[Secure-testing-commits] r32202 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Thu Feb 12 21:10:14 UTC 2015
Author: sectracker
Date: 2015-02-12 21:10:14 +0000 (Thu, 12 Feb 2015)
New Revision: 32202
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-12 20:59:20 UTC (rev 32201)
+++ data/CVE/list 2015-02-12 21:10:14 UTC (rev 32202)
@@ -1,3 +1,35 @@
+CVE-2015-1588
+ RESERVED
+CVE-2015-1587
+ RESERVED
+CVE-2015-1586
+ RESERVED
+CVE-2015-1585
+ RESERVED
+CVE-2015-1584
+ RESERVED
+CVE-2015-1583
+ RESERVED
+CVE-2015-1582 (Multiple cross-site scripting (XSS) vulnerabilities in the Spider ...)
+ TODO: check
+CVE-2015-1581 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
+ TODO: check
+CVE-2015-1580 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
+ TODO: check
+CVE-2015-1579 (Directory traversal vulnerability in the Elegant Themes Divi theme for ...)
+ TODO: check
+CVE-2015-1578 (Multiple open redirect vulnerabilities in u5CMS before 3.9.4 allow ...)
+ TODO: check
+CVE-2015-1577 (Directory traversal vulnerability in u5admin/deletefile.php in u5CMS ...)
+ TODO: check
+CVE-2015-1576 (Multiple SQL injection vulnerabilities in u5CMS before 3.9.4 allow ...)
+ TODO: check
+CVE-2015-1575 (Multiple cross-site scripting (XSS) vulnerabilities in u5CMS before ...)
+ TODO: check
+CVE-2015-1574
+ RESERVED
+CVE-2013-7425
+ RESERVED
CVE-2014-9678
NOT-FOR-US: FlexPaper
CVE-2014-9677
@@ -104,8 +136,8 @@
RESERVED
CVE-2015-1519
RESERVED
-CVE-2015-1518
- RESERVED
+CVE-2015-1518 (SQL injection vulnerability in the search_post function in ...)
+ TODO: check
CVE-2015-1517
RESERVED
CVE-2015-1516
@@ -1201,8 +1233,7 @@
RESERVED
CVE-2015-1173
RESERVED
-CVE-2015-1172
- RESERVED
+CVE-2015-1172 (Unrestricted file upload vulnerability in admin/upload-file.php in the ...)
NOT-FOR-US: WordPress theme holding_pattern
CVE-2015-1171
RESERVED
@@ -2870,8 +2901,8 @@
RESERVED
CVE-2015-0620
RESERVED
-CVE-2015-0619
- RESERVED
+CVE-2015-0619 (Memory leak in the embedded web server in the WebVPN subsystem in ...)
+ TODO: check
CVE-2015-0618
RESERVED
CVE-2015-0617
@@ -2886,18 +2917,18 @@
RESERVED
CVE-2015-0612
RESERVED
-CVE-2015-0611
- RESERVED
-CVE-2015-0610
- RESERVED
+CVE-2015-0611 (The administrative web-management portal in Cisco IX 8 (.0.1) and ...)
+ TODO: check
+CVE-2015-0610 (Race condition in the object-group ACL feature in Cisco IOS 15.5(2)T ...)
+ TODO: check
CVE-2015-0609
RESERVED
-CVE-2015-0608
- RESERVED
+CVE-2015-0608 (Race condition in the Measurement, Aggregation, and Correlation Engine ...)
+ TODO: check
CVE-2015-0607
RESERVED
-CVE-2015-0606
- RESERVED
+CVE-2015-0606 (The IOS Shell in Cisco IOS allows local users to cause a denial of ...)
+ TODO: check
CVE-2015-0605 (The uuencode inspection engine in Cisco AsyncOS on Cisco Email ...)
TODO: check
CVE-2015-0604 (The web framework on Cisco Unified IP 9900 phones with firmware ...)
@@ -2924,8 +2955,8 @@
RESERVED
CVE-2015-0593
RESERVED
-CVE-2015-0592
- RESERVED
+CVE-2015-0592 (The Zone-Based Firewall implementation in Cisco IOS 15.4(2)T3 and ...)
+ TODO: check
CVE-2015-0591 (Cisco Unified Communications Domain Manager (UCDM) 10 allows remote ...)
NOT-FOR-US: Cisco Unified Communications Domain Manager
CVE-2015-0590 (Cisco WebEx Meeting Center allows remote attackers to activate ...)
@@ -2948,8 +2979,7 @@
NOT-FOR-US: Cisco NX-OS
CVE-2015-0581 (The XML parser in Cisco Prime Service Catalog before 10.1 allows ...)
NOT-FOR-US: Cisco
-CVE-2015-0580
- RESERVED
+CVE-2015-0580 (Multiple SQL injection vulnerabilities in the ACS View reporting ...)
NOT-FOR-US: Cisco Secure Access Control System
CVE-2015-0579 (Cisco TelePresence Video Communication Server (VCS) and Cisco ...)
NOT-FOR-US: Cisco TelePrecence Video Communication Server
@@ -5650,14 +5680,14 @@
[squeeze] - dbus <not-affected> (affects 1.4 and above)
CVE-2015-0244
RESERVED
- {DSA-3155-1}
+ {DSA-3155-1 DLA-152-1}
- postgresql-9.4 9.4.1-1
- postgresql-9.1 9.1.11-2
- postgresql-8.4 <removed>
[wheezy] - postgresql-8.4 <not-affected> (postgresql-8.4 in wheezy only provides PL/Perl)
CVE-2015-0243
RESERVED
- {DSA-3155-1}
+ {DSA-3155-1 DLA-152-1}
- postgresql-9.4 9.4.1-1
- postgresql-9.1 9.1.11-2
- postgresql-8.4 <removed>
@@ -5668,7 +5698,7 @@
- postgresql-9.1 <not-affected> (Only affects PostgreSQL on Windows)
CVE-2015-0241
RESERVED
- {DSA-3155-1}
+ {DSA-3155-1 DLA-152-1}
- postgresql-9.4 9.4.1-1
- postgresql-9.1 9.1.11-2
- postgresql-8.4 <removed>
@@ -8359,7 +8389,7 @@
RESERVED
CVE-2014-8161
RESERVED
- {DSA-3155-1}
+ {DSA-3155-1 DLA-152-1}
- postgresql-9.4 9.4.1-1
- postgresql-9.1 9.1.11-2
- postgresql-8.4 <removed>
@@ -20320,8 +20350,8 @@
NOT-FOR-US: Cisco
CVE-2014-3366 (SQL injection vulnerability in the administrative web interface in ...)
NOT-FOR-US: Cisco Unified Communications Manager
-CVE-2014-3365
- RESERVED
+CVE-2014-3365 (Multiple cross-site scripting (XSS) vulnerabilities in Cisco Prime ...)
+ TODO: check
CVE-2014-3364 (Multiple cross-site scripting (XSS) vulnerabilities in the web ...)
NOT-FOR-US: Cisco
CVE-2014-3363 (Cross-site scripting (XSS) vulnerability in the web framework in Cisco ...)
@@ -23542,10 +23572,10 @@
NOT-FOR-US: Cisco
CVE-2014-2154 (Memory leak in the SIP inspection engine in Cisco Adaptive Security ...)
NOT-FOR-US: Cisco Adaptive Security Appliance
-CVE-2014-2153
- RESERVED
-CVE-2014-2152
- RESERVED
+CVE-2014-2153 (Multiple cross-site scripting (XSS) vulnerabilities in INSERT pages in ...)
+ TODO: check
+CVE-2014-2152 (Cross-site request forgery (CSRF) vulnerability in the INSERT page in ...)
+ TODO: check
CVE-2014-2151 (The WebVPN portal in Cisco Adaptive Security Appliance (ASA) Software ...)
NOT-FOR-US: Cisco Adaptive Security Appliance
CVE-2014-2150
@@ -23554,8 +23584,8 @@
RESERVED
CVE-2014-2148
RESERVED
-CVE-2014-2147
- RESERVED
+CVE-2014-2147 (The web interface in Cisco Prime Infrastructure 2.1 and earlier does ...)
+ TODO: check
CVE-2014-2146
RESERVED
CVE-2014-2145 (Directory traversal vulnerability in the messaging API in Cisco Unity ...)
More information about the Secure-testing-commits
mailing list