[Secure-testing-commits] r22405 - data/CVE

Joey Hess joeyh at alioth.debian.org
Wed May 29 21:14:29 UTC 2013


Author: joeyh
Date: 2013-05-29 21:14:29 +0000 (Wed, 29 May 2013)
New Revision: 22405

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-05-29 20:57:11 UTC (rev 22404)
+++ data/CVE/list	2013-05-29 21:14:29 UTC (rev 22405)
@@ -1,3 +1,11 @@
+CVE-2013-3685
+	RESERVED
+CVE-2013-3684
+	RESERVED
+CVE-2013-3683
+	RESERVED
+CVE-2013-3682
+	RESERVED
 CVE-2013-3681
 	RESERVED
 CVE-2013-3680
@@ -28,8 +36,8 @@
 	RESERVED
 CVE-2013-3667
 	RESERVED
-CVE-2013-3666
-	RESERVED
+CVE-2013-3666 (The LG Hidden Menu component for Android on the LG Optimus G E973 ...)
+	TODO: check
 CVE-2013-3665
 	RESERVED
 CVE-2013-3664
@@ -303,6 +311,7 @@
 	RESERVED
 CVE-2013-3551
 	RESERVED
+	{DSA-2696-1}
 	- otrs2 3.2.7-1
 	[squeeze] - otrs2 <not-affected>
 CVE-2013-3550
@@ -1508,8 +1517,8 @@
 	RESERVED
 CVE-2013-2990
 	RESERVED
-CVE-2013-2989
-	RESERVED
+CVE-2013-2989 (The file-copying functionality in IBM Sterling Connect:Direct 3.8.00, ...)
+	TODO: check
 CVE-2013-2988
 	RESERVED
 CVE-2013-2987
@@ -3527,6 +3536,7 @@
 	- cgit <itp> (bug #515793)
 CVE-2013-2116
 	RESERVED
+	{DSA-2697-1}
 	- gnutls26 2.12.23-5 (bug #709301)
 	[squeeze] - gnutls26 <not-affected> (vulnerable code not backported)
 CVE-2013-2115 [incomplete fix for CVE-2013-1966]
@@ -3701,8 +3711,7 @@
 	RESERVED
 	- nginx 1.4.1-1 (bug #708164)
 	[squeeze] - nginx <not-affected> (Vulnerable code not present)
-CVE-2013-2069
-	RESERVED
+CVE-2013-2069 (Red Hat livecd-tools before 13.4.4, 17.x before 17.17, 18.x before ...)
 	NOT-FOR-US: Red Hat livecd-tools
 	NOTE: http://www.openwall.com/lists/oss-security/2013/05/23/2
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=964299
@@ -4092,8 +4101,7 @@
 	RESERVED
 	- owncloud <not-affected> (Vulnerable code not present)
 	NOTE: oC >= 4.5 only
-CVE-2013-1962 [DoS (max count of open files exhaustion) due sockets leak in the storage pool]
-	RESERVED
+CVE-2013-1962 (The remoteDispatchStoragePoolListAllVolumes function in the storage ...)
 	- libvirt <not-affected> (Vulnerable code not present)
 	NOTE: http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=ca697e90d5bd6a6dfb94bfb6d4438bdf9a44b739
 CVE-2013-1961 [libtiff-tools: Stack-based buffer overflow with malformed image-length and resolution]
@@ -7685,8 +7693,8 @@
 	[squeeze] - lemonldap-ng <not-affected> (SAML code not present)
 CVE-2013-0600 (Unspecified vulnerability on IBM WebSphere DataPower XC10 Appliance ...)
 	NOT-FOR-US: IBM WebSphere DataPower XC10 Appliance devices
-CVE-2013-0599
-	RESERVED
+CVE-2013-0599 (IBM Eclipse Help System (IEHS), as used in IBM Rational Directory ...)
+	TODO: check
 CVE-2013-0598
 	RESERVED
 CVE-2013-0597
@@ -7731,8 +7739,8 @@
 	NOT-FOR-US: IBM
 CVE-2013-0577
 	RESERVED
-CVE-2013-0576
-	RESERVED
+CVE-2013-0576 (Cross-site scripting (XSS) vulnerability in the Tivoli Enterprise ...)
+	TODO: check
 CVE-2013-0575
 	RESERVED
 CVE-2013-0574
@@ -7885,8 +7893,8 @@
 	NOT-FOR-US: IBM Cognos Disclosure Management
 CVE-2013-0500
 	RESERVED
-CVE-2013-0499
-	RESERVED
+CVE-2013-0499 (Cross-site scripting (XSS) vulnerability in the echo functionality on ...)
+	TODO: check
 CVE-2013-0498
 	RESERVED
 CVE-2013-0497
@@ -7919,8 +7927,8 @@
 	RESERVED
 CVE-2013-0483 (The login component in SOAP Gateway in IBM IMS Enterprise Suite 1.1, ...)
 	NOT-FOR-US: IBM IMS Enterprise Suite
-CVE-2013-0482
-	RESERVED
+CVE-2013-0482 (IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before ...)
+	TODO: check
 CVE-2013-0481
 	RESERVED
 CVE-2013-0480
@@ -25105,8 +25113,7 @@
 	RESERVED
 CVE-2003-1598
 	RESERVED
-CVE-2002-2443 [kpasswd UDP ping-pong]
-	RESERVED
+CVE-2002-2443 (schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) ...)
 	- krb5 1.10.1+dfsg-6 (bug #708267)
 	NOTE: http://krbdev.mit.edu/rt/Ticket/Display.html?id=7637
 	NOTE: https://github.com/krb5/krb5/commit/cf1a0c411b2668c57c41e9c4efd15ba17b6b322c




More information about the Secure-testing-commits mailing list