[Secure-testing-commits] r24070 - data/CVE

Joey Hess joeyh at alioth.debian.org
Fri Oct 18 21:14:26 UTC 2013 

Author: joeyh
Date: 2013-10-18 21:14:25 +0000 (Fri, 18 Oct 2013)
New Revision: 24070

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-10-18 19:45:20 UTC (rev 24069)
+++ data/CVE/list	2013-10-18 21:14:25 UTC (rev 24070)
@@ -5427,6 +5427,7 @@
 	NOT-FOR-US: Oracle Siebel CRM
 CVE-2013-3839
 	RESERVED
+	{DSA-2780-1}
 	- mysql-5.5 <unfixed>
 	- mysql-5.1 <unfixed>
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
@@ -5513,6 +5514,7 @@
 	- mysql-5.1 <not-affected> (Only affects 5.5 and 5.6)
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
 CVE-2013-3808 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.31
 	- mysql-5.1 <removed>
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
@@ -5529,12 +5531,14 @@
 	- mysql-5.1 <not-affected> (Only affects Mysql 5.5 and 5.6)
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
 CVE-2013-3804 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.33+dfsg-1
 	- mysql-5.1 <removed>
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
 CVE-2013-3803 (Unspecified vulnerability in the Hyperion BI+ component in Oracle ...)
 	NOT-FOR-US: Oracle Hyperion
 CVE-2013-3802 (Unspecified vulnerability in the MySQL Server component in Oracle ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.33+dfsg-1
 	- mysql-5.1 <removed>
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
@@ -8996,17 +9000,17 @@
 CVE-2013-2393 (Unspecified vulnerability in the Oracle Outside In Technology ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-2392 (Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 ...)
-	{DSA-2667-1}
+	{DSA-2780-1 DSA-2667-1}
 	- mysql-5.5 5.5.31+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-2391 (Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 ...)
-	{DSA-2667-1}
+	{DSA-2780-1 DSA-2667-1}
 	- mysql-5.5 5.5.31+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-2390 (Unspecified vulnerability in the Oracle WebLogic Server component in ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-2389 (Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 ...)
-	{DSA-2667-1}
+	{DSA-2780-1 DSA-2667-1}
 	- mysql-5.5 5.5.31+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-2388 (Unspecified vulnerability in the Oracle Applications Technology Stack ...)
@@ -9033,6 +9037,7 @@
 CVE-2013-2379 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2013-2378 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier, 5.5.29 ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-2377 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
@@ -9042,7 +9047,7 @@
 	- mysql-5.5 5.5.31+dfsg-1
 	- mysql-5.1 <not-affected> (Only affects MySQL 5.5 and 5.6)
 CVE-2013-2375 (Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 ...)
-	{DSA-2667-1}
+	{DSA-2780-1 DSA-2667-1}
 	- mysql-5.5 5.5.31+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-2374 (Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...)
@@ -10673,6 +10678,7 @@
 	- apache2 2.4.1-1 (unimportant)
 	NOTE: Such injection issues are not treated as security issues
 CVE-2013-1861 (MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.33+dfsg-1 (low; bug #706715)
 	- mysql-5.1 <removed> (low; bug #706715)
 	NOTE: https://mariadb.atlassian.net/browse/MDEV-4252
@@ -11767,6 +11773,7 @@
 CVE-2013-1556 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2013-1555 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier, and ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1554 (Unspecified vulnerability in the Network Layer component in Oracle ...)
@@ -11774,6 +11781,7 @@
 CVE-2013-1553 (Unspecified vulnerability in the Oracle Web Services Manager component ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-1552 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier and ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1551 (Unspecified vulnerability in the Siebel Enterprise Application ...)
@@ -11783,6 +11791,7 @@
 CVE-2013-1549 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2013-1548 (Unspecified vulnerability in Oracle MySQL 5.1.63 and earlier allows ...)
+	{DSA-2780-1}
 	- mysql-5.5 <not-affected> (Only affects MySQL 5.1)
 	- mysql-5.1 <removed>
 CVE-2013-1547 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
@@ -11792,7 +11801,7 @@
 CVE-2013-1545 (Unspecified vulnerability in the Oracle HTTP Server component in ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-1544 (Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 ...)
-	{DSA-2667-1}
+	{DSA-2780-1 DSA-2667-1}
 	- mysql-5.5 5.5.31+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1543 (Unspecified vulnerability in the Siebel UI Framework component in ...)
@@ -11820,10 +11829,11 @@
 CVE-2013-1533 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle financial Services Software
 CVE-2013-1532 (Unspecified vulnerability in Oracle MySQL 5.1.68 and earlier, 5.5.30 ...)
-	{DSA-2667-1}
+	{DSA-2780-1 DSA-2667-1}
 	- mysql-5.5 5.5.31+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1531 (Unspecified vulnerability in Oracle MySQL 5.1.66 and earlier and ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1530 (Unspecified vulnerability in Oracle Sun Solaris 10 allows local users ...)
@@ -11847,6 +11857,7 @@
 CVE-2013-1522 (Unspecified vulnerability in the Oracle WebCenter Content component in ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2013-1521 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier and ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1520 (Unspecified vulnerability in the Oracle Clinical Remote Data Capture ...)
@@ -11882,6 +11893,7 @@
 CVE-2013-1507 (Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local ...)
 	NOT-FOR-US: Solaris
 CVE-2013-1506 (Unspecified vulnerability in Oracle MySQL 5.1.67 and earlier, 5.5.29 ...)
+	{DSA-2780-1}
 	- mysql-5.5 5.5.30+dfsg-1
 	- mysql-5.1 <removed>
 CVE-2013-1505 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
@@ -11916,6 +11928,7 @@
 	- openjdk-6 6b27-1.12.4-1
 	- openjdk-7 7u3-2.1.7-1
 CVE-2013-1492 (Buffer overflow in yaSSL, as used in MySQL 5.1.x before 5.1.68 and ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed> (bug #712059)
 	- mysql-5.5 5.5.30+dfsg-1
 	- cyassl <itp> (bug #598391)
@@ -12100,8 +12113,9 @@
 CVE-2013-1446
 	RESERVED
 CVE-2013-1445 [python-crypto PRNG not correctly reseeded in some situation]
+	RESERVED
+	{DSA-2781-1}
 	- python-crypto 2.6.1-1
-	RESERVED
 CVE-2013-1444 (A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, ...)
 	- txt2man 1.5.5-4.1 (bug #724614)
 	[wheezy] - txt2man <no-dsa> (Minor issue)
@@ -15159,6 +15173,7 @@
 CVE-2013-0390 (Unspecified vulnerability in the Oracle Applications Framework ...)
 	NOT-FOR-US: Oracle Applications Framework
 CVE-2013-0389 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2013-0388 (Unspecified vulnerability in the PeopleSoft HRMS component in Oracle ...)
@@ -15169,12 +15184,15 @@
 	- mysql-5.1 <not-affected> (Only affects 5.5)
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2013-0385 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2013-0384 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2013-0383 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2013-0382 (Unspecified vulnerability in the Oracle Marketing component in Oracle ...)
@@ -15192,6 +15210,7 @@
 CVE-2013-0376 (Unspecified vulnerability in the Oracle Applications Framework ...)
 	NOT-FOR-US: Oracle E Business suite
 CVE-2013-0375 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2013-0374 (Unspecified vulnerability in the Enterprise Manager Base Platform ...)
@@ -19544,6 +19563,7 @@
 CVE-2012-5061 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-5060 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2012-5059 (Unspecified vulnerability in the PeopleSoft PeopleTools component in ...)
@@ -25806,6 +25826,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2012/06/22/1
 	NOTE: http://www.openwall.com/lists/oss-security/2012/06/22/2
 CVE-2012-2750 (Unspecified vulnerability in MySQL 5.5.x before 5.5.23 has unknown ...)
+	{DSA-2780-1}
 	- mysql-5.5 <unfixed>
 	- mysql-5.1 <unfixed>
 	NOTE: http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
@@ -28543,6 +28564,7 @@
 CVE-2012-1706 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-1705 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2012-1704 (Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...)
@@ -28552,6 +28574,7 @@
 	- mysql-5.1 5.1.62-1 (bug #670636)
 	- mysql-5.5 5.5.23-1
 CVE-2012-1702 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2012-1701 (Unspecified vulnerability in the Siebel CRM component in Oracle Siebel ...)
@@ -31242,11 +31265,13 @@
 CVE-2012-0575 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0574 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2012-0573 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
 	NOT-FOR-US: Oracle Financial Services Software
 CVE-2012-0572 (Unspecified vulnerability in the Server component in Oracle MySQL ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed>
 	- mysql-5.5 5.5.29+dfsg-1
 CVE-2012-0571 (Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking ...)
@@ -31286,6 +31311,7 @@
 CVE-2012-0554 (Unspecified vulnerability in the Oracle Outside In Technology ...)
 	NOT-FOR-US: Oracle Fusion Middleware
 CVE-2012-0553 (Buffer overflow in yaSSL, as used in MySQL 5.1.x before 5.1.68 and ...)
+	{DSA-2780-1}
 	- mysql-5.1 <removed> (bug #712059)
 	- mysql-5.5 5.5.28+dfsg-1
 	- cyassl <itp> (bug #598391)

More information about the Secure-testing-commits mailing list