[Secure-testing-commits] r23644 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Sep 12 19:24:29 UTC 2013
Author: carnil
Date: 2013-09-12 19:24:28 +0000 (Thu, 12 Sep 2013)
New Revision: 23644
Modified:
data/CVE/list
Log:
Do another manual update syncing CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-09-12 19:16:43 UTC (rev 23643)
+++ data/CVE/list 2013-09-12 19:24:28 UTC (rev 23644)
@@ -1,3 +1,37 @@
+CVE-2013-5739 (The default configuration of WordPress before 3.6.1 does not prevent ...)
+ TODO: check
+CVE-2013-5738 (The get_allowed_mime_types function in wp-includes/functions.php in ...)
+ TODO: check
+CVE-2013-5737
+ RESERVED
+CVE-2013-5736
+ RESERVED
+CVE-2013-5735
+ RESERVED
+CVE-2013-5734
+ RESERVED
+CVE-2013-5733
+ RESERVED
+CVE-2013-5732
+ RESERVED
+CVE-2013-5731
+ RESERVED
+CVE-2013-5730
+ RESERVED
+CVE-2013-5729
+ RESERVED
+CVE-2013-5728
+ RESERVED
+CVE-2013-5727
+ RESERVED
+CVE-2013-5726
+ RESERVED
+CVE-2013-5725
+ RESERVED
+CVE-2013-5724 (Phpbb3 before 3.0.11-4 for Debian GNU/Linux uses world-writable ...)
+ TODO: check
+CVE-2013-5723 (SQL injection vulnerability in SAP NetWeaver 7.30 allows remote ...)
+ TODO: check
CVE-2013-5716 (Gretech GOM Media Player 2.2.53.5169 and possibly earlier allows ...)
TODO: check
CVE-2013-5715 (Buffer overflow in Gretech GOM Media Player before 2.2.53.5169 has ...)
@@ -13,22 +47,28 @@
CVE-2013-XXXX [https://www.wireshark.org/security/wnpa-sec-2013-60.html ]
- wireshark 1.10.2-1
CVE-2013-5722
+ RESERVED
- wireshark 1.10.2-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2013-59.html
CVE-2013-5721
+ RESERVED
- wireshark 1.10.2-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2013-58.html
CVE-2013-5720
+ RESERVED
- wireshark 1.10.2-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2013-57.html
CVE-2013-5719
+ RESERVED
- wireshark 1.10.2-1 (unimportant)
NOTE: Not suitable for code injection
NOTE: https://www.wireshark.org/security/wnpa-sec-2013-56.html
CVE-2013-5718
+ RESERVED
- wireshark 1.10.2-1
NOTE: https://www.wireshark.org/security/wnpa-sec-2013-55.html
CVE-2013-5717
+ RESERVED
- wireshark 1.10.2-1
[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
@@ -178,16 +218,13 @@
CVE-2013-5675
RESERVED
NOT-FOR-US: Symantec Endpoint Protection
-CVE-2013-4298 [Memory corruption while processing GIF comments]
- RESERVED
+CVE-2013-4298 (The ReadGIFImage function in coders/gif.c in ImageMagick before ...)
{DSA-2750-1}
- imagemagick 8:6.7.7.10-6 (bug #721273)
[squeeze] - imagemagick <not-affected> (Code not vulnerable)
-CVE-2013-5673 [SQL injection]
- RESERVED
+CVE-2013-5673 (SQL injection vulnerability in testimonial.php in the IndiaNIC ...)
NOT-FOR-US: IndiaNIC Testimonial plugin 2.2 for WordPress
-CVE-2013-5672 [CSRF]
- RESERVED
+CVE-2013-5672 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
NOT-FOR-US: IndiaNIC Testimonial plugin 2.2 for WordPress
CVE-2013-5671 [Remote Command Injection]
RESERVED
@@ -401,7 +438,6 @@
{DSA-2747-1}
- cacti 0.8.8b+dfsg-3
CVE-2013-5587 (Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 4.x ...)
- {DSA-2671-1 DSA-2670-1}
- request-tracker3.8 <removed>
- request-tracker4 4.0.12-2 (bug #709836)
NOTE: This is covered by the patches applied for CVE-2013-3371 in DSA-2760 and DSA-2761.
@@ -577,8 +613,8 @@
RESERVED
CVE-2013-5489
RESERVED
-CVE-2013-5488
- RESERVED
+CVE-2013-5488 (Cisco Common Services, as used in Cisco Prime LAN Management Solution ...)
+ TODO: check
CVE-2013-5487
RESERVED
CVE-2013-5486
@@ -905,8 +941,7 @@
RESERVED
CVE-2013-5325
RESERVED
-CVE-2013-5324
- RESERVED
+CVE-2013-5324 (Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 ...)
NOT-FOR-US: Adobe Flash
CVE-2013-5323 (Cross-site scripting (XSS) vulnerability in the Static Info Tables ...)
NOT-FOR-US: TYPO3 extension (Static Info Tables)
@@ -3043,16 +3078,13 @@
RESERVED
CVE-2013-4341
RESERVED
-CVE-2013-4340 [Privilege Escalation]
- RESERVED
+CVE-2013-4340 (wp-admin/includes/post.php in WordPress before 3.6.1 allows remote ...)
- wordpress 3.6.1+dfsg-1 (bug #722537)
NOTE: http://core.trac.wordpress.org/changeset/25321
-CVE-2013-4339 [Open Redirect / Insufficient Input Validation]
- RESERVED
+CVE-2013-4339 (WordPress before 3.6.1 does not properly validate URLs before use in ...)
- wordpress 3.6.1+dfsg-1 (bug #722537)
NOTE: http://core.trac.wordpress.org/changeset/25323 and http://core.trac.wordpress.org/changeset/25324
-CVE-2013-4338 [Unsafe PHP unserialization]
- RESERVED
+CVE-2013-4338 (wp-includes/functions.php in WordPress before 3.6.1 does not properly ...)
- wordpress 3.6.1+dfsg-1 (bug #722537)
NOTE: http://core.trac.wordpress.org/changeset/25325
CVE-2013-4337
@@ -3128,11 +3160,9 @@
RESERVED
CVE-2013-4309 [REJECTED]
RESERVED
-CVE-2013-4308 [LiquidThreads XSS]
- RESERVED
+CVE-2013-4308 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: Mediawiki LiquidThreads extension
-CVE-2013-4307 [Wikibase XSS]
- RESERVED
+CVE-2013-4307 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
NOT-FOR-US: Mediawiki Wikibase
CVE-2013-4306 [CheckUser CSRF bypass]
RESERVED
@@ -3217,8 +3247,7 @@
RESERVED
CVE-2013-4284
RESERVED
-CVE-2013-4283 [ns-slapd crash due to bogus DN]
- RESERVED
+CVE-2013-4283 (ns-slapd in 389 Directory Server before 1.3.0.8 allows remote ...)
- 389-ds-base <unfixed> (bug #721222)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=999634
CVE-2013-4282
@@ -3350,8 +3379,7 @@
{DSA-2744-1}
- tiff 4.0.3-3
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
-CVE-2013-4243 [gif2tiff: possible heap-based buffer overflow in readgifimage()]
- RESERVED
+CVE-2013-4243 (Heap-based buffer overflow in the readgifimage function in the ...)
- tiff <unfixed>
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2451
@@ -3401,8 +3429,7 @@
RESERVED
{DSA-2751-1}
- libmodplug 1:0.8.8.4-4 (bug #719462)
-CVE-2013-4232 [use after free]
- RESERVED
+CVE-2013-4232 (Use-after-free vulnerability in the t2p_readwrite_pdf_image function ...)
{DSA-2744-1}
- tiff 4.0.3-2 (bug #719303)
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
@@ -3606,8 +3633,7 @@
RESERVED
CVE-2013-4170
RESERVED
-CVE-2013-4169 [TOCTTOU race condition on /tmp/.X11-unix]
- RESERVED
+CVE-2013-4169 (GNOME Display Manager (gdm) before 2.21.1 allows local users to change ...)
- gdm <removed>
- gdm3 <not-affected> (Only affected older gdm < 2.21.1)
CVE-2013-4168 [start and end time fields not filtered]
@@ -4240,8 +4266,8 @@
RESERVED
CVE-2013-3935
RESERVED
-CVE-2013-3934
- RESERVED
+CVE-2013-3934 (Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as ...)
+ TODO: check
CVE-2013-3933
RESERVED
CVE-2013-3932
@@ -4366,76 +4392,57 @@
RESERVED
CVE-2013-3871
RESERVED
-CVE-2013-3870
- RESERVED
+CVE-2013-3870 (Double free vulnerability in Microsoft Outlook 2007 SP3 and 2010 SP1 ...)
NOT-FOR-US: Microsoft Outlook
CVE-2013-3869
RESERVED
-CVE-2013-3868
- RESERVED
+CVE-2013-3868 (Microsoft Active Directory Lightweight Directory Service (AD LDS) on ...)
+ TODO: check
CVE-2013-3867
RESERVED
-CVE-2013-3866
- RESERVED
+CVE-2013-3866 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft Windows
-CVE-2013-3865
- RESERVED
+CVE-2013-3865 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft Windows
-CVE-2013-3864
- RESERVED
+CVE-2013-3864 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft Windows
-CVE-2013-3863
- RESERVED
+CVE-2013-3863 (Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allow remote ...)
NOT-FOR-US: Microsoft
-CVE-2013-3862
- RESERVED
+CVE-2013-3862 (Double free vulnerability in Microsoft Windows 7 and Server 2008 R2 ...)
+ TODO: check
CVE-2013-3861
RESERVED
CVE-2013-3860
RESERVED
-CVE-2013-3859
- RESERVED
+CVE-2013-3859 (Microsoft Pinyin IME 2010, when used in conjunction with Microsoft ...)
NOT-FOR-US: Microsoft Pinyin IME
-CVE-2013-3858
- RESERVED
+CVE-2013-3858 (Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word ...)
NOT-FOR-US: Microsoft
-CVE-2013-3857
- RESERVED
+CVE-2013-3857 (Microsoft Word Automation Services in SharePoint Server 2010 SP1 and ...)
NOT-FOR-US: Microsoft
-CVE-2013-3856
- RESERVED
+CVE-2013-3856 (Microsoft Word 2003 SP3 and Word Viewer allow remote attackers to ...)
NOT-FOR-US: Microsoft
-CVE-2013-3855
- RESERVED
+CVE-2013-3855 (Microsoft Word 2003 SP3 and 2007 SP3, Office Compatibility Pack SP3, ...)
NOT-FOR-US: Microsoft
-CVE-2013-3854
- RESERVED
+CVE-2013-3854 (Microsoft Office 2007 SP3 and Word 2007 SP3 allow remote attackers to ...)
NOT-FOR-US: Microsoft
-CVE-2013-3853
- RESERVED
+CVE-2013-3853 (Microsoft Office 2007 SP3 and Word 2007 SP3 allow remote attackers to ...)
NOT-FOR-US: Microsoft
-CVE-2013-3852
- RESERVED
+CVE-2013-3852 (Microsoft Word 2003 SP3, 2007 SP3, and 2010 SP1; Office Compatibility ...)
NOT-FOR-US: Microsoft
-CVE-2013-3851
- RESERVED
+CVE-2013-3851 (Microsoft Office 2003 SP3 and 2007 SP3, Word 2003 SP3 and 2007 SP3, ...)
NOT-FOR-US: Microsoft
-CVE-2013-3850
- RESERVED
+CVE-2013-3850 (Microsoft Word 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office ...)
NOT-FOR-US: Microsoft Word
-CVE-2013-3849
- RESERVED
+CVE-2013-3849 (Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word ...)
NOT-FOR-US: Microsoft
-CVE-2013-3848
- RESERVED
+CVE-2013-3848 (Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word ...)
NOT-FOR-US: Microsoft
-CVE-2013-3847
- RESERVED
+CVE-2013-3847 (Microsoft Word Automation Services in SharePoint Server 2010 SP1, Word ...)
NOT-FOR-US: Microsoft
CVE-2013-3846
RESERVED
-CVE-2013-3845
- RESERVED
+CVE-2013-3845 (Microsoft Internet Explorer 8 and 9 allows remote attackers to execute ...)
NOT-FOR-US: Microsoft
CVE-2013-3844
RESERVED
@@ -5358,8 +5365,8 @@
NOT-FOR-US: Cisco
CVE-2013-3447
RESERVED
-CVE-2013-3446
- RESERVED
+CVE-2013-3446 (Open redirect vulnerability in the login page in Cisco Digital Media ...)
+ TODO: check
CVE-2013-3445 (The firewall subsystem in Cisco Identity Services Engine has an ...)
NOT-FOR-US: Cisco Identity Services Engine
CVE-2013-3444 (The web framework in Cisco WAAS Software before 4.x and 5.x before ...)
@@ -5538,35 +5545,32 @@
RESERVED
CVE-2013-3364
RESERVED
-CVE-2013-3363
- RESERVED
+CVE-2013-3363 (Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 ...)
NOT-FOR-US: Adobe Flash
-CVE-2013-3362
- RESERVED
+CVE-2013-3362 (Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 ...)
NOT-FOR-US: Adobe Flash
-CVE-2013-3361
- RESERVED
+CVE-2013-3361 (Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 ...)
NOT-FOR-US: Adobe Flash
-CVE-2013-3360
- RESERVED
-CVE-2013-3359
- RESERVED
-CVE-2013-3358
- RESERVED
-CVE-2013-3357
- RESERVED
-CVE-2013-3356
- RESERVED
-CVE-2013-3355
- RESERVED
-CVE-2013-3354
- RESERVED
-CVE-2013-3353
- RESERVED
-CVE-2013-3352
- RESERVED
-CVE-2013-3351
- RESERVED
+CVE-2013-3360 (Adobe Shockwave Player before 12.0.4.144 allows attackers to execute ...)
+ TODO: check
+CVE-2013-3359 (Adobe Shockwave Player before 12.0.4.144 allows attackers to execute ...)
+ TODO: check
+CVE-2013-3358 (Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x ...)
+ TODO: check
+CVE-2013-3357 (Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x ...)
+ TODO: check
+CVE-2013-3356 (Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x ...)
+ TODO: check
+CVE-2013-3355 (Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on ...)
+ TODO: check
+CVE-2013-3354 (Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on ...)
+ TODO: check
+CVE-2013-3353 (Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x ...)
+ TODO: check
+CVE-2013-3352 (Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on ...)
+ TODO: check
+CVE-2013-3351 (Multiple stack-based buffer overflows in Adobe Reader and Acrobat ...)
+ TODO: check
CVE-2013-3350 (Adobe ColdFusion 10 before Update 11 allows remote attackers to call ...)
NOT-FOR-US: Adobe ColdFusion
CVE-2013-3349 (Unspecified vulnerability in Adobe ColdFusion 9.0 through 9.0.2, when ...)
@@ -5915,29 +5919,24 @@
NOT-FOR-US: Opera
CVE-2013-3210 (Opera before 12.15 does not properly block top-level domains in ...)
NOT-FOR-US: Opera
-CVE-2013-3209
- RESERVED
+CVE-2013-3209 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft
-CVE-2013-3208
- RESERVED
+CVE-2013-3208 (Microsoft Internet Explorer 8 through 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft
-CVE-2013-3207
- RESERVED
-CVE-2013-3206
- RESERVED
+CVE-2013-3207 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
+ TODO: check
+CVE-2013-3206 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft
-CVE-2013-3205
- RESERVED
-CVE-2013-3204
- RESERVED
+CVE-2013-3205 (Microsoft Internet Explorer 6 through 8 allows remote attackers to ...)
+ TODO: check
+CVE-2013-3204 (Microsoft Internet Explorer 7 through 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft
-CVE-2013-3203
- RESERVED
-CVE-2013-3202
- RESERVED
+CVE-2013-3203 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
+ TODO: check
+CVE-2013-3202 (Microsoft Internet Explorer 10 allows remote attackers to execute ...)
NOT-FOR-US: Microsoft
-CVE-2013-3201
- RESERVED
+CVE-2013-3201 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
+ TODO: check
CVE-2013-3200
RESERVED
CVE-2013-3199 (Microsoft Internet Explorer 6 through 10 allows remote attackers to ...)
@@ -5978,11 +5977,10 @@
NOT-FOR-US: Microsoft Windows
CVE-2013-3181 (usp10.dll in the Unicode Scripts Processor in Microsoft Windows XP SP2 ...)
NOT-FOR-US: Microsoft Windows
-CVE-2013-3180
- RESERVED
+CVE-2013-3180 (Cross-site scripting (XSS) vulnerability in Microsoft SharePoint ...)
NOT-FOR-US: Microsoft SharePoint Server
-CVE-2013-3179
- RESERVED
+CVE-2013-3179 (Cross-site scripting (XSS) vulnerability in Microsoft SharePoint ...)
+ TODO: check
CVE-2013-3178 (Microsoft Silverlight 5 before 5.1.20513.0 does not properly ...)
NOT-FOR-US: Microsoft Silverlight
CVE-2013-3177
@@ -6019,22 +6017,18 @@
NOT-FOR-US: Microsoft Internet Explorer
CVE-2013-3161 (Microsoft Internet Explorer 9 and 10 allows remote attackers to ...)
NOT-FOR-US: Microsoft Internet Explorer
-CVE-2013-3160
- RESERVED
+CVE-2013-3160 (Microsoft Office 2003 SP3 and 2007 SP3, Word 2003 SP3 and 2007 SP3, ...)
NOT-FOR-US: Microsoft Office
-CVE-2013-3159
- RESERVED
+CVE-2013-3159 (Microsoft Excel 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Excel ...)
NOT-FOR-US: Microsoft Excel
-CVE-2013-3158
- RESERVED
+CVE-2013-3158 (Microsoft Excel 2003 SP3 and 2007 SP3 allows remote attackers to ...)
NOT-FOR-US: Microsoft Excel
-CVE-2013-3157
- RESERVED
-CVE-2013-3156
- RESERVED
+CVE-2013-3157 (Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft ...)
+ TODO: check
+CVE-2013-3156 (Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft ...)
NOT-FOR-US: Microsoft Access
-CVE-2013-3155
- RESERVED
+CVE-2013-3155 (Microsoft Access 2007 SP3, 2010 SP1 and SP2, and 2013 in Microsoft ...)
+ TODO: check
CVE-2013-3154 (The signature-update functionality in Windows Defender on Microsoft ...)
NOT-FOR-US: Microsoft Windows
CVE-2013-3153 (Microsoft Internet Explorer 6 through 10 allows remote attackers to ...)
@@ -6069,8 +6063,7 @@
NOT-FOR-US: Microsoft Internet Explorer
CVE-2013-3138 (Integer overflow in the TCP/IP kernel-mode driver in Microsoft Windows ...)
NOT-FOR-US: Microsoft
-CVE-2013-3137
- RESERVED
+CVE-2013-3137 (Microsoft FrontPage 2003 SP3 does not properly parse DTDs, which ...)
NOT-FOR-US: Microsoft FrontPage
CVE-2013-3136 (The kernel in Microsoft Windows XP SP3, Windows Server 2003 SP2, ...)
NOT-FOR-US: Microsoft
@@ -6271,14 +6264,14 @@
RESERVED
CVE-2013-3040 (IBM InfoSphere Information Server through 8.5 FP3, 8.7 through FP2, ...)
NOT-FOR-US: IBM InfoSphere Information Server
-CVE-2013-3039
- RESERVED
-CVE-2013-3038
- RESERVED
-CVE-2013-3037
- RESERVED
-CVE-2013-3036
- RESERVED
+CVE-2013-3039 (IBM Rational Requirements Composer before 4.0.4 does not properly ...)
+ TODO: check
+CVE-2013-3038 (Unspecified vulnerability in IBM Rational Requirements Composer before ...)
+ TODO: check
+CVE-2013-3037 (Unspecified vulnerability in IBM Rational Requirements Composer before ...)
+ TODO: check
+CVE-2013-3036 (Open redirect vulnerability in IBM Rational Requirements Composer ...)
+ TODO: check
CVE-2013-3035 (The IPv6 implementation in the inet subsystem in IBM AIX 6.1 and 7.1, ...)
NOT-FOR-US: IBM AIX
CVE-2013-3034 (Cross-site scripting (XSS) vulnerability in IBM InfoSphere Information ...)
@@ -11332,14 +11325,13 @@
NOT-FOR-US: Microsoft Malware Protection Engine
CVE-2013-1345 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft
-CVE-2013-1344
- RESERVED
-CVE-2013-1343
- RESERVED
-CVE-2013-1342
- RESERVED
-CVE-2013-1341
- RESERVED
+CVE-2013-1344 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
+ TODO: check
+CVE-2013-1343 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
+ TODO: check
+CVE-2013-1342 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
+ TODO: check
+CVE-2013-1341 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft
CVE-2013-1340 (win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and ...)
NOT-FOR-US: Microsoft
@@ -11361,8 +11353,7 @@
NOT-FOR-US: Microsoft Windows
CVE-2013-1331 (Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac ...)
NOT-FOR-US: Microsoft
-CVE-2013-1330
- RESERVED
+CVE-2013-1330 (The default configuration of Microsoft SharePoint Portal Server 2003 ...)
NOT-FOR-US: Microsoft SharePoint
CVE-2013-1329 (Integer signedness error in Microsoft Publisher 2003 SP3 allows remote ...)
NOT-FOR-US: Microsoft Publisher
@@ -11392,8 +11383,7 @@
NOT-FOR-US: Microsoft Publisher
CVE-2013-1316 (Microsoft Publisher 2003 SP3 does not properly validate the size of an ...)
NOT-FOR-US: Microsoft Publisher
-CVE-2013-1315
- RESERVED
+CVE-2013-1315 (Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; ...)
NOT-FOR-US: Microsoft
CVE-2013-1314
RESERVED
@@ -12612,8 +12602,7 @@
RESERVED
CVE-2013-0811 (Use-after-free vulnerability in Microsoft Internet Explorer 8 and 9 ...)
NOT-FOR-US: Microsoft Internet Explorer
-CVE-2013-0810
- RESERVED
+CVE-2013-0810 (Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows ...)
NOT-FOR-US: Microsoft
CVE-2013-0809 (Unspecified vulnerability in the 2D component in the Java Runtime ...)
- openjdk-6 6b27-1.12.4-1
@@ -15715,8 +15704,8 @@
NOT-FOR-US: Microsoft SharePoint
CVE-2013-0082
RESERVED
-CVE-2013-0081
- RESERVED
+CVE-2013-0081 (Microsoft SharePoint Portal Server 2003 SP3 and SharePoint Server 2007 ...)
+ TODO: check
CVE-2013-0080 (Microsoft SharePoint Server 2010 SP1 and SharePoint Foundation 2010 ...)
NOT-FOR-US: Microsoft SharePoint
CVE-2013-0079 (Microsoft Visio Viewer 2010 SP1 allows remote attackers to execute ...)
More information about the Secure-testing-commits
mailing list