[Secure-testing-commits] r20530 - data/CVE

Wed, 21 Nov 2012 13:14:48 -0800 

Author: joeyh
Date: 2012-11-21 21:14:38 +0000 (Wed, 21 Nov 2012)
New Revision: 20530

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2012-11-21 14:09:12 UTC (rev 20529)
+++ data/CVE/list       2012-11-21 21:14:38 UTC (rev 20530)
@@ -1,3 +1,33 @@
+CVE-2012-5935
+       RESERVED
+CVE-2012-5934
+       RESERVED
+CVE-2012-5933
+       RESERVED
+CVE-2012-5932
+       RESERVED
+CVE-2012-5931
+       RESERVED
+CVE-2012-5930
+       RESERVED
+CVE-2012-5929
+       RESERVED
+CVE-2012-5928
+       RESERVED
+CVE-2012-5927
+       RESERVED
+CVE-2012-5926
+       RESERVED
+CVE-2012-5925
+       RESERVED
+CVE-2012-5924
+       RESERVED
+CVE-2012-5923
+       RESERVED
+CVE-2012-5922
+       RESERVED
+CVE-2012-5921
+       RESERVED
 CVE-2012-5920 (Cross-site scripting (XSS) vulnerability in Google Web Toolkit 
(GWT) ...)
        - gwt <unfixed> (bug #691900)
        [squeeze] - gwt <not-affected> (Vulnerable code not present)
@@ -166,53 +196,43 @@
        RESERVED
 CVE-2012-5844
        RESERVED
-CVE-2012-5843
-       RESERVED
+CVE-2012-5843 (Multiple unspecified vulnerabilities in the browser engine in 
Mozilla ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-5842
-       RESERVED
+CVE-2012-5842 (Multiple unspecified vulnerabilities in the browser engine in 
Mozilla ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-5841
-       RESERVED
+CVE-2012-5841 (Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, 
...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-5840
-       RESERVED
+CVE-2012-5840 (Use-after-free vulnerability in the 
nsTextEditorState::PrepareEditor ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-5839
-       RESERVED
+CVE-2012-5839 (Heap-based buffer overflow in the ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-5838
-       RESERVED
+CVE-2012-5838 (The copyTexImage2D implementation in the WebGL subsystem in 
Mozilla ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-5837
-       RESERVED
+CVE-2012-5837 (The Web Developer Toolbar in Mozilla Firefox before 17.0 
executes ...)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
-CVE-2012-5836
-       RESERVED
+CVE-2012-5836 (Mozilla Firefox before 17.0, Thunderbird before 17.0, and 
SeaMonkey ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-5835
-       RESERVED
+CVE-2012-5835 (Integer overflow in the WebGL subsystem in Mozilla Firefox 
before ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
 CVE-2012-5834
        RESERVED
-CVE-2012-5833
-       RESERVED
+CVE-2012-5833 (The texImage2D implementation in the WebGL subsystem in Mozilla 
...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
@@ -220,13 +240,11 @@
        RESERVED
 CVE-2012-5831
        RESERVED
-CVE-2012-5830
-       RESERVED
+CVE-2012-5830 (Use-after-free vulnerability in Mozilla Firefox before 17.0, 
Firefox ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-5829
-       RESERVED
+CVE-2012-5829 (Heap-based buffer overflow in the nsWindow::OnExposeEvent 
function in ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
@@ -1062,16 +1080,13 @@
        - keystone <not-affected> (Debian packaging enforces correct 
permissions)
 CVE-2012-5482 (The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and 
Essex ...)
        - glance 2012.1.1-3 (bug #692641)
-CVE-2012-5481
-       RESERVED
+CVE-2012-5481 (Moodle 2.3.x before 2.3.3 allows remote authenticated users to 
bypass ...)
        - moodle <not-affected> (Doesn't affect 1.9 or 2.2)
-CVE-2012-5480
-       RESERVED
+CVE-2012-5480 (The Database activity module in Moodle 2.1.x before 2.1.9, 
2.2.x ...)
        - moodle 2.2.3.dfsg-2.6
        [wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
        [squeeze] - moodle <not-affected> (Doesn't affect 1.9)
-CVE-2012-5479
-       RESERVED
+CVE-2012-5479 (The Portfolio plugin in Moodle 2.1.x before 2.1.9, 2.2.x before 
2.2.6, ...)
        - moodle 2.2.3.dfsg-2.6
        [wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
        [squeeze] - moodle <not-affected> (Doesn't affect 1.9)
@@ -1090,18 +1105,15 @@
 CVE-2012-5474
        RESERVED
        - horizon 2012.1.1-7
-CVE-2012-5473
-       RESERVED
+CVE-2012-5473 (The Database activity module in Moodle 2.1.x before 2.1.9, 
2.2.x ...)
        - moodle 2.2.3.dfsg-2.6
        [wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
        [squeeze] - moodle <not-affected> (Doesn't affect 1.9)
-CVE-2012-5472
-       RESERVED
+CVE-2012-5472 (lib/formslib.php in Moodle 2.2.x before 2.2.6 and 2.3.x before 
2.3.3 ...)
        - moodle 2.2.3.dfsg-2.6
        [wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
        [squeeze] - moodle <not-affected> (Doesn't affect 1.9)
-CVE-2012-5471
-       RESERVED
+CVE-2012-5471 (The Dropbox Repository File Picker in Moodle 2.1.x before 
2.1.9, 2.2.x ...)
        - moodle 2.2.3.dfsg-2.6
        [wheezy] - moodle 2.2.3.dsfg-2.6~wheezy0
        [squeeze] - moodle <not-affected> (Doesn't affect 1.9)
@@ -3551,12 +3563,16 @@
        - gwt <unfixed> (bug #691900)
        [squeeze] - gwt <not-affected> (Vulnerable code not present)
 CVE-2012-4562
+       RESERVED
        - libssh 0.5.3-1
 CVE-2012-4561
+       RESERVED
        - libssh 0.5.3-1
 CVE-2012-4560
+       RESERVED
        - libssh 0.5.3-1
 CVE-2012-4559
+       RESERVED
        - libssh 0.5.3-1
 CVE-2012-4558
        RESERVED
@@ -4459,84 +4475,67 @@
 CVE-2012-4219 (show_config_errors.php in phpMyAdmin 3.5.x before 3.5.2.1 
allows ...)
        - phpmyadmin <unfixed> (unimportant)
        NOTE: Path disclosure irrelevant in Debian
-CVE-2012-4218
-       RESERVED
+CVE-2012-4218 (Use-after-free vulnerability in the ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-4217
-       RESERVED
+CVE-2012-4217 (Use-after-free vulnerability in the ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-4216
-       RESERVED
+CVE-2012-4216 (Use-after-free vulnerability in the gfxFont::GetFontEntry 
function in ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-4215
-       RESERVED
+CVE-2012-4215 (Use-after-free vulnerability in the ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-4214
-       RESERVED
+CVE-2012-4214 (Use-after-free vulnerability in the 
nsTextEditorState::PrepareEditor ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-4213
-       RESERVED
+CVE-2012-4213 (Use-after-free vulnerability in the nsEditor::FindNextLeafNode 
...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-4212
-       RESERVED
+CVE-2012-4212 (Use-after-free vulnerability in the XPCWrappedNative::Mark 
function in ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
 CVE-2012-4211
        RESERVED
-CVE-2012-4210
-       RESERVED
+CVE-2012-4210 (The Style Inspector in Mozilla Firefox before 17.0 and Firefox 
ESR ...)
        - iceweasel 10.0.11esr-1
-CVE-2012-4209
-       RESERVED
+CVE-2012-4209 (Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, 
...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-4208
-       RESERVED
+CVE-2012-4208 (The XrayWrapper implementation in Mozilla Firefox before 17.0, 
...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-4207
-       RESERVED
+CVE-2012-4207 (The HZ-GB-2312 character-set implementation in Mozilla Firefox 
before ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-4206
-       RESERVED
+CVE-2012-4206 (Untrusted search path vulnerability in the installer in Mozilla 
...)
        - iceweasel <not-affected> (Windows-specific)
-CVE-2012-4205
-       RESERVED
+CVE-2012-4205 (Mozilla Firefox before 17.0, Thunderbird before 17.0, and 
SeaMonkey ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-4204
-       RESERVED
+CVE-2012-4204 (The str_unescape function in the JavaScript engine in Mozilla 
Firefox ...)
        - iceape <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
        - icedove <not-affected> (Doesn't affect the ESR series, only releases 
from experimental)
-CVE-2012-4203
-       RESERVED
+CVE-2012-4203 (The New Tab page in Mozilla Firefox before 17.0 uses a 
privileged ...)
        - iceweasel <not-affected> (Doesn't affect the ESR series, only 
releases from experimental)
-CVE-2012-4202
-       RESERVED
+CVE-2012-4202 (Heap-based buffer overflow in the 
image::RasterImage::DrawFrameTo ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
-CVE-2012-4201
-       RESERVED
+CVE-2012-4201 (The evalInSandbox implementation in Mozilla Firefox before 
17.0, ...)
        - iceweasel 10.0.11esr-1
        - icedove <unfixed>
        - iceape <unfixed>
@@ -13164,6 +13163,7 @@
        RESERVED
 CVE-2012-0698
        RESERVED
+       {DSA-2576-1}
        - trousers <unfixed> (bug #692649)
 CVE-2011-5066 (The SibRaRecoverableSiXaResource class in the Default Messaging 
...)
        NOT-FOR-US: WebSphere


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to