[Secure-testing-commits] r23811 - data/CVE

Joey Hess joeyh at alioth.debian.org
Fri Sep 27 21:14:29 UTC 2013 

Author: joeyh
Date: 2013-09-27 21:14:29 +0000 (Fri, 27 Sep 2013)
New Revision: 23811

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-09-27 17:57:47 UTC (rev 23810)
+++ data/CVE/list	2013-09-27 21:14:29 UTC (rev 23811)
@@ -1049,26 +1049,26 @@
 	NOT-FOR-US: Cisco
 CVE-2013-5482 (Cisco Prime LAN Management Solution (LMS) does not properly restrict ...)
 	NOT-FOR-US: Cisco
-CVE-2013-5481
-	RESERVED
-CVE-2013-5480
-	RESERVED
-CVE-2013-5479
-	RESERVED
-CVE-2013-5478
-	RESERVED
-CVE-2013-5477
-	RESERVED
-CVE-2013-5476
-	RESERVED
-CVE-2013-5475
-	RESERVED
-CVE-2013-5474
-	RESERVED
-CVE-2013-5473
-	RESERVED
-CVE-2013-5472
-	RESERVED
+CVE-2013-5481 (The PPTP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when ...)
+	TODO: check
+CVE-2013-5480 (The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through ...)
+	TODO: check
+CVE-2013-5479 (The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through ...)
+	TODO: check
+CVE-2013-5478 (Cisco IOS 15.0 through 15.3 and IOS XE 3.2 through 3.8, when a VRF ...)
+	TODO: check
+CVE-2013-5477 (The T1/E1 driver-queue functionality in Cisco IOS 12.2 and 15.0 ...)
+	TODO: check
+CVE-2013-5476 (The Zone-Based Firewall (ZFW) feature in Cisco IOS 15.1 through 15.2, ...)
+	TODO: check
+CVE-2013-5475 (Cisco IOS 12.2 through 12.4 and 15.0 through 15.3, and IOS XE 2.1 ...)
+	TODO: check
+CVE-2013-5474 (Race condition in the IPv6 virtual fragmentation reassembly (VFR) ...)
+	TODO: check
+CVE-2013-5473 (Memory leak in Cisco IOS 12.2, 15.1, and 15.2; IOS XE 3.4.2S through ...)
+	TODO: check
+CVE-2013-5472 (The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through ...)
+	TODO: check
 CVE-2013-5471 (Cross-site request forgery (CSRF) vulnerability in the web framework ...)
 	NOT-FOR-US: Cisco Global Site Selector
 CVE-2013-5470 (Cisco Secure Access Control System (ACS) does not properly handle ...)
@@ -1837,8 +1837,7 @@
 	NOT-FOR-US: Juniper Junos Space
 CVE-2013-5094
 	RESERVED
-CVE-2013-5093 [Graphite remote code execution]
-	RESERVED
+CVE-2013-5093 (The renderLocalView function in render/views.py in graphite-web in ...)
 	- graphite-web 0.9.12+debian-1 (bug #720454)
 	NOTE: http://ceriksen.com/2013/08/20/graphite-remote-code-execution-vulnerability-advisory/
 CVE-2013-5092
@@ -2914,8 +2913,8 @@
 	NOT-FOR-US: Branch Intelligent Management System, Huawei routers
 CVE-2012-6568 (Buffer overflow in the back-end component in Huawei UTPS 1.0 allows ...)
 	NOT-FOR-US: Huawei UTPS
-CVE-2013-4626
-	RESERVED
+CVE-2013-4626 (Cross-site scripting (XSS) vulnerability in the BackWPup plugin before ...)
+	TODO: check
 CVE-2013-4625 (Cross-site scripting (XSS) vulnerability in ...)
 	NOT-FOR-US: WordPress plugin Duplicator
 CVE-2013-4624

More information about the Secure-testing-commits mailing list