Author: sectracker
Date: 2017-06-27 21:10:14 +0000 (Tue, 27 Jun 2017)
New Revision: 52964
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-06-27 20:07:31 UTC (rev 52963)
+++ data/CVE/list 2017-06-27 21:10:14 UTC (rev 52964)
@@ -1,3 +1,7 @@
+CVE-2017-9983
+ RESERVED
+CVE-2017-9982 (TeamSpeak Client 3.0.19 allows remote attackers to cause a
denial of ...)
+ TODO: check
CVE-2017-9981
RESERVED
CVE-2017-9980
@@ -312,8 +316,8 @@
RESERVED
CVE-2017-9842
RESERVED
-CVE-2017-9841
- RESERVED
+CVE-2017-9841 (Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before
5.6.3 ...)
+ TODO: check
CVE-2017-9840 (Dolibarr ERP/CRM 5.0.3 and prior allows low-privilege users to
upload ...)
- dolibarr <unfixed>
CVE-2017-9839
@@ -340,8 +344,8 @@
[jessie] - libmtp <no-dsa> (Minor issue; can be fixed in a point
release)
NOTE: https://sourceforge.net/p/libmtp/mailman/message/35735992/
NOTE:
https://sourceforge.net/p/libmtp/code/ci/aa7d91a789873a9d86969028e57f888a1241c085/
-CVE-2017-9830
- RESERVED
+CVE-2017-9830 (Remote Code Execution is possible in Code42 CrashPlan 5.4.x via
the ...)
+ TODO: check
CVE-2017-9829 ('/cgi-bin/admin/downloadMedias.cgi' of the web service in most
of the ...)
NOT-FOR-US: VIVOTEK Network Cameras
CVE-2017-9828 ('/cgi-bin/admin/testserver.cgi' of the web service in most of
the ...)
@@ -3340,16 +3344,16 @@
RESERVED
CVE-2017-9258
RESERVED
-CVE-2017-9257
- RESERVED
-CVE-2017-9256
- RESERVED
-CVE-2017-9255
- RESERVED
-CVE-2017-9254
- RESERVED
-CVE-2017-9253
- RESERVED
+CVE-2017-9257 (The mp4ff_read_ctts function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9256 (The mp4ff_read_stco function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9255 (The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9254 (The mp4ff_read_stts function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9253 (The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
CVE-2016-10377 (In Open vSwitch (OvS) 2.5.0, a malformed IP packet can cause
the switch ...)
- openvswitch 2.6.1+git20161123-1
[jessie] - openvswitch <not-affected> (Vulnerable code using tot_len
introduced later)
@@ -3468,18 +3472,18 @@
[jessie] - libonig <no-dsa> (Minor issue)
NOTE:
https://github.com/kkos/oniguruma/commit/690313a061f7a4fa614ec5cc8368b4f2284e059b
NOTE: https://github.com/kkos/oniguruma/issues/57
-CVE-2017-9223
- RESERVED
-CVE-2017-9222
- RESERVED
-CVE-2017-9221
- RESERVED
-CVE-2017-9220
- RESERVED
-CVE-2017-9219
- RESERVED
-CVE-2017-9218
- RESERVED
+CVE-2017-9223 (The mp4ff_read_stts function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9222 (The mp4ff_parse_tag function in common/mp4ff/mp4meta.c in
Freeware ...)
+ TODO: check
+CVE-2017-9221 (The mp4ff_read_mdhd function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9220 (The mp4ff_read_stco function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9219 (The mp4ff_read_stsc function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
+CVE-2017-9218 (The mp4ff_read_stsd function in common/mp4ff/mp4atom.c in
Freeware ...)
+ TODO: check
CVE-2017-9217 (systemd-resolved through 233 allows remote attackers to cause a
denial ...)
[experimental] - systemd 233-8
- systemd 232-24 (bug #863277)
@@ -8318,12 +8322,11 @@
RESERVED
CVE-2017-7525
RESERVED
-CVE-2017-7524
- RESERVED
+CVE-2017-7524 (tpm2-tools versions before 1.1.1 are vulnerable to a password
leak due ...)
+ TODO: check
CVE-2017-7523
RESERVED
-CVE-2017-7522 [Crash mbed TLS/PolarSSL-based server]
- RESERVED
+CVE-2017-7522 (OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable
to ...)
- openvpn 2.4.3-1 (unimportant)
[jessie] - openvpn <not-affected> (x509-track implemented in 2.4.0)
[wheezy] - openvpn <not-affected> (x509-track implemented in 2.4.0)
@@ -8332,8 +8335,8 @@
NOTE: http://www.openwall.com/lists/oss-security/2017/06/21/6
NOTE: In Debian openvpn is compiled against OpenSSL, thus even affected
NOTE: code present.
-CVE-2017-7521 [Potential double-free in --x509-alt-username and memory leaks]
- RESERVED
+CVE-2017-7521 (OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable
to ...)
+ {DSA-3900-1}
- openvpn 2.4.3-1 (bug #865480)
NOTE: Fixed by (master):
https://github.com/OpenVPN/openvpn/commit/2d032c7fcdfd692c851ea2fa858b4c2d9ea7d52d
NOTE: Fixed by (master):
https://github.com/OpenVPN/openvpn/commit/cb4e35ece4a5b70b10ef9013be3bff263d82f32b
@@ -8343,9 +8346,8 @@
NOTE: Fixed by (2.3.x):
https://github.com/OpenVPN/openvpn/commit/1dde0cd6e5e6a0f2f45ec9969b7ff1b6537514ad
NOTE:
https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243
NOTE: http://www.openwall.com/lists/oss-security/2017/06/21/6
-CVE-2017-7520 [Pre-authentication remote crash/information disclosure for
clients]
- RESERVED
- {DLA-999-1}
+CVE-2017-7520 (OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable
to ...)
+ {DSA-3900-1 DLA-999-1}
- openvpn 2.4.3-1 (bug #865480)
NOTE: Fixed by (master):
https://github.com/OpenVPN/openvpn/commit/7718c8984f04b507c1885f363970e2124e3c6c77
NOTE: Fixed by (2.4.x):
https://github.com/OpenVPN/openvpn/commit/043fe327878eba75efa13794c9845f85c3c629f2
@@ -8391,8 +8393,8 @@
CVE-2017-7509
RESERVED
NOT-FOR-US: Red Hat Certificate System
-CVE-2017-7508 [Remotely-triggerable ASSERT() on malformed IPv6 packet]
- RESERVED
+CVE-2017-7508 (OpenVPN versions before 2.4.3 and before 2.3.17 are vulnerable
to ...)
+ {DSA-3900-1}
- openvpn 2.4.3-1 (bug #865480)
NOTE: http://www.openwall.com/lists/oss-security/2017/06/21/6
NOTE:
https://community.openvpn.net/openvpn/wiki/VulnerabilitiesFixedInOpenVPN243
@@ -12640,8 +12642,7 @@
NOT-FOR-US: EyesOfNetwork
CVE-2017-6087 (EyesOfNetwork ("EON") 5.0 and earlier allows remote
authenticated ...)
NOT-FOR-US: EyesOfNetwork
-CVE-2017-6086
- RESERVED
+CVE-2017-6086 (Multiple cross-site request forgery (CSRF) vulnerabilities in
the ...)
NOT-FOR-US: ViMbAdmin
CVE-2017-6085
RESERVED
@@ -14214,8 +14215,7 @@
NOT-FOR-US: Netgear
CVE-2016-10174 (The NETGEAR WNR2000v5 router contains a buffer overflow in the
...)
NOT-FOR-US: Netgear
-CVE-2004-2778
- RESERVED
+CVE-2004-2778 (Ebuild in Gentoo may change directory and file permissions
depending ...)
NOT-FOR-US: Gentoo ebuilds dir permissions at install time
CVE-2017-5667 (The sdhci_sdma_transfer_multi_blocks function in hw/sd/sdhci.c
in QEMU ...)
- qemu 1:2.8+dfsg-3 (bug #853996)
@@ -19518,8 +19518,8 @@
RESERVED
CVE-2016-9973 (IBM Jazz Foundation is vulnerable to cross-site scripting. This
...)
NOT-FOR-US: IBM
-CVE-2016-9972
- RESERVED
+CVE-2016-9972 (IBM QRadar 7.2 and 7.3 could allow a remote attacker to obtain
...)
+ TODO: check
CVE-2016-9971
RESERVED
CVE-2016-9970
@@ -22418,12 +22418,12 @@
RESERVED
CVE-2017-2844
RESERVED
-CVE-2017-2843
- RESERVED
-CVE-2017-2842
- RESERVED
-CVE-2017-2841
- RESERVED
+CVE-2017-2843 (In the web management interface in Foscam C1 Indoor HD Camera
running ...)
+ TODO: check
+CVE-2017-2842 (In the web management interface in Foscam C1 Indoor HD Camera
running ...)
+ TODO: check
+CVE-2017-2841 (An exploitable command injection vulnerability exists in the
web ...)
+ TODO: check
CVE-2017-2840
RESERVED
CVE-2017-2839
@@ -23366,8 +23366,8 @@
RESERVED
CVE-2017-2492
RESERVED
-CVE-2017-2491
- RESERVED
+CVE-2017-2491 (Use after free vulnerability in the String.replace method ...)
+ TODO: check
CVE-2017-2490 (An issue was discovered in certain Apple products. iOS before
10.3 is ...)
NOT-FOR-US: Apple involving Kernel component
CVE-2017-2489 (An issue was discovered in certain Apple products. macOS before
...)
@@ -25741,8 +25741,8 @@
RESERVED
CVE-2017-1329
RESERVED
-CVE-2017-1328
- RESERVED
+CVE-2017-1328 (IBM API Connect 5.0.0.0 - 5.0.6.0 could allow a remote attacker
to ...)
+ TODO: check
CVE-2017-1327
RESERVED
CVE-2017-1326 (IBM Sterling File Gateway does not properly restrict user
requests ...)
@@ -25753,8 +25753,8 @@
RESERVED
CVE-2017-1323
RESERVED
-CVE-2017-1322
- RESERVED
+CVE-2017-1322 (IBM API Connect 5.0.6.0 is vulnerable to an XML External Entity
...)
+ TODO: check
CVE-2017-1321
RESERVED
CVE-2017-1320 (IBM Tivoli Federated Identity Manager 6.2 is vulnerable to
cross-site ...)
@@ -25803,8 +25803,8 @@
RESERVED
CVE-2017-1298
REJECTED
-CVE-2017-1297
- RESERVED
+CVE-2017-1297 (IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1
...)
+ TODO: check
CVE-2017-1296
RESERVED
CVE-2017-1295
@@ -25929,8 +25929,8 @@
RESERVED
CVE-2017-1235
RESERVED
-CVE-2017-1234
- RESERVED
+CVE-2017-1234 (IBM QRadar 7.2 and 7.3 is vulnerable to cross-site scripting.
This ...)
+ TODO: check
CVE-2017-1233
RESERVED
CVE-2017-1232
@@ -26188,8 +26188,8 @@
RESERVED
CVE-2017-1106
RESERVED
-CVE-2017-1105
- RESERVED
+CVE-2017-1105 (IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1
...)
+ TODO: check
CVE-2017-1104 (IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 is vulnerable to
...)
NOT-FOR-US: IBM
CVE-2017-1103 (IBM Team Concert (RTC) is vulnerable to a denial of service,
caused by ...)
@@ -26675,8 +26675,8 @@
NOT-FOR-US: IBM
CVE-2016-9739 (IBM Security Identity Manager Virtual Appliance stores user ...)
NOT-FOR-US: IBM
-CVE-2016-9738
- RESERVED
+CVE-2016-9738 (IBM QRadar 7.2 and 7.3 does not require that users should have
strong ...)
+ TODO: check
CVE-2016-9737 (IBM TRIRIGA 3.3, 3.4, and 3.5 is vulnerable to cross-site
scripting. ...)
NOT-FOR-US: IBM
CVE-2016-9736 (IBM WebSphere Application Server using malformed SOAP requests
could ...)
@@ -36856,8 +36856,7 @@
RESERVED
CVE-2016-7063
RESERVED
-CVE-2016-7062
- RESERVED
+CVE-2016-7062 (rhscon-ceph in Red Hat Storage Console 2 x86_64 and Red Hat
Storage ...)
NOT-FOR-US: Red Hat rhscon-core
CVE-2016-7061
RESERVED
@@ -39102,8 +39101,7 @@
CVE-2016-6343
RESERVED
NOT-FOR-US: JBoss BPMS
-CVE-2016-6342 [posting entry as arbitrary username by improper authentication]
- RESERVED
+CVE-2016-6342 (elog 3.1.1 allows remote attackers to post data as any username
in the ...)
- elog 3.1.2-1-1 (bug #836505)
[jessie] - elog 2.9.2+2014.05.11git44800a7-2+deb8u1
NOTE:
https://bitbucket.org/ritt/elog/commits/2f6a300572bd6048351af8c45394ae62230c83d9
@@ -40352,8 +40350,8 @@
NOT-FOR-US: IBM
CVE-2016-6084 (IBM BigFix Platform could allow an attacker on the local
network to ...)
NOT-FOR-US: IBM
-CVE-2016-6083
- RESERVED
+CVE-2016-6083 (IBM Tivoli Monitoring V6 could allow an unauthenticated user to
access ...)
+ TODO: check
CVE-2016-6082 (IBM BigFix Platform could allow a remote attacker to execute
arbitrary ...)
NOT-FOR-US: IBM
CVE-2016-6081
@@ -42290,8 +42288,7 @@
NOTE: Potentially related: https://fedorahosted.org/389/ticket/48354
CVE-2016-5415
RESERVED
-CVE-2016-5414 [incorrect check for SubjectAltNames during CA ACL check]
- RESERVED
+CVE-2016-5414 (FreeIPA 4.4.0 allows remote attackers to request an arbitrary
SAN name ...)
- freeipa <not-affected> (Vulnerable code introduced in the 4.4.0
release)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1360757
NOTE:
https://git.fedorahosted.org/cgit/freeipa.git/commit/?id=25ed36fda14b30d6a50746a536939e3b428993cb
@@ -46240,8 +46237,8 @@
NOT-FOR-US: HPE Network Automation
CVE-2016-4384 (HPE Performance Center before 12.50 and LoadRunner before 12.50
allow ...)
NOT-FOR-US: HPE Performance Center
-CVE-2016-4383
- RESERVED
+CVE-2016-4383 (The glance-manage db in all versions of HPE Helion Openstack
Glance ...)
+ TODO: check
CVE-2016-4382 (HPE Performance Center 11.52, 12.00, 12.01, 12.20, and 12.50
allows ...)
NOT-FOR-US: HPE Performance Center
CVE-2016-4381 (HPE XP7 Command View Advanced Edition (CVAE) Suite 6.x through
8.x ...)
@@ -57380,8 +57377,7 @@
NOT-FOR-US: Adobe Flash
CVE-2016-0960 (Adobe Flash Player before 18.0.0.333 and 19.x through 21.x
before ...)
NOT-FOR-US: Adobe Flash
-CVE-2016-0959
- RESERVED
+CVE-2016-0959 (Use after free vulnerability in Adobe Flash Player Desktop
Runtime ...)
NOT-FOR-US: Adobe Flash
CVE-2016-0958 (Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow
remote ...)
NOT-FOR-US: Adobe
@@ -57500,8 +57496,7 @@
- php7.0 7.0.1-1
NOTE: https://bugs.php.net/bug.php?id=71020
NOTE: http://www.openwall.com/lists/oss-security/2015/12/22/4
-CVE-2015-8697 [Insecure use of temporary files]
- RESERVED
+CVE-2015-8697 (stalin 0.11-5 allows local users to write to arbitrary files.
...)
- stalin <unfixed> (unimportant; bug #808730)
[squeeze] - stalin <no-dsa> (Minor issue)
NOTE: http://www.openwall.com/lists/oss-security/2015/12/27/1
@@ -62156,14 +62151,14 @@
NOT-FOR-US: Mango Automation
CVE-2015-7900 (Infinite Automation Mango Automation 2.5.x and 2.6.x before
2.6.0 ...)
NOT-FOR-US: Mango Automation
-CVE-2015-7898
- RESERVED
+CVE-2015-7898 (Samsung Gallery in the Samsung Galaxy S6 allows local users to
cause a ...)
+ TODO: check
CVE-2015-7897 (The media scanning functionality in the face recognition
library in ...)
NOT-FOR-US: Samsung
CVE-2015-7896
RESERVED
-CVE-2015-7895
- RESERVED
+CVE-2015-7895 (Samsung Gallery on the Samsung Galaxy S6 allows local users to
cause a ...)
+ TODO: check
CVE-2015-7894
RESERVED
CVE-2015-7893 (SecEmailUI in Samsung Galaxy S6 does not sanitize HTML email
content, ...)
@@ -62567,10 +62562,10 @@
NOT-FOR-US: p++BBS
CVE-2015-7782 (Cross-site scripting (XSS) vulnerability in Let's PHP! Frame
...)
NOT-FOR-US: Let's PHP!
-CVE-2015-7781
- RESERVED
-CVE-2015-7780
- RESERVED
+CVE-2015-7781 (ManageEngine Firewall Analyzer before 8.0 does not restrict
access ...)
+ TODO: check
+CVE-2015-7780 (Directory traversal vulnerability in ManageEngine Firewall
Analyzer ...)
+ TODO: check
CVE-2015-7779
REJECTED
CVE-2015-7778
@@ -63146,8 +63141,8 @@
REJECTED
CVE-2015-7583
REJECTED
-CVE-2015-7582
- RESERVED
+CVE-2015-7582 (Satellite 6.1.0 allows remote authenticated users to read ...)
+ TODO: check
CVE-2015-7581 (actionpack/lib/action_dispatch/routing/route_set.rb in Action
Pack in ...)
{DSA-3464-1}
- rails 2:4.2.5.1-1
@@ -69009,8 +69004,7 @@
CVE-2015-5379
RESERVED
NOT-FOR-US: Axigen
-CVE-2015-5378
- RESERVED
+CVE-2015-5378 (Logstash 1.5.x before 1.5.3 and 1.4.x before 1.4.4 allows
remote ...)
- logstash <itp> (bug #664841)
CVE-2015-5377 [Remote code execution vulnerability]
RESERVED
@@ -69870,8 +69864,7 @@
CVE-2015-5181
RESERVED
NOT-FOR-US: A-MQ's Hawtio console
-CVE-2015-5180 [DNS resolver NULL pointer dereference with crafted record type]
- RESERVED
+CVE-2015-5180 (res_query in libresolv in glibc before 2.25 allows remote
attackers to ...)
- glibc 2.24-9 (low; bug #796106)
[jessie] - glibc <no-dsa> (Minor issue, too intrusive to backport)
- eglibc <removed> (low)
@@ -73556,8 +73549,8 @@
NOT-FOR-US: Android
CVE-2015-3841
RESERVED
-CVE-2015-3840
- RESERVED
+CVE-2015-3840 (The MessageStatusReceiver service in the AndroidManifest.XML in
...)
+ TODO: check
CVE-2015-3839
RESERVED
CVE-2015-3838
@@ -78587,8 +78580,8 @@
NOT-FOR-US: Boosted Boards skateboards
CVE-2015-2246 (The MeWidget module on Huawei P7 smartphones with software
P7-L10 ...)
NOT-FOR-US: Huawei
-CVE-2015-2245
- RESERVED
+CVE-2015-2245 (Huawei Ascend P7 allows remote attackers to cause a denial of
service ...)
+ TODO: check
CVE-2015-2244 (Multiple cross-site scripting (XSS) vulnerabilities in Webshop
hun ...)
NOT-FOR-US: Webshop hun
CVE-2015-2243 (Directory traversal vulnerability in Webshop hun 1.062S allows
remote ...)
@@ -79884,8 +79877,7 @@
[jessie] - libopensaml2-java <no-dsa> (Minor issue)
NOTE: Only change between 2.6.4 and 2.6.5 seems
http://svn.shibboleth.net/view/java-opensaml2/branches/REL_2/src/main/java/org/opensaml/saml2/metadata/provider/AbstractReloadingMetadataProvider.java?r1=1656&r2=1680
NOTE: http://shibboleth.net/community/advisories/secadv_20150225.txt
-CVE-2015-1795
- RESERVED
+CVE-2015-1795 (Red Hat Gluster Storage RPM Package 3.2 allows local users to
gain ...)
- glusterfs <not-affected> (Vulnerable code specific to glusterfs.spec
and not present in source in Debian)
CVE-2015-1794 (The ssl3_get_key_exchange function in ssl/s3_clnt.c in OpenSSL
1.0.2 ...)
- openssl 1.0.2e-1
@@ -79964,8 +79956,7 @@
NOTE: Original patches have problem:
https://lists.gnu.org/archive/html/qemu-devel/2015-03/msg04995.html
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=a2bebfd6e09d
NOTE: http://git.qemu.org/?p=qemu.git;a=commit;h=2cdb5e142fb93
-CVE-2015-1778
- RESERVED
+CVE-2015-1778 (The custom authentication realm used by karaf-tomcat's
"opendaylight" ...)
NOT-FOR-US: OpenDaylight
CVE-2015-1777 [rhnreg_ks fails to properly validate SSL/TLS certificates]
RESERVED
@@ -82221,8 +82212,7 @@
CVE-2015-4472 (Off-by-one error in the READ_ENCINT macro in chmd.c in
libmspack ...)
- libmspack 0.5-1 (bug #775687)
NOTE: http://www.openwall.com/lists/oss-security/2015/02/03/11
-CVE-2015-1591
- RESERVED
+CVE-2015-1591 (The kamailio build in kamailio before 4.2.0-2 process allows
local ...)
- kamailio 4.2.0-2 (bug #775681)
NOTE: https://github.com/kamailio/kamailio/issues/48
CVE-2015-1590
@@ -82887,8 +82877,7 @@
RESERVED
CVE-2015-0956
RESERVED
-CVE-2015-0955
- RESERVED
+CVE-2015-0955 (Cross-site scripting (XSS) vulnerability in Adobe Experience
Manager ...)
NOT-FOR-US: Adobe Experience Manager
CVE-2015-0954
RESERVED
@@ -89757,8 +89746,8 @@
{DSA-3122-1 DLA-134-1}
- curl 7.38.0-4
NOTE: http://curl.haxx.se/docs/adv_20150108B.html
-CVE-2014-8149
- RESERVED
+CVE-2014-8149 (OpenDaylight defense4all 1.1.0 and earlier allows remote
authenticated ...)
+ TODO: check
CVE-2014-8148 (The default D-Bus access control rule in Midgard2 10.05.7.1
allows ...)
- midgard2-core <removed> (bug #774630)
CVE-2014-8147 (The resolveImplicitLevels function in common/ubidi.c in the
Unicode ...)
@@ -94227,8 +94216,8 @@
NOT-FOR-US: Microsoft Word
CVE-2014-6355 (The Graphics Component in Microsoft Windows Server 2003 SP2,
Windows ...)
NOT-FOR-US: Microsft Windows
-CVE-2014-6354
- RESERVED
+CVE-2014-6354 (Internet Explorer 6, Internet Explorer 7, Internet Explorer 8,
...)
+ TODO: check
CVE-2014-6353 (Microsoft Internet Explorer 6 through 10 allows remote
attackers to ...)
NOT-FOR-US: Microsoft
CVE-2014-6352 (Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2
SP1, ...)
@@ -134591,8 +134580,8 @@
RESERVED
CVE-2012-5011
RESERVED
-CVE-2012-5010
- RESERVED
+CVE-2012-5010 (ASA 5515-X Adaptive Security Appliance Adaptive Security
Appliance ...)
+ TODO: check
CVE-2012-5009
RESERVED
CVE-2012-5008
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
