Author: joeyh Date: 2013-05-29 21:14:29 +0000 (Wed, 29 May 2013) New Revision: 22405
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2013-05-29 20:57:11 UTC (rev 22404) +++ data/CVE/list 2013-05-29 21:14:29 UTC (rev 22405) @@ -1,3 +1,11 @@ +CVE-2013-3685 + RESERVED +CVE-2013-3684 + RESERVED +CVE-2013-3683 + RESERVED +CVE-2013-3682 + RESERVED CVE-2013-3681 RESERVED CVE-2013-3680 @@ -28,8 +36,8 @@ RESERVED CVE-2013-3667 RESERVED -CVE-2013-3666 - RESERVED +CVE-2013-3666 (The LG Hidden Menu component for Android on the LG Optimus G E973 ...) + TODO: check CVE-2013-3665 RESERVED CVE-2013-3664 @@ -303,6 +311,7 @@ RESERVED CVE-2013-3551 RESERVED + {DSA-2696-1} - otrs2 3.2.7-1 [squeeze] - otrs2 <not-affected> CVE-2013-3550 @@ -1508,8 +1517,8 @@ RESERVED CVE-2013-2990 RESERVED -CVE-2013-2989 - RESERVED +CVE-2013-2989 (The file-copying functionality in IBM Sterling Connect:Direct 3.8.00, ...) + TODO: check CVE-2013-2988 RESERVED CVE-2013-2987 @@ -3527,6 +3536,7 @@ - cgit <itp> (bug #515793) CVE-2013-2116 RESERVED + {DSA-2697-1} - gnutls26 2.12.23-5 (bug #709301) [squeeze] - gnutls26 <not-affected> (vulnerable code not backported) CVE-2013-2115 [incomplete fix for CVE-2013-1966] @@ -3701,8 +3711,7 @@ RESERVED - nginx 1.4.1-1 (bug #708164) [squeeze] - nginx <not-affected> (Vulnerable code not present) -CVE-2013-2069 - RESERVED +CVE-2013-2069 (Red Hat livecd-tools before 13.4.4, 17.x before 17.17, 18.x before ...) NOT-FOR-US: Red Hat livecd-tools NOTE: http://www.openwall.com/lists/oss-security/2013/05/23/2 NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=964299 @@ -4092,8 +4101,7 @@ RESERVED - owncloud <not-affected> (Vulnerable code not present) NOTE: oC >= 4.5 only -CVE-2013-1962 [DoS (max count of open files exhaustion) due sockets leak in the storage pool] - RESERVED +CVE-2013-1962 (The remoteDispatchStoragePoolListAllVolumes function in the storage ...) - libvirt <not-affected> (Vulnerable code not present) NOTE: http://libvirt.org/git/?p=libvirt.git;a=commitdiff;h=ca697e90d5bd6a6dfb94bfb6d4438bdf9a44b739 CVE-2013-1961 [libtiff-tools: Stack-based buffer overflow with malformed image-length and resolution] @@ -7685,8 +7693,8 @@ [squeeze] - lemonldap-ng <not-affected> (SAML code not present) CVE-2013-0600 (Unspecified vulnerability on IBM WebSphere DataPower XC10 Appliance ...) NOT-FOR-US: IBM WebSphere DataPower XC10 Appliance devices -CVE-2013-0599 - RESERVED +CVE-2013-0599 (IBM Eclipse Help System (IEHS), as used in IBM Rational Directory ...) + TODO: check CVE-2013-0598 RESERVED CVE-2013-0597 @@ -7731,8 +7739,8 @@ NOT-FOR-US: IBM CVE-2013-0577 RESERVED -CVE-2013-0576 - RESERVED +CVE-2013-0576 (Cross-site scripting (XSS) vulnerability in the Tivoli Enterprise ...) + TODO: check CVE-2013-0575 RESERVED CVE-2013-0574 @@ -7885,8 +7893,8 @@ NOT-FOR-US: IBM Cognos Disclosure Management CVE-2013-0500 RESERVED -CVE-2013-0499 - RESERVED +CVE-2013-0499 (Cross-site scripting (XSS) vulnerability in the echo functionality on ...) + TODO: check CVE-2013-0498 RESERVED CVE-2013-0497 @@ -7919,8 +7927,8 @@ RESERVED CVE-2013-0483 (The login component in SOAP Gateway in IBM IMS Enterprise Suite 1.1, ...) NOT-FOR-US: IBM IMS Enterprise Suite -CVE-2013-0482 - RESERVED +CVE-2013-0482 (IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before ...) + TODO: check CVE-2013-0481 RESERVED CVE-2013-0480 @@ -25105,8 +25113,7 @@ RESERVED CVE-2003-1598 RESERVED -CVE-2002-2443 [kpasswd UDP ping-pong] - RESERVED +CVE-2002-2443 (schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) ...) - krb5 1.10.1+dfsg-6 (bug #708267) NOTE: http://krbdev.mit.edu/rt/Ticket/Display.html?id=7637 NOTE: https://github.com/krb5/krb5/commit/cf1a0c411b2668c57c41e9c4efd15ba17b6b322c _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits