-1022 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1021 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1020 (Apple QuickTime before 7.7.4 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1019 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1018 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1017 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1016 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1015 (Apple QuickTime before 7.7.4 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-1014 (Apple iTunes before 11.0.3 does not properly verify X.509 ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1013
RESERVED
CVE-2013-1012
RESERVED
CVE-2013-1011 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1010 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1009
RESERVED
CVE-2013-1008 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1007 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1006 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1005 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1004 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1003 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1002 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1001 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-1000 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0999 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0998 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0997 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0996 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0995 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0994 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0993 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0992 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0991 (WebKit, as used in Apple iTunes before 11.0.3, allows ...)
- TODO: check
+ NOT-FOR-US: Apple iTunes
CVE-2013-0990
RESERVED
CVE-2013-0989 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-0988 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-0987 (Apple QuickTime before 7.7.4 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-0986 (Buffer overflow in Apple QuickTime before 7.7.4 allows remote ...)
- TODO: check
+ NOT-FOR-US: Apple QuickTime
CVE-2013-0985
RESERVED
CVE-2013-0984
@@ -6608,9 +6608,9 @@
CVE-2013-0943
RESERVED
CVE-2013-0942 (Cross-site scripting (XSS) vulnerability in EMC RSA Authentication ...)
- TODO: check
+ NOT-FOR-US: EMC RSA Authentication Agent
CVE-2013-0941 (EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 ...)
- TODO: check
+ NOT-FOR-US: EMC
CVE-2013-0940 (The nsrpush process in the client in EMC NetWorker before 7.6.5.3 and ...)
NOT-FOR-US: EMC NetWorker
CVE-2013-0939 (EMC Documentum Webtop before 6.7 SP2, Documentum WDK before 6.7 SP2, ...)
@@ -9020,7 +9020,7 @@
CVE-2013-0146
RESERVED
CVE-2013-0145 (Buffer overflow in the TFTPD service in Serva32 2.1.0 allows remote ...)
- TODO: check
+ NOT-FOR-US: Serva32
CVE-2013-0144
RESERVED
CVE-2013-0143
@@ -13606,7 +13606,7 @@
CVE-2012-4698 (Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS ...)
NOT-FOR-US: Siemens RuggedCom Rugged Operating System
CVE-2012-4697 (TURCK BL20 Programmable Gateway and BL67 Programmable Gateway have ...)
- TODO: check
+ NOT-FOR-US: TURCK Programmable Gateway
CVE-2012-4696 (Buffer overflow in Beijer ADP 6.5.0-180_R1967 and 6.5.1-186_R2942, and ...)
NOT-FOR-US: Beijer
CVE-2012-4695 (LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, ...)
@@ -27134,11 +27134,11 @@
CVE-2011-4521 (SQL injection vulnerability in Advantech/BroadWin WebAccess before 7.0 ...)
NOT-FOR-US: Advantech/BroadWin WebAccess
CVE-2011-4520 (Heap-based buffer overflow in an ActiveX component in MICROSYS ...)
- TODO: check
+ NOT-FOR-US: MICROSYS PROMOTIC
CVE-2011-4519 (Stack-based buffer overflow in an ActiveX component in MICROSYS ...)
- TODO: check
+ NOT-FOR-US: MICROSYS PROMOTIC
CVE-2011-4518 (Directory traversal vulnerability in the PmWebDir object in the web ...)
- TODO: check
+ NOT-FOR-US: MICROSYS PROMOTIC
CVE-2011-4517 (The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer ...)
{DSA-2371-1}
- jasper 1.900.1-13 (bug #652649)
More information about the Secure-testing-commits
mailing list