Author: joeyh Date: 2013-09-27 21:14:29 +0000 (Fri, 27 Sep 2013) New Revision: 23811
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2013-09-27 17:57:47 UTC (rev 23810) +++ data/CVE/list 2013-09-27 21:14:29 UTC (rev 23811) @@ -1049,26 +1049,26 @@ NOT-FOR-US: Cisco CVE-2013-5482 (Cisco Prime LAN Management Solution (LMS) does not properly restrict ...) NOT-FOR-US: Cisco -CVE-2013-5481 - RESERVED -CVE-2013-5480 - RESERVED -CVE-2013-5479 - RESERVED -CVE-2013-5478 - RESERVED -CVE-2013-5477 - RESERVED -CVE-2013-5476 - RESERVED -CVE-2013-5475 - RESERVED -CVE-2013-5474 - RESERVED -CVE-2013-5473 - RESERVED -CVE-2013-5472 - RESERVED +CVE-2013-5481 (The PPTP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when ...) + TODO: check +CVE-2013-5480 (The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through ...) + TODO: check +CVE-2013-5479 (The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through ...) + TODO: check +CVE-2013-5478 (Cisco IOS 15.0 through 15.3 and IOS XE 3.2 through 3.8, when a VRF ...) + TODO: check +CVE-2013-5477 (The T1/E1 driver-queue functionality in Cisco IOS 12.2 and 15.0 ...) + TODO: check +CVE-2013-5476 (The Zone-Based Firewall (ZFW) feature in Cisco IOS 15.1 through 15.2, ...) + TODO: check +CVE-2013-5475 (Cisco IOS 12.2 through 12.4 and 15.0 through 15.3, and IOS XE 2.1 ...) + TODO: check +CVE-2013-5474 (Race condition in the IPv6 virtual fragmentation reassembly (VFR) ...) + TODO: check +CVE-2013-5473 (Memory leak in Cisco IOS 12.2, 15.1, and 15.2; IOS XE 3.4.2S through ...) + TODO: check +CVE-2013-5472 (The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through ...) + TODO: check CVE-2013-5471 (Cross-site request forgery (CSRF) vulnerability in the web framework ...) NOT-FOR-US: Cisco Global Site Selector CVE-2013-5470 (Cisco Secure Access Control System (ACS) does not properly handle ...) @@ -1837,8 +1837,7 @@ NOT-FOR-US: Juniper Junos Space CVE-2013-5094 RESERVED -CVE-2013-5093 [Graphite remote code execution] - RESERVED +CVE-2013-5093 (The renderLocalView function in render/views.py in graphite-web in ...) - graphite-web 0.9.12+debian-1 (bug #720454) NOTE: http://ceriksen.com/2013/08/20/graphite-remote-code-execution-vulnerability-advisory/ CVE-2013-5092 @@ -2914,8 +2913,8 @@ NOT-FOR-US: Branch Intelligent Management System, Huawei routers CVE-2012-6568 (Buffer overflow in the back-end component in Huawei UTPS 1.0 allows ...) NOT-FOR-US: Huawei UTPS -CVE-2013-4626 - RESERVED +CVE-2013-4626 (Cross-site scripting (XSS) vulnerability in the BackWPup plugin before ...) + TODO: check CVE-2013-4625 (Cross-site scripting (XSS) vulnerability in ...) NOT-FOR-US: WordPress plugin Duplicator CVE-2013-4624 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits