[Secure-testing-commits] r20661 - data/CVE

Joey Hess Thu, 13 Dec 2012 13:14:30 -0800

Author: joeyh
Date: 2012-12-13 21:14:20 +0000 (Thu, 13 Dec 2012)
New Revision: 20661


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2012-12-13 10:43:34 UTC (rev 20660)
+++ data/CVE/list       2012-12-13 21:14:20 UTC (rev 20661)
@@ -1,3 +1,7 @@
+CVE-2012-6333 (Multiple HVM control operations in Xen 3.4 through 4.2 allow 
local HVM ...)
+       TODO: check
+CVE-2012-6332
+       RESERVED
 CVE-2012-XXXX [thttpd: Local DoS vulnerability]
        - thttpd <removed> (low)
        NOTE: http://www.openwall.com/lists/oss-security/2012/12/12/1
@@ -1697,8 +1701,8 @@
        RESERVED
 CVE-2012-5967
        RESERVED
-CVE-2012-5966
-       RESERVED
+CVE-2012-5966 (The restricted telnet shell on the D-Link DSL2730U router 
allows ...)
+       TODO: check
 CVE-2012-5965
        RESERVED
 CVE-2012-5964
@@ -2361,10 +2365,10 @@
        RESERVED
 CVE-2012-5681
        RESERVED
-CVE-2012-5680
-       RESERVED
-CVE-2012-5679
-       RESERVED
+CVE-2012-5680 (Buffer overflow in Adobe Photoshop Camera Raw before 7.3 allows 
...)
+       TODO: check
+CVE-2012-5679 (Buffer underflow in Adobe Photoshop Camera Raw before 7.3 
allows ...)
+       TODO: check
 CVE-2012-5678 (Adobe Flash Player before 10.3.183.48 and 11.x before 
11.5.502.135 on ...)
        NOT-FOR-US: Adobe Flash
 CVE-2012-5677 (Integer overflow in Adobe Flash Player before 10.3.183.48 and 
11.x ...)
@@ -2808,8 +2812,7 @@
        NOTE: http://cpansearch.perl.org/src/MARKSTOS/CGI.pm-3.63/Changes
        NOTE: https://github.com/markstos/CGI.pm/pull/23
        NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=877015
-CVE-2012-5525
-       RESERVED
+CVE-2012-5525 (The get_page_from_gfn hypercall function in Xen 4.2 allows 
local PV ...)
        - xen <not-affected> (Only affects Xen 4.2 and xen-unstable)
 CVE-2012-5524
        RESERVED
@@ -2838,27 +2841,21 @@
 CVE-2012-5516
        RESERVED
        NOT-FOR-US: Red Hat Enterprise Virtualisation Manager
-CVE-2012-5515
-       RESERVED
+CVE-2012-5515 (The (1) XENMEM_decrease_reservation, (2) 
XENMEM_populate_physmap, and ...)
        {DSA-2582-1}
        - xen 4.1.3-5
-CVE-2012-5514
-       RESERVED
+CVE-2012-5514 (The guest_physmap_mark_populate_on_demand function in Xen 4.2 
and ...)
        {DSA-2582-1}
        - xen 4.1.3-6
-CVE-2012-5513
-       RESERVED
+CVE-2012-5513 (The XENMEM_exchange handler in Xen 4.2 and earlier does not 
properly ...)
        {DSA-2582-1}
        - xen 4.1.3-5
-CVE-2012-5512
-       RESERVED
+CVE-2012-5512 (Array index error in the HVMOP_set_mem_access handler in Xen 
4.1 ...)
        - xen 4.1.3-5
        [squeeze] - xen <not-affected> (Only affects Xen 4.1)
-CVE-2012-5511
-       RESERVED
+CVE-2012-5511 (Stack-based buffer overflow in the dirty video RAM tracking ...)
        - xen 4.1.3-5
-CVE-2012-5510
-       RESERVED
+CVE-2012-5510 (Xen 4.x, when downgrading the grant table version, does not 
properly ...)
        {DSA-2582-1}
        - xen 4.1.3-5
 CVE-2012-5509
@@ -4063,8 +4060,8 @@
        NOT-FOR-US: RivetTracker
 CVE-2012-4992 (Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow 
remote ...)
        NOT-FOR-US: FlashFXP
-CVE-2012-4991
-       RESERVED
+CVE-2012-4991 (Multiple directory traversal vulnerabilities in Axway 
SecureTransport ...)
+       TODO: check
 CVE-2012-4990 (SQL injection vulnerability in admin/campaign-zone-link.php in 
OpenX ...)
        NOT-FOR-US: OpenX
 CVE-2012-4989 (Cross-site scripting (XSS) vulnerability in 
admin/plugin-index.php in ...)
@@ -8800,10 +8797,10 @@
        RESERVED
 CVE-2012-3278
        RESERVED
-CVE-2012-3277
-       RESERVED
-CVE-2012-3276
-       RESERVED
+CVE-2012-3277 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 
7.3-2, ...)
+       TODO: check
+CVE-2012-3276 (HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 
7.3-2, ...)
+       TODO: check
 CVE-2012-3275 (Unspecified vulnerability in HP Network Node Manager i (NNMi) 
9.1x and ...)
        NOT-FOR-US: HP Network Node Manager
 CVE-2012-3274 (Stack-based buffer overflow in uam.exe in the User Access 
Manager ...)
@@ -22521,8 +22518,7 @@
        NOT-FOR-US: TIBCO Spotfire Server
 CVE-2011-3132 (Cross-site scripting (XSS) vulnerability in TIBCO Spotfire 
Server ...)
        NOT-FOR-US: TIBCO Spotfire Server
-CVE-2011-3131
-       RESERVED
+CVE-2011-3131 (Xen 4.1.1 and earlier allows local guest OS kernels with 
control of a ...)
        {DSA-2582-1}
        - xen 4.1.2-1
 CVE-2011-3130 (wp-includes/taxonomy.php in WordPress 3.1 before 3.1.3 and 3.2 
before ...)


_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r20661 - data/CVE

Reply via email to