[Secure-testing-commits] r23811 - data/CVE

Joey Hess Fri, 27 Sep 2013 14:15:14 -0700

Author: joeyh
Date: 2013-09-27 21:14:29 +0000 (Fri, 27 Sep 2013)
New Revision: 23811


Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2013-09-27 17:57:47 UTC (rev 23810)
+++ data/CVE/list       2013-09-27 21:14:29 UTC (rev 23811)
@@ -1049,26 +1049,26 @@
        NOT-FOR-US: Cisco
 CVE-2013-5482 (Cisco Prime LAN Management Solution (LMS) does not properly 
restrict ...)
        NOT-FOR-US: Cisco
-CVE-2013-5481
-       RESERVED
-CVE-2013-5480
-       RESERVED
-CVE-2013-5479
-       RESERVED
-CVE-2013-5478
-       RESERVED
-CVE-2013-5477
-       RESERVED
-CVE-2013-5476
-       RESERVED
-CVE-2013-5475
-       RESERVED
-CVE-2013-5474
-       RESERVED
-CVE-2013-5473
-       RESERVED
-CVE-2013-5472
-       RESERVED
+CVE-2013-5481 (The PPTP implementation in Cisco IOS 12.2 and 15.0 through 
15.3, when ...)
+       TODO: check
+CVE-2013-5480 (The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 
through ...)
+       TODO: check
+CVE-2013-5479 (The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 
through ...)
+       TODO: check
+CVE-2013-5478 (Cisco IOS 15.0 through 15.3 and IOS XE 3.2 through 3.8, when a 
VRF ...)
+       TODO: check
+CVE-2013-5477 (The T1/E1 driver-queue functionality in Cisco IOS 12.2 and 15.0 
...)
+       TODO: check
+CVE-2013-5476 (The Zone-Based Firewall (ZFW) feature in Cisco IOS 15.1 through 
15.2, ...)
+       TODO: check
+CVE-2013-5475 (Cisco IOS 12.2 through 12.4 and 15.0 through 15.3, and IOS XE 
2.1 ...)
+       TODO: check
+CVE-2013-5474 (Race condition in the IPv6 virtual fragmentation reassembly 
(VFR) ...)
+       TODO: check
+CVE-2013-5473 (Memory leak in Cisco IOS 12.2, 15.1, and 15.2; IOS XE 3.4.2S 
through ...)
+       TODO: check
+CVE-2013-5472 (The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 
through ...)
+       TODO: check
 CVE-2013-5471 (Cross-site request forgery (CSRF) vulnerability in the web 
framework ...)
        NOT-FOR-US: Cisco Global Site Selector
 CVE-2013-5470 (Cisco Secure Access Control System (ACS) does not properly 
handle ...)
@@ -1837,8 +1837,7 @@
        NOT-FOR-US: Juniper Junos Space
 CVE-2013-5094
        RESERVED
-CVE-2013-5093 [Graphite remote code execution]
-       RESERVED
+CVE-2013-5093 (The renderLocalView function in render/views.py in graphite-web 
in ...)
        - graphite-web 0.9.12+debian-1 (bug #720454)
        NOTE: 
http://ceriksen.com/2013/08/20/graphite-remote-code-execution-vulnerability-advisory/
 CVE-2013-5092
@@ -2914,8 +2913,8 @@
        NOT-FOR-US: Branch Intelligent Management System, Huawei routers
 CVE-2012-6568 (Buffer overflow in the back-end component in Huawei UTPS 1.0 
allows ...)
        NOT-FOR-US: Huawei UTPS
-CVE-2013-4626
-       RESERVED
+CVE-2013-4626 (Cross-site scripting (XSS) vulnerability in the BackWPup plugin 
before ...)
+       TODO: check
 CVE-2013-4625 (Cross-site scripting (XSS) vulnerability in ...)
        NOT-FOR-US: WordPress plugin Duplicator
 CVE-2013-4624


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r23811 - data/CVE

Reply via email to